KiCI
⚠️ This is a preliminary document that may change. It is provided in good faith and is not legal advice. Last updated 2026-06-02.

Privacy Policy

Controller

The data controller is Alberto Marchetti (individual), operating KiCI. Contact for privacy matters: privacy@kici.dev.

The short version: we hold very little

KiCI is architected so that your pipeline data never reaches our hosted service. Your workflow source code, build artifacts, compiled lock files, job logs, CI secrets, and clone/deploy tokens all stay on your own orchestrator, agents, and storage. We are a relay and dashboard. We can’t lose what we never hold.

What we collect

  • Account and organisation data: email address, display name, role, and organisation settings.
  • Authentication identity: the subject identifier from our identity provider. We do not store your password.
  • Billing data: a customer identifier and subscription/plan state from our payment processor. Card details are handled by the processor, not by us.
  • Webhook source configuration: source name, routing key, provider type, and a hash of your webhook secret — so we know where to relay events.
  • Run metadata: run id, status, start/end time, and routing key, for the dashboard listing. Not the run’s content.
  • Operational logs: event and audit logs for the hosted service’s own operations, and briefly-held webhook payloads in transit that are dropped once your orchestrator acknowledges them.
  • Consent records: we retain a record of your acceptance of these Terms and this Privacy Policy — the document version, a timestamp, your IP address, and your browser’s user-agent string — as evidence of consent. These records are kept for as long as your account exists and as required to evidence the agreement.

What we do not collect

Workflow source code, build artifacts, job step logs, CI secrets, clone/deploy tokens, or webhook payloads after relay. These never reach us.

To provide the service you signed up for (contract), to keep it secure and operational (legitimate interest), and to comply with legal obligations (e.g. tax). Where we rely on consent, you can withdraw it at any time.

Sub-processors

We use a small set of providers that may process limited personal data on our behalf:

  • Stripe — payment processing (name, email, payment details handled by Stripe).
  • Amazon SES — transactional email (recipient addresses).
  • Bunny — content delivery (IP addresses in transit / edge logs).
  • Hetzner — hosting (servers located in the European Union).

Our identity provider and our website analytics are self-hosted by us; no third party processes that data.

International transfers

Our infrastructure is hosted in the European Union. Some sub-processors (e.g. Stripe, AWS) may process data outside the EU under appropriate safeguards.

Retention

Account data is kept for the life of your account. Run metadata is retained according to your plan’s retention window (30–365 days). You can request deletion as described below.

Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, port, and object to the processing of your personal data, and to lodge a complaint with a supervisory authority. To exercise these rights, contact privacy@kici.dev.

Cookies and analytics

The marketing site sets no tracking cookies. Authenticated areas use essential session cookies only. Our analytics are cookieless and anonymous — see the Cookie & analytics notice.

Security

We apply reasonable technical and organisational measures. Because pipeline code, secrets, and logs never reach us, the impact of a breach of the hosted service is limited to account and billing metadata. No method of transmission or storage is perfectly secure.

Children

The service is not directed at children under 16 and we do not knowingly collect their data.

Changes

We may update this policy; the “last updated” date reflects the latest version.

Contact

privacy@kici.dev.