StreamCode
Open Web IDE

Privacy Policy

Last Updated: April 28, 2026

1. Commitment to "Zero-Training-Data"

StreamCode operates on a strict Zero-Training-Data principle. The code you write, the logs your agent generates, and the intellectual property within your repositories are never stored or used to train any underlying AI models (OpenAI, Anthropic, DeepSeek, etc.). Your proprietary algorithms remain strictly yours.

2. Data Collection and Usage

We collect the following types of information:

  • Account Data: Email addresses, GitHub OAuth IDs, and basic profile information when you register for StreamCode Web Dashboard.
  • Anonymous Telemetry: Opt-in usage statistics (e.g., CLI command frequency, sandbox boot times, crash reports). This data is completely stripped of PII (Personally Identifiable Information) and actual code context.
  • Billing Data: Processed securely via Stripe. StreamCode does not store raw credit card numbers.

3. Execution Sandboxes (Firecracker & BrowserPod)

The Web IDE (BrowserPod) executes code entirely within your local browser's memory using WebAssembly. No source code from the BrowserPod session is transmitted to our servers unless explicitly saved to your cloud workspace.

For Enterprise users utilizing the Cloud Firecracker MicroVMs, the entire VM instance is cryptographically shredded immediately upon task completion. No residual file states are persisted.

4. Third-Party Model Providers (ModelHub)

When utilizing StreamCode's default ModelHub API routing, your prompts are passed securely to our partner providers (OpenAI, Anthropic, Google, DeepSeek) via zero-retention enterprise API endpoints. They are legally prohibited from using these API payloads to train their models.

5. Compliance and SOC2

StreamCode is designed with enterprise security in mind. Our infrastructure adheres to SOC2 Type II standards. Users can utilize the sc audit-report command to generate an immutable, PII-redacted log of agent activities for internal compliance reviews.

6. Data Subject Rights

Under GDPR, CCPA, and applicable privacy laws, you have the right to:

  • Request access to the personal data we hold about you.
  • Request deletion of your account and associated data.
  • Opt-out of anonymous telemetry (via sc config telemetry false).

7. Contact Us

For any privacy-related inquiries, data deletion requests, or DPA (Data Processing Agreement) execution for enterprise accounts, please contact our Data Protection Officer at privacy@streamcode.app or via mail to NeuralStream Inc., Delaware, USA.