Privacy Policy

Updated: 22nd December 2022

Privacy Policy

This privacy notice details how we look after your personal data when you visit our site or use our software, as well as information about your privacy rights and how the law protects you.

Who we are

Pull Checklist is responsible for this website. Pull Checklist is a trading name of Media Market Limited. Pull Checklist is a checklist builder and auditing tool for GitHub Pull Requests.

Purpose of this Privacy Notice

This privacy notice aims to give you information on how Pull Checklist collects and processes your personal data through your use of this website, including any data you may provide to us by using our software to receive services as an employer employee, or a service provider to employers.

Neither our website or software are intended for children, as such we do not knowingly collect data relating to children.

It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them.

Controller and Processor

If you are using our software

Pull Checklist shall be the data processor (as defined in the GDPR) of information and personal data of employees that you provide to us through our software, and you, as the employer, shall remain the data controller of such information and be responsible for this data. We shall process this personal data in accordance with the terms of this privacy policy and our terms and conditions of business.

Pull Checklist shall be collectively referred to as “Pull Checklist”, “we”, “us” or “our” in this privacy notice).

We have appointed a data privacy manager who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the data privacy manager using the details set out below.

| Full Name of Legal Entity | Media Market Limited | | --- | --- | | Address | First Floor Healthaid House, Marlborough Hill, Harrow, Middlesex, HA1 1UD | | Name of Data Protection Officer | Michael Colley | | Email Address | |

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues ( We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

Changes to the privacy notice and your duty to inform us of changes

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

Third-party links

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

How is your personal data collected?

We use different methods to collect data from and about you including through:

Direct interactions. You or your employer may give us your Identity, Contact, Transaction, Financial, Financial / Employment, Profile and Medical Data as identified above in this privacy policy through:

  • the use of our software
  • creating an account
  • subscribing to our services or mailing list
  • requesting marketing be sent to you
  • entering a competition, promotion or survey
  • giving us some feedback.

Automated technologies or interactions. As you interact with our website or use our application, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies. We may also receive Technical Data about you if you visit other websites employing our cookies. Please see our Cookie Policy for further details.

Data We Collect About You

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

For our Pull Checklist SaaS (Software as a Service) users, we collect, use, store, and transfer various types of personal data, categorized as follows:

Identity Data includes your email address and user handle.

Contact Data comprises your email address, essential for communication and service provision.

Profile Data includes your service plan, preferences, user-generated content such as checklists, feedback, and survey responses.

Usage Data captures how you engage with our website, software, and services, including but not limited to navigation paths, feature utilization, and interaction metrics.

Repository Data involves details related to your managed repositories, such as:

  • Administration details like repository settings, teams, and collaborators.
  • Information on checks, commit statuses, issues (along with related comments, assignees, labels, milestones), and pull requests.

Organization Data details the structure and management of your organization within our service, including:

  • Administration settings.
  • Custom properties and repository roles.
  • Member lists and team structures.

If You Fail to Provide Personal Data

Failing to provide necessary personal data may impede our ability to offer you the full range of SaaS functionalities. In such cases, certain services or features may not be available to you.

How Is Your Personal Data Collected?

Your personal data is collected through:

Direct interactions, such as when you:

  • Register for an account.
  • Subscribe to our services.
  • Interact with our customer support.

Automated technologies or interactions, as you use our service, which collect data about your browsing actions and patterns.

How We Use Your Personal Data

We use your personal data to provide and improve our SaaS offerings. This includes:

  • Processing your subscription and managing your account.
  • Providing customer support and service updates.
  • Enhancing security, monitoring, and verifying identity or service access.

Data Retention and Deletion

  • Your data is retained for as long as you maintain an account with us or as needed to provide you services.
  • Upon request, we will delete your data. Requests for data deletion can be made by contacting us at

This section ensures your privacy policy is accurately aligned with the Pull Checklist SaaS offering's data handling practices, including collection, use, retention, and deletion protocols.


We aim to offer you control over the use of your personal data, especially in terms of marketing and advertising.

Promotional Offers from Us

Based on the data we hold about you, including your usage of our Pull Checklist SaaS offering, we may determine what we believe you may need or find interesting. This helps us identify and inform you about products, services, or offers that might be relevant for you. We may communicate these through various channels, always ensuring your preferences are considered.

You have the option to opt-out of receiving marketing communications from us at any time by following the instructions provided in each communication or by contacting us directly.

Third-party Marketing

We respect your privacy and will only share your personal data with external companies for marketing purposes if we have your explicit consent to do so.

Opting Out

You can request at any time that we or any third parties cease sending you marketing messages. This request can be made by directly contacting us. Opting out of marketing communications does not apply to personal data provided to us as a result of a service transaction.

Change of Purpose

We will use your personal data only for the purposes for which it was collected, unless we reasonably determine that it needs to be used for another reason that is compatible with the original purpose. If you wish to understand how the processing for the new purpose is compatible with the original purpose, please contact us.

We may process your personal data without your knowledge or consent, in compliance with the above rules, where required or permitted by law.

Disclosures of Your Personal Data

For the operation and enhancement of our services, we may need to share your personal data with certain parties, including:

  • Internal teams within our organization.
  • External service providers who support our IT and system administration.
  • Professional advisers such as lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
  • Potential buyers or partners in the event of a business deal involving sale, transfer, merger, or acquisition of our business assets.

All third parties are required to respect the security of your personal data and treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Data Security

We implement suitable security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. Access to your personal data is restricted to those who have a legitimate business need to know it and they are bound by confidentiality obligations.

In case of a data breach, we have procedures in place to deal with it effectively and will notify you and any applicable regulator as required by law.

Data Retention

How Long Will You Use My Personal Data For?

Your personal data will be retained only as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

The retention period for personal data varies depending on the type of data and the reasons for processing it. Generally, we adhere to statutory retention periods for tax and other regulatory purposes.

In certain circumstances, you have the right to request the deletion of your data. For more information, see ‘Your Legal Rights’ below.

Your Legal Rights

You have several rights under data protection laws in relation to your personal data, such as the rights to access, correct, erase, object to processing, and request the transfer of your personal data. If you wish to exercise any of these rights, please contact us.

No Fee Usually Required

There is no fee for accessing your personal data (or exercising any other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive, or we may refuse to comply with your request under these circumstances.

Time Limit to Respond

We aim to respond to legitimate requests within one month. It might take longer if your request is particularly complex or you have made multiple requests, in which case we will notify and update you."