CodeRabbit

AI-powered code review platform that automatically reviews pull requests for bugs, security, and quality

by CodeRabbit

United States🌐US cloud infrastructure

TrustKit ScoreRated across 5 compliance dimensions: data residency, legal jurisdiction, data retention, certifications, and regulatory fit.Moderate

About CodeRabbit

CodeRabbit was founded in 2023 by Harjot Gill, Guritfaq Singh, and Vishu Kaur in California. The platform provides AI-powered code review that automatically analyses every pull request in a repository, identifying bugs, security vulnerabilities, performance issues, and code quality problems before human reviewers spend time on them. CodeRabbit integrates directly into GitHub, GitLab, and Bitbucket workflows. When a developer opens a pull request, CodeRabbit generates a contextual review that understands the codebase, the intent of the change, and potential impacts across the project. It provides inline comments, suggested fixes, and a summary of findings. The company raised $60 million in a Series B round (September 2025) led by Scale Venture Partners with participation from NVIDIA NVentures, following a $16 million Series A led by CRV, reaching a $550 million valuation. CodeRabbit serves over 8,000 businesses. For European development teams, CodeRabbit offers a way to enforce consistent code quality standards across distributed teams. The platform accesses source code to perform reviews, which means data residency and handling policies are particularly important. As a US-incorporated company, CLOUD Act considerations apply. European businesses in regulated industries should evaluate the data handling terms carefully.

TrustKit Score Breakdown

?52% Moderate

Data Residency

Where is your data stored and processed?

US cloud infrastructure. Source code is processed in US data centres for review. No EU-specific hosting option publicly documented.

2/5

Legal Jurisdiction

Which laws govern the company and your data?

California incorporation. US jurisdiction and CLOUD Act apply. Source code access makes jurisdiction particularly relevant.

2/5

Data Retention & Training

Is your data used for model training?

Code not used for model training per policy. Review data isolated per organisation. Clear data handling terms for enterprise customers.

4/5

Certifications

ISO 27001, SOC 2, Cyber Essentials, etc.

SOC 2 Type II certified. ISO 27001 not confirmed. Solid for a Series B developer tooling company.

3/5

Regulatory Fit

Suitability for regulated industries and professional services

US jurisdiction with source code access is a significant consideration for EU regulated industries. Suitable for European tech companies with lower compliance requirements. GDPR DPA available.

2/5

Pricing

FreemiumFree tier14-day trial

Free (Open Source)FreeUnlimited public repos · AI code reviews · Basic features

Pro$15/user/mo($12/user/mo annual)Private repos · Advanced AI reviews · Custom rules · …

EnterpriseFreeSOC 2 report · GDPR DPA · Custom integrations · …

Full pricing details →

Quick Facts

Starting PriceFree (OSS) / $15/user/mo ProData HostingUS cloud infrastructureTrains on Your DataCode not used for model training per policyFounded2023Employees51-200

Visit CodeRabbit

Frequently Asked Questions

Is CodeRabbit GDPR compliant?

CodeRabbit has a TrustKit compliance score of 52% (Moderate). Data Residency: US cloud infrastructure. Source code is processed in US data centres for review. No EU-specific hosting option publicly documented.. Legal Jurisdiction: California incorporation. US jurisdiction and CLOUD Act apply. Source code access makes jurisdiction particularly relevant..

Where does CodeRabbit store data?

CodeRabbit hosts data in: US cloud infrastructure. US cloud infrastructure. Source code is processed in US data centres for review. No EU-specific hosting option publicly documented.

Does CodeRabbit train on user data?

CodeRabbit: Code not used for model training per policy. Code not used for model training per policy. Review data isolated per organisation. Clear data handling terms for enterprise customers.