Last updated: 2026-05-16

Privacy Policy

How Pushrift collects, uses, and protects your personal information.

Who We Are

Pushrift is a developer platform for managing and distributing desktop application updates. We are based in the EU/EEA and process personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable European data protection laws.

For any privacy-related questions, contact us at [email protected].

What Data We Collect and Why

Account Data

When you sign up, we collect your name and email address. We use this to create and manage your account, send you transactional emails (such as password resets and billing notices), and communicate important updates about the Service. The legal basis for this processing is the performance of our contract with you.

Billing Data

When you subscribe to a paid plan, payment is handled directly by Stripe. We do not store your card number or payment credentials — we only receive a confirmation token and your billing status from Stripe.

Usage Data

We use a self-hosted instance of Umami to understand how the Pushrift dashboard is used. Umami is privacy-friendly and does not use cookies or collect personal identifiers. The data is aggregated and used solely to improve the Service. No personal data leaves our infrastructure for analytics purposes.

Update Check Data

When an end user's desktop application checks for updates through Pushrift, our SDK collects the following on behalf of the customer whose app is being updated:

A unique anonymous identifier generated by the Pushrift SDK (not tied to any personal identity)
The current app version installed
The operating system and platform of the end user's device
Update events (e.g. update checked, update downloaded, update skipped)

This data is used to deliver the correct update and to provide customers with update delivery metrics. It is retained for 30 days and then deleted. Pushrift acts as a data processor for this data — the customer whose app is being updated is the data controller.

Support Communications

If you contact us by email, we retain that correspondence to resolve your issue and improve our support. We do not use it for marketing.

Data We Do Not Collect

We do not collect IP addresses for tracking purposes, use third-party advertising or tracking pixels, sell your data to any third party, or build profiles on end users of our customers' applications.

We do not sell personal data. We share data only with the sub-processors listed on our Sub-processors page, each of whom is bound by a data processing agreement. We may also disclose data where required by law or court order.

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you before any such transfer takes effect.

Data Retention

We retain your account data for as long as your account is active. If you close your account, your personal data is deleted within 30 days, except where we are required by law to retain it longer (for example, billing records for tax purposes).

Update check logs are retained for 30 days and then automatically deleted.

As a resident of the EU/EEA, you have the following rights regarding your personal data:

Access: you can request a copy of the personal data we hold about you
Rectification: you can ask us to correct inaccurate data
Erasure: you can ask us to delete your personal data
Restriction: you can ask us to stop processing your data in certain circumstances
Portability: you can request your data in a structured, machine-readable format
Objection: you can object to processing based on legitimate interests

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.