Last updated: March 2026
When you sign in with GitHub, we collect your GitHub username, email address, and an OAuth access token scoped to read-only repository access. We do not store your code. We fetch commit messages (not code content) to generate changelogs, and we store those generated changelogs in our database.
Your GitHub token is used solely to fetch commit history from repositories you explicitly connect. Commit messages are sent to Anthropic's API to generate changelog text. We do not sell, share, or use your data for advertising.
Your data is stored in Supabase (PostgreSQL), hosted in the EU. GitHub access tokens are stored server-side only and are never exposed to the browser. You can delete your account and all associated data at any time by emailing us.
Questions? Email us at hello@gitchangelog.dev