Privacy Policy
In accordance with GDPR (EU General Data Protection Regulation)
1. Data Controller
Am Stuehm-Sued 39a
22175 Hamburg
Germany
Email: info@aiwebapp.app
Web: https://www.reposignal.dev
2. Overview of Data Processing
REPOSIGNAL is a tech intelligence platform that analyzes and processes publicly available data from platforms such as GitHub, HackerNews, Reddit, and CoinGecko. The following information provides an overview of the types of data processed and the purposes of their processing.
Types of Data Processed
- Usage data (e.g. pages visited, access time)
- Meta/communication data (e.g. IP addresses, browser information)
- Publicly available data from GitHub, HackerNews, Reddit, CoinGecko (repository statistics, token prices, etc.)
Purposes of Processing
- Provision of the dashboard and API
- Analysis of public tech and open-source trends
- Automated creation and publication of summaries on social media platforms
- Security and operation of the platform
3. Legal Bases
Below is an overview of the GDPR legal bases on which we process personal data:
- Legitimate Interests (Art. 6(1)(f) GDPR) — Processing is necessary to safeguard the legitimate interests of the controller, provided that the interests or fundamental rights of the data subject do not prevail.
- Performance of a Contract (Art. 6(1)(b) GDPR) — Processing is necessary for the performance of a contract or pre-contractual measures.
4. Transfer to Third Countries (USA)
As part of our data processing, data is transferred to the following services in the USA. The transfer is based on the EU-US Data Privacy Framework (DPF) or Standard Contractual Clauses (Art. 46 GDPR):
| Service | Provider | Purpose | Basis |
|---|---|---|---|
| GitHub API | Microsoft / GitHub Inc. | Repository data, trending analysis | DPF |
| X / Twitter API | X Corp. | Automated publishing | SCC |
| YouTube API | Google LLC | Shorts upload | DPF |
| TikTok API | ByteDance / TikTok | Video upload | SCC |
| Anthropic API (Claude) | Anthropic PBC | AI analysis of repositories | SCC |
| CoinGecko API | Gecko Labs Pte. Ltd. | Crypto market data | SCC |
| Telegram Bot API | Telegram FZ-LLC | Push notifications | SCC |
5. Services and APIs Used
a) GitHub API
We use the GitHub API (Microsoft / GitHub Inc., San Francisco, CA, USA) to query publicly available repository data (stars, forks, language, description, trending status). No personal user data is queried.
Privacy: GitHub Privacy Statement
b) X / Twitter API
We use the X API v2 (X Corp., San Francisco, CA, USA) for automated publishing of tech signal summaries. Posts are labeled as automated.
Privacy: X Privacy Policy
c) YouTube Data API
We use the YouTube Data API v3 (Google LLC, Mountain View, CA, USA) for uploading automatically generated short videos (Shorts). No viewer data is processed.
Privacy: Google Privacy Policy
d) TikTok Content Posting API
We use the TikTok Content Posting API (ByteDance Ltd.) for uploading short videos. No viewer data is processed.
Privacy: TikTok Privacy Policy
e) Anthropic API (Claude)
We use the Anthropic API (Anthropic PBC, San Francisco, CA, USA) for AI-powered analysis of repository data. Only publicly available technical data is transmitted to the API, no personal data.
Privacy: Anthropic Privacy Policy
f) CoinGecko API
We use the CoinGecko API (Gecko Labs Pte. Ltd., Singapore) to query publicly available cryptocurrency market data (prices, market capitalization, volume). No personal data is transmitted.
Privacy: CoinGecko Privacy Policy
g) Telegram Bot API
We use the Telegram Bot API (Telegram FZ-LLC, Dubai, UAE) for sending push notifications to a configured channel. Chat IDs are used exclusively for message delivery.
Privacy: Telegram Privacy Policy
h) Google Fonts
We use Google Fonts (Google LLC) for font rendering. When the page is loaded, a connection to Google servers is established and your IP address is transmitted.
Privacy: Google Privacy Policy
6. Hosting
This application is hosted on our own infrastructure or on servers within the EU. Server log files (IP address, access time, requested resource, status code) are stored for security purposes and deleted after 7 days. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in security).
7. Automated Decision-Making
REPOSIGNAL uses algorithmic scoring methods and artificial intelligence (Anthropic Claude) to evaluate public open-source projects and crypto tokens. These evaluations ("Signal Scores") are created automatically and form the basis for automated publications on social media platforms.
The scoring algorithms are based on publicly available metrics (e.g. GitHub stars, forks, commit activity, price development) and do not involve processing of personal data of natural persons within the meaning of Art. 22 GDPR. No profiling of individuals takes place.
8. Your Rights (Data Subject Rights)
You have the following rights regarding your personal data:
- Right of Access (Art. 15 GDPR)
- Right to Rectification (Art. 16 GDPR)
- Right to Erasure (Art. 17 GDPR)
- Right to Restriction of Processing (Art. 18 GDPR)
- Right to Data Portability (Art. 20 GDPR)
- Right to Object (Art. 21 GDPR)
To exercise your rights, please contact: info@aiwebapp.app
9. Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority about our processing of personal data. The competent supervisory authority is:
Ludwig-Erhard-Str. 22, 7th Floor
20459 Hamburg
Phone: +49 40 428 54-4040
Web: https://datenschutz-hamburg.de
Email: mailbox@datenschutz.hamburg.de
10. Changes to this Privacy Policy
We reserve the right to update this privacy policy to ensure it always complies with current legal requirements or to implement changes to our services. The new privacy policy will then apply to your next visit.
As of: February 2026