Privacy Policy — Quick Repo

Last updated: 21 May 2026

Quick Repo is a Chrome extension that lists your GitHub repositories and lets you organize them into custom collections. This policy explains what data the extension handles and where it is stored.

Data we process

• GitHub account data — when you connect via GitHub's OAuth Device Flow, the extension reads your public profile and your repositories (public and private, per the repo scope you grant). This data is fetched directly from the GitHub API.
• Access token — the GitHub token issued during login is stored locally in your browser (chrome.storage.local) and used only to call the GitHub API on your behalf. It is never sent to us.
• Collections — the folders you create and the repos you add to them are synced to Google Firebase Firestore under an anonymous identifier, so your organization persists across devices.

How data is stored

• Locally: your token, profile, repository list, and a cache of collections live in chrome.storage.local on your machine.
• Cloud: only your collections (folder names, icons, and the repository identifiers you placed in them) are stored in Firestore, keyed to an anonymous Firebase UID. We do not store your GitHub token in the cloud.

What we do NOT do

• We do not sell, rent, or share your data with third parties.
• We do not use analytics, tracking, or advertising.
• We do not access repository contents or source code.

Third-party services

• GitHub — authentication and repository data (privacy statement).
• Google Firebase — anonymous authentication and Firestore storage for your collections (privacy policy).

Deleting your data

• Uninstalling the extension removes all locally stored data, including your access token.
• Revoke the extension's access anytime in your GitHub authorized OAuth Apps.
• To delete your synced collections, remove them in the extension before uninstalling, or contact us at the address below.

Contact

Questions about this policy? Email tugdual.lny@gmail.com.