Legal & trust
Every policy, in one place.
What we promise, what we don't, and how we contain untrusted execution. Counsel-reviewed copy lands before paid launch — until then these are the operational contracts.
Terms of Service
What InSitue does, who's responsible, and the rules of the road.
- Every fix opens as a PR — you review and merge.
- InSitue never auto-merges to your default branch.
- AI-generated code is provided as-is.
Privacy Policy
What we store, what we scrub, what end-users see.
- Text fields token-scrubbed at ingest; screenshots / DOM passed through as captured.
- Customer source never persisted — ephemeral microVM per run.
- GitHub OAuth for dashboard auth; least-privilege scopes.
Data Processing Addendum
Residency, transfers, governance, customer-source posture.
- Customer code: ephemeral, per-run, isolated, never persisted.
- Captured-report data resident in Neon (Sydney, ap-southeast-2).
- Redlined version on request — email support@insitue.com.
Sub-processors
Every third-party vendor that touches customer data, with region + privacy link.
- Anthropic, Vercel, Neon, GitHub, Stripe, Resend, Sentry.
- Each entry: purpose, data processed, region, privacy policy.
- Updated before any new sub-processor begins processing.
Security
Architecture, controls shipped, hardening roadmap.
- Read-only agent tools; manual review by default.
- Per-project + global kill switches in <1s.
- SOC 2 Type II — auditor engaged Q3.
Need a redlined DPA or a vendor security questionnaire? Email support@insitue.com and we'll send it.
Trust isn't a slide. It ships.
Start free with 10 PRs, kill switch armed, draft PRs only.