cidx.dev logo

Privacy Policy

Last Updated: May 13, 2025

At Code Index MCP, we value your privacy. This Privacy Policy describes what data we collect, how we use it, and how we protect it as you interact with our developer-focused indexing and search platform.

Information We Collect

When you use Code Index MCP, we collect the following types of information:

  • GitHub Profile Info: When you authenticate via GitHub OAuth, we store your GitHub ID, username, and public profile. We never access private repositories.
  • Query Data: We record the search queries and retrieval requests made by your agents or tools. This helps us analyze and improve the quality and relevance of results.
  • Usage Metrics: We log query counts, preferred subjects (e.g., libraries or frameworks), and editor usage (e.g., VSCode, JetBrains, CursorAI) to surface insights and improve the experience.
  • Technical Data: Includes anonymized IPs, browser types, and basic device metadata for performance and debugging.
  • User Contributions (Optional): If you choose to submit code snippets, documentation, or architecture patterns, this content will be associated with your GitHub username and may be publicly visible, peer-reviewed, ranked, or starred within the platform.

We do not collect your source code or access any private files from your projects.

How We Use Your Data

We use the collected information to:

  • Provide and maintain the Service
  • Optimize and improve result relevance using real-world usage patterns
  • Support performance scaling and system reliability
  • Enforce usage limits and prevent abuse
  • Deliver usage metrics or insights back to users (when applicable)
  • Rank or highlight contributed content based on peer interaction

All automated analysis is internal to the system—no third-party advertising or profiling.

Data Sharing

We do not sell, rent, or share your data.

Your information is only shared in the following limited cases:

  • With infrastructure providers used to run the service (e.g., cloud hosts, analytics tools), under strict confidentiality
  • To comply with legal obligations or enforce Terms of Service
  • To prevent fraud or malicious use

Data Security

We use reasonable technical safeguards including:

  • Encrypted communication via HTTPS
  • GitHub OAuth for authentication (no passwords stored)
  • Role-based access controls internally
  • Rate limiting to mitigate abuse

No security system is perfect, but we review our practices regularly.

Data Retention

We retain collected data only as long as needed for functionality, legal, or operational reasons. You may request deletion of your account and associated data by contacting us.

Children's Privacy

Code Index MCP is intended for developers and technical users. We do not knowingly collect personal information from individuals under the age of 13. If we become aware that such data has been submitted without parental consent, we will take steps to remove it.

Changes to This Policy

We may update this policy periodically. The latest version will always be available at cidx.dev/privacy with the effective date.

Contact

For privacy-related questions, data access requests, or account deletion, contact: legal@cidx.dev