👀 Privacy

Your privacy is very important to us.

We put in place measures to ensure that any personal information or data that we obtain from you is processed in accordance with the accepted principles of proper information handling.

This policy gives you information about how we treat personal information received from our website visitors and customers.


If you have questions about this Privacy Policy, please contact us at support@mergify.io.

Information collection and use

We collect visitors information in the following ways: Mergify.io collects non-personally-identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. Mergify.io collects this to better understand how visitors use its website. Mergify.io uses cookies to store information on your computer — see the Cookies section. If you authorize Mergify.io to access your GitHub account, we'll use your account information to act on your behalf to conduct automation as configured for your repositories. We'll use your GitHub email address to contact you about significant changes regarding Mergify.io that concerns you. We respect your privacy and will not rent, sell, or share personal information about you with other people or non-affiliated companies without your express permission.

How does Mergify.io access my GitHub account?

When you sign up for Mergify.io, we collect an OAuth token from GitHub, which allows us to request data from the GitHub API on your behalf. This OAuth token is stored securely in our database and is protected from unauthorized access.

How does Mergify.io access my source code?

Other than reading your .mergify.yml to determine the actions to execute, the only time Mergify.io accesses your repository directly is when checking out the source code on one of our engine machines. Source code is only accessed via HTTPS, using your token for authentication.

Protection of Certain Personally-Identifying Information

Mergify.io discloses potentially personally-identifying and personally-identifying information only to those of its employees, contractors and affiliated organizations that (i) need to know that information to process it on Mergify.io's behalf or to provide services available at Mergify.io's websites, and (ii) that have agreed not to disclose it to others. Some of those employees, contractors, and affiliated organizations may be located outside of your home country; by using the Service, you consent to the transfer of such information to them.

Mergify.io discloses potentially personally-identifying and personally-identifying information only when required to do so by law, or when Mergify.io believes in good faith that disclosure is reasonably necessary to protect the property or rights of Mergify.io, third parties or the public at large.

Mergify.io takes all measures reasonably necessary to protect against the unauthorized access, use, alteration or destruction of potentially personally-identifying and personally-identifying information.


Our web site uses cookies to collect system-related information, such as the type of internet browser and operating system you use, the website from which you have come to our website, the duration of individual page views, paths taken by visitors through the website, and other general information and your IP address which is automatically recognized by our web server. This information is collected for system administration and to report aggregate information to our subcontractors and partners to enable them to provide services to us. It is statistical data about our users' browsing actions and does not, of itself, contain any personally identifiable information.

Our web site also uses cookies when registered users access the private sections of our website. Cookies are used to facilitate the log in process. In this case, we may be able to identify that your login details have been used.

Data Storage

Mergify.io uses third party vendors and hosting partners to provide the necessary hardware, software, networking, storage, and related technology required to run the Service. You understand that although you retain full rights to your data, it may be stored on third party storage and transmitted through third-party networks.

Privacy Policy Changes

Although most changes are likely to be minor, Mergify.io may change its Privacy Policy from time to time, and in Mergify.io's sole discretion. We encourage visitors to frequently check this page for any changes to its Privacy Policy. Your continued use of this site after any change in this Privacy Policy will constitute your acceptance of such change.

Last Updated: November 7, 2018