Privacy Policy
Last updated: March 2026
1. Data Controller
Pipeline is operated by Christex Foundation, a registered nonprofit organization dedicated to advancing digital public goods and sustainable development.
Christex Foundation
Freetown, Sierra Leone
Email: hello@christex.foundation
2. Data We Collect
Account Information
- Name and email address
- Profile information (bio, avatar)
- Social links (GitHub, Discord, Twitter, LinkedIn - optional)
Project Data
- Projects you create or contribute to
- Bookmarked projects
- Comments and interactions
Usage Data
- Device and browser information
- IP address (for security and analytics)
- Pages visited and features used
3. How We Use Your Data
- To provide and maintain the Pipeline platform
- To process your registrations and contributions
- To communicate with you about updates and support
- To improve our services and user experience
- To comply with legal obligations
- To enforce our Terms of Service
4. Legal Basis
We process your personal data under the following legal bases:
- Consent: For optional data (social links, analytics cookies)
- Contract: To provide services you request (account creation, project hosting)
- Legitimate Interest: For security, fraud prevention, and service improvement
- Legal Obligation: For compliance with applicable laws
5. Your Rights
Under GDPR and other privacy regulations, you have the following rights:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Request correction of inaccurate data
- Right to Erasure: Request deletion of your account and data
- Right to Data Portability: Request your data in a portable format
- Right to Object: Object to processing of your data
- Right to Withdraw Consent: Withdraw consent at any time
To exercise these rights, visit your profile settings or contact us at hello@christex.foundation.
6. Data Retention
- Account Data: Retained while your account is active
- After Deletion: Data removed within 30 days of account deletion
- Financial Records: Retained for 7 years for tax/legal purposes
- Logs: Retained for 12 months for security purposes
7. Data Security
We implement appropriate technical and organizational measures to protect your data:
- Encryption of data in transit and at rest
- Access controls and authentication
- Regular security audits
- Secure hosting infrastructure
- Incident response procedures
However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
8. Third-Party Processors
We use the following third-party services to provide and improve our platform:
Supabase
Database, authentication, and backend services. Located in AWS US/EU regions.
Vercel
Web hosting and edge network. Privacy policy: vercel.com/legal/privacy-policy
Sentry
Error tracking and performance monitoring. Used for debugging purposes only.
9. Contact
If you have any questions about this Privacy Policy or want to exercise your rights, contact us:
Email: hello@christex.foundation
Questions?
If you have any questions about this Privacy Policy, please contact us at hello@christex.foundation.