Privacy Policy
GitLab & GitHub Access Helper is a Chrome extension for auditing repository access in GitLab and GitHub. This policy explains what data the extension processes and how it is stored.
Data the extension processes
- Provider type and base URL, such as GitLab.com, a self-hosted GitLab URL, or GitHub.com
- Login or account identifier entered by the user
- Personal access tokens entered by the user
- Repository, group, project, user, role, and membership data returned by provider APIs
- Encrypted local inventory cache and sync metadata
How credentials are stored
Personal access tokens are encrypted locally before they are saved. The extension uses a local encrypted vault protected by a master password. The master password is not stored, and unlock state is limited to the current browser session.
How data is used and shared
Data is used only to validate provider access, sync repository access inventory, show that inventory in the extension UI, and perform user-confirmed GitLab access changes when the token has the required permissions. Data is sent only to GitLab or GitHub API endpoints selected by the user.
Host permissions
The extension requests access to GitHub and GitLab endpoints so it can call the provider APIs. Optional host access may be requested for self-hosted GitLab instances selected by the user.
No sale or advertising use
The extension does not sell personal data, does not use data for advertising, and does not send data to analytics or tracking providers.