This Privacy Policy explains how VibeBro ("we", "us") handles information when you use VibeBro (the "Service"). VibeBro is a self-hosted build-and-test collaboration tool operated by the workspace owner who installed it.
We collect the information you provide directly, including your name, email address, and — if you sign in with Google — your Google account's basic profile (name, email, and profile picture). We also store the content you create in the Service: projects, pages, tasks, checkpoints, comments, uploaded files and screenshots, snippets, and credentials you choose to save.
The Service includes an optional credentials vault. Any secrets you save there are encrypted at rest before being written to the database. You are responsible for who you grant access to within your workspace.
Information is used solely to operate the Service for you and your invited collaborators — to authenticate you, display your work, send notification emails you have enabled, and generate the reports you request. We do not sell your information or use it for advertising.
If the workspace administrator has configured email, the Service sends transactional messages such as invitations, assignment notices, and status updates. These are operational messages tied to your use of the Service.
Depending on the administrator's configuration, the Service may connect to Google (for sign-in), an SMTP email provider (for notifications), and an AI provider such as Anthropic or OpenAI (to rewrite QA notes in reports). When AI report clarification is used, the relevant tester notes are sent to that provider to generate the rewritten text.
Your content is retained for as long as your account and workspace exist. Workspace administrators can remove members and delete projects, which removes the associated content.
We use reasonable measures to protect your information, including encryption of stored credentials and restricted access to internal files. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
You can update your account details in your settings and request that the workspace administrator remove your access or data. If you signed in with Google, you can revoke the Service's access from your Google account permissions page.
The Service is intended for professional use and is not directed to children under 16.
We may update this Privacy Policy from time to time. Material changes will be reflected by the "Last updated" date above.
Questions about this policy can be directed to vibebro@imjay.in.