git-slot-machine v2.1.7
SELECT THEME: 
╔═══════════════════════════════════════╗
║           PRIVACY POLICY             ║
╚═══════════════════════════════════════╝

YOUR DATA, YOUR CONTROL

> We believe in transparency. Here's exactly what we collect and why.

→ TL;DR

✓ We collect your GitHub username and gameplay data to power leaderboards

✓ Private repo names are never stored (shown as *******/*******)

✓ No tracking cookies, no analytics, no data selling

✓ You can request deletion anytime

✓ Your data is stored securely

Last updated: October 15, 2025

→ What We Collect

GitHub Usernames

Public GitHub usernames you provide when using the CLI. Used to authenticate and display your stats on leaderboards.

Commit Data

For public repositories: commit hash (first 7 characters), repository name, and URL.

For private repositories: commit hash prefix only (7 characters). Repository name and URL are obfuscated as "private/private" and never stored on our servers.

Gameplay Data

Pattern matches, payouts, timestamps, and balance history. Used to power leaderboards and statistics.

Authentication Tokens

Laravel Sanctum tokens for API authentication. Stored securely and only used to verify your identity.

→ What We DON'T Collect

  • Email addresses
  • IP addresses (beyond standard server logs)
  • Tracking cookies or third-party analytics
  • Private repository names or full commit hashes
  • Any personally identifiable information beyond your GitHub username
  • Commit messages or code content

→ How We Use Your Data

  • Display your username and stats on public leaderboards
  • Calculate global statistics and pattern frequencies
  • Authenticate CLI requests to the API
  • Track win streaks and personal bests
  • Generate shareable winner cards

→ Data Storage & Security

Your data is stored securely on Laravel Cloud infrastructure with industry-standard encryption. Authentication tokens are hashed and salted.

We retain gameplay data indefinitely to maintain historical leaderboards and statistics. You can request deletion at any time (see Your Rights below).

→ Cookies & Tracking

We use localStorage (not cookies) to save your theme preference. This data never leaves your browser.

We do not use Google Analytics, Facebook Pixel, or any third-party tracking tools.

Standard Laravel session cookies are used for website functionality (XSRF protection, etc.).

→ Your Rights

Access: View your data anytime on the leaderboards and stats pages.

Deletion: Request deletion of your account and all associated data by contacting us.

Portability: Request an export of your gameplay data in JSON format.

Opt-out: Disable API sync in the CLI with git-slot-machine config set sync-enabled false

→ Data Sharing

We do not sell, rent, or share your data with third parties.

Your GitHub username and gameplay stats are publicly visible on leaderboards by design. This is the core feature of the application.

For private repositories, we only display obfuscated repository names (*******/*******) to protect your privacy.

→ Server Logs

Standard web server logs may contain IP addresses, user agents, and request timestamps. These logs are used for debugging and security purposes only.

Logs are automatically rotated and deleted after 30 days.

→ Changes to This Policy

We may update this privacy policy from time to time. Check the "Last updated" date at the top.

Major changes will be announced on the changelog page.

→ Contact

Questions about this privacy policy? Open an issue on GitHub:

github.com/than/gitslotmachine.com/issues