Privacy Policy
Last updated: 13 May 2026
Tribunal is a quality-gate and audit-log layer for AI coding agents. This policy describes what data the hosted service (app.tribunal.dev, ingest.tribunal.dev) stores. The self-hosted OSS package stores nothing outside your own infrastructure.
What we collect
- Account: GitHub user id, email, display name, avatar URL. Used to authenticate you and bill the right org.
- Events: the unified event schema your daemon sends (session id, agent name, event type, cost, policy decisions). The raw prompt / tool payload is also stored if you choose to send it; you can scrub it in the daemon config.
- Billing: Stripe customer id and subscription status. Card details never touch our servers — Stripe handles them entirely.
How we use it
To render your dashboard, enforce plan limits, and bill your subscription. We do not sell data and we do not train models on customer events.
Where it lives
- Cloudflare D1 (Sydney region) — account + event summaries
- Cloudflare R2 — raw event JSONL, partitioned per-org
- Stripe — subscription + payment data
Retention
Team plan: 90 days of raw events. Compliance plan: 365 days. Account data is kept while your account is active and deleted within 30 days of an explicit deletion request.
Your rights
You can export your data, request deletion, or rotate ingestion tokens at any time from Settings — or email [email protected].
Subprocessors
Cloudflare (infrastructure), Stripe (billing), GitHub (identity). No other third parties receive customer data.