Privacy Policy.

Orchestra Code ("Orchestra", "we", "us") is an AI code change platform available on the web and as a mobile app for iOS and Android. This policy explains what we collect, why, and the choices you have. It applies to the Orchestra Code mobile app and to orchestracode.com.

Account information. When you sign in, we collect your email address and basic profile details (such as your name and avatar) from your sign-in provider, for example GitHub. We use a user identifier to keep your account and workspaces separate.

Your content. We process the task prompts you write or dictate, and the code in the repositories you connect, in order to run the AI coding agent and show you diffs, previews, and pull requests.

Images you attach. If you choose to attach an image to a task, we process that image as part of the task. We only access your photo library when you pick a photo.

Voice input. If you use voice to create a task, your speech is transcribed into text for the prompt. We do not store voice recordings.

Purchases. If you buy a subscription, the purchase is processed by Apple or Google. We receive the purchase status to unlock features. We never receive your full payment card details.

• To run AI coding agents and produce code changes, diffs, previews, and pull requests.
• To operate your account, workspaces, and subscriptions.
• To keep the service secure and to debug and improve reliability.
• To respond to your support requests.

We do not sell your personal data, and we do not use your code to train our own models.

To generate code, your task prompts and relevant repository context are sent to the AI provider that runs your task, such as Anthropic (Claude) or OpenAI (GPT). Those providers process the request under their own terms. If you bring your own API key, requests are billed to your provider account at provider price, and we do not proxy or retain your traffic. API keys are stored encrypted and scoped to your workspace.

When you connect GitHub or Bitbucket, Orchestra acts on your behalf to clone repositories, create branches, push commits, and open pull requests. We use the access you grant only to perform the tasks you start.

We share data only with the service providers needed to run Orchestra: cloud infrastructure, the AI providers that run your tasks, your chosen Git host, and the app stores that process purchases. Each acts under its own agreement and only to provide the service.

We keep your account data and task history for as long as your account is active. You can delete your account at any time from Settings, which removes your account data. To request deletion or ask a privacy question, contact us at the email below.

We use encryption in transit and at rest for sensitive data, including API keys. No system is perfectly secure, but we work to protect your information and limit access to it.

Orchestra Code is not directed to children under 13, and we do not knowingly collect their data.

We may update this policy from time to time. We will revise the date at the top when we do.

Questions about this policy or your data? Email privacy@orchestracode.com.