Privacy Policy

Last updated: March 20, 2026

1. Introduction

BlueGreen ("we", "us", or "our") operates the BlueGreen CI/CD platform at bluegreen.ci. This Privacy Policy explains what information we collect, how we use it, and your choices regarding that information.

2. Information We Collect

Account Information

When you sign up through a supported OAuth provider (e.g., GitHub), we receive your display name, email address, and avatar URL. We do not collect or store your OAuth provider password.

Project & Workflow Data

We store project names, workflow definitions (YAML), build logs, and step metadata that you create within the platform. Source code is cloned temporarily into ephemeral containers during workflow execution and is not retained after the job completes.

Secrets

Secrets you add to a project are encrypted at rest and are only decrypted inside ephemeral execution environments. We cannot view or retrieve the plaintext value of your secrets.

Usage Data

We collect basic usage telemetry such as page views, feature interactions, and error reports to improve the platform. This data is aggregated and does not include source code or secret values.

3. How We Use Your Information

  • To provide, maintain, and improve the BlueGreen platform.
  • To authenticate your identity and manage your session.
  • To execute CI/CD workflows on your behalf.
  • To send transactional emails (e.g., password resets, team invitations).
  • To detect and prevent abuse, fraud, and security incidents.

4. Data Sharing

We do not sell your personal information. We may share limited data with the following categories of third parties:

  • Infrastructure providers that host and operate the platform (e.g., cloud compute, database, and object storage services).
  • Analytics services that help us understand usage patterns in aggregate form.
  • Legal or regulatory authorities when required by applicable law or to protect our rights.

5. Data Retention

We retain your account information for as long as your account is active. Build logs and workflow data are retained according to your plan's limits. You can delete your account and associated data by contacting us.

6. Security

We use industry-standard measures to protect your data, including encryption in transit (TLS), encryption at rest for secrets, ephemeral execution environments that are destroyed after each job, and role-based access controls.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict certain processing activities.
  • Export your data in a portable format.

To exercise any of these rights, contact us at the address provided in the Contact section below.

8. Children's Privacy

BlueGreen is not directed at individuals under the age of 16. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the revised policy on this page with an updated "Last updated" date.

10. Contact

If you have questions or concerns about this Privacy Policy, please reach out at privacy@bluegreen.ci.