Privacy Policy

Teva Software S.L.U, tax ID B26719518, registered address Paseo de San Antonio 18, 1º Dcha, 16003 Cuenca (Spain), is the Data Controller for personal data we process through www.codevisto.com and the Codevisto Service.

This Policy explains how we process personal data of our customers, users, and website visitors. We only use data for Service operations, as detailed in our Terms and Conditions and Data Processing Agreement (DPA).

Service Users: name, corporate email, authentication credentials, developer metadata (names, emails, repository usernames), organizational data (teams, companies), and access logs.

Website Visitors: technical cookies (essential for functionality) and aggregated navigation data (non-personal).

We do not process source code or file contents; only technical metadata for analysis.

We process data to:

Provide the Codevisto Service (development activity analysis). Legal basis: Contract performance (art. 6.1.b GDPR).

Manage contractual relationship: billing, support, operational notifications. Legal basis: Contract performance and legal obligation (art. 6.1.b and c GDPR).

Security and abuse prevention (logs, breach detection). Legal basis: Legitimate interest (art. 6.1.f GDPR).

Aggregated web analytics. Legal basis: Legitimate interest (art. 6.1.f GDPR).

We do not use data for marketing or commercial communications without express consent.

To provide the Service, we share data with processors such as Heroku (EU infrastructure) and other sub-processors listed in our DPA and Security page. We have data processing agreements with them ensuring data protection under art. 28 GDPR (categories and details in DPA and Security documentation).

All processing occurs in the EU/EEA. If we use processors outside, we apply safeguards like Standard Contractual Clauses (Chapter V GDPR).

During the contract term. Upon termination, we delete data within 30 days unless law requires retention (e.g., invoicing).

You can:

Access, rectify, erase, or restrict processing of your data.

Object to processing.

Request data portability.

Withdraw consent (if applicable).

Exercise rights via email to info@codevisto.com. We will respond within one month (extendable for complexity). If unsatisfied, complain to the Spanish Data Protection Agency (www.aepd.es).

We use strictly necessary technical and functional cookies. No marketing cookies. See our Cookie Policy.

We implement appropriate technical and organizational measures (TLS encryption, password hashing, organization isolation), detailed in our Security Report. We notify breaches within 72 hours if required.

We may update this Policy. Significant changes will be notified by email or in the Service.