Privacy Policy

Effective date: April 3, 2026

This Privacy Policy describes how HSLA0001 Inc. ("Company," "we," "us") collects, uses, and handles your information when you use Rams products and services.

Our Products

Rams includes multiple products with different data collection practices:

  • Rams GitHub App — Automated design reviews on pull requests via GitHub App integration
  • Rams Skill — A markdown file (/rams command) for AI coding assistants
  • rams.ai — Website, dashboard, and account management

Account & Authentication

When you create an account, we collect:

  • Email address and profile information from Google OAuth
  • Workspace name and settings

Authentication is handled via Google OAuth through Supabase. We do not store your Google password.

We may use your email address to contact you about your account, product updates, important announcements, and onboarding — including reaching out if you started but did not complete signup or checkout.

Payment Information

Payments are processed by Stripe. We do not store your credit card number or payment details. We store:

  • Stripe customer ID and subscription ID (for managing your plan)
  • Plan type and billing period
  • Subscription status (active, canceling, canceled)

Rams GitHub App

When you install the Rams GitHub App and open a pull request:

Sent to AI for analysis (not stored by us):

  • Changed file contents from the pull request — sent to Anthropic Claude for review

Code is held in memory only during analysis and immediately discarded. We never store your source code. Code sent to Anthropic is processed per their Privacy Policy.

Stored in our database:

  • Repository name, PR number, PR title, branch name
  • Review results: design score, issue count, severity breakdown, and issue descriptions (which may reference file paths, line numbers, and code patterns)
  • Usage metrics: files reviewed, token usage, duration, cost
  • GitHub installation details: account login, installation ID, repository list

Posted to your GitHub PR:

  • Design review comments with inline code suggestions

We never store:

  • Your source code — held in memory during analysis only
  • Secrets, API keys, or credentials from your repository
  • Git history or commit contents

Rams Skill (/rams Command)

When you use the /rams command in your AI coding tool:

  • We collect only download counts when you install rams.md
  • The rams.md file runs entirely within your AI tool (Claude Code, Cursor, etc.)
  • We have no access to your code, files, or AI responses
  • No data is transmitted to our servers during usage

Analytics

We use Google Analytics to understand how visitors use rams.ai. Google Analytics collects:

  • Page views, referral sources, and session duration
  • Anonymized IP address, browser type, and device information

We also collect aggregate review statistics (total reviews, average scores) and performance metrics (review duration, error rates) for internal monitoring.

Data Retention

  • Account data: Retained while your account is active
  • Review metadata: Retained for your dashboard and billing
  • Source code: Not retained — discarded immediately after analysis
  • Payment data: Managed by Stripe per their retention policies

Data Security

All data is encrypted in transit (TLS) and at rest. Our infrastructure:

  • Vercel (website) — SOC 2 Type 2 certified
  • Supabase (database) — SOC 2 Type 2 certified
  • Railway (worker) — SOC 2 Type 2 certified
  • Stripe (payments) — PCI Level 1 certified
  • Sentry (error tracking) — SOC 2 Type 2 certified

See our Security page for details.

Your Rights

You have the right to:

  • Request a copy of your data
  • Request deletion of your account and data
  • Cancel your subscription at any time
  • Uninstall the GitHub App to stop all reviews

To exercise these rights, email rams@rams.ai.

Children's Privacy

We do not knowingly collect information from children under 13. If you believe we have collected information from a child under 13, please contact us and we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Your continued use of Rams after changes constitutes acceptance of the updated policy.

Contact

Questions about this Privacy Policy? rams@rams.ai

HSLA0001 Inc.