Overview
CommitPad is a browser extension that helps developers take notes and automatically sync them to their GitHub repository. Your privacy matters to us, and this policy explains how CommitPad handles data.
Summary
- We do NOT collect any user data
- We do NOT operate any servers or backend services
- Your notes stay on your device and your GitHub repository (if you choose to sync)
- We do NOT sell, share, or monetize your data in any way
- We do NOT use analytics, tracking, or telemetry
- All data transmission is directly between your browser and GitHub — we are never an intermediary
Data Disclosure (Chrome Web Store Compliance)
This section addresses data handling requirements for Chrome Web Store submission.
What Data Is Collected/Stored
| Data Type | Stored Locally | Sent to External Service | Collected by Developer |
|---|---|---|---|
| Notes & content | Yes (browser storage) | GitHub (only if sync enabled) | NO |
| Tags | Yes (browser storage) | GitHub (only if sync enabled) | NO |
| GitHub Personal Access Token (PAT) | Yes (browser storage) | Sent to GitHub API for authentication | NO |
| User settings/preferences | Yes (browser storage) | No | NO |
Data Collection Statement
CommitPad does NOT collect any user data. We (the developers) have no servers, no databases, and no way to access, view, or store your information. All data remains entirely under your control.
Data Sales/Sharing Statement
We do NOT sell, share, transfer, or disclose user data to any third parties. The only external service CommitPad communicates with is GitHub, and this happens:
- Only when you explicitly enable GitHub sync
- Only with your authorization using a token you provide
- Directly from your browser to GitHub's API — we are never an intermediary
Data Flow
What Data Does CommitPad Access?
1. Your Notes & Tags
- Notes and tags you create are stored locally in your browser's storage
- If you enable GitHub sync, notes are synced to a GitHub repository that you specify and control
- We never see, access, or store your notes — we have no servers to store them on
2. GitHub Personal Access Token (PAT)
- If you choose to enable GitHub sync, CommitPad requires a GitHub Personal Access Token
- Your token is stored locally in your browser's storage
- Your token is sent directly to GitHub's API for authentication — not to our servers (we have none)
- We never see, access, or store your token
3. Repository Information
- CommitPad accesses only the specific repository you configure for syncing
- We do not access any other repositories or GitHub data
What We Don't Collect
We do not collect ANY data. Period.
- Personal information (name, email, address)
- Your notes, tags, or any content you create
- Your GitHub token or credentials
- Browsing history
- Usage analytics or telemetry
- IP addresses
- Device identifiers
- Any data for advertising purposes
- Any data whatsoever
We have no servers, no backend, and no database. CommitPad is a client-side only extension. We have no technical capability to collect your data even if we wanted to.
Where Is Your Data Stored?
| Data Type | Storage Location | Who Controls It | Developer Access |
|---|---|---|---|
| Notes & tags | Your browser's local storage | You | None |
| Synced notes | Your GitHub repository (if enabled) | You | None |
| GitHub token | Your browser's local storage | You | None |
| User preferences | Your browser's local storage | You | None |
We do not operate any servers, databases, or cloud infrastructure. All data exists only in two places:
- Locally in your browser's storage (always)
- In your GitHub repository (only if you enable sync)
There is no "in between" — we have no servers that process, store, or relay your data.
Third-Party Services
CommitPad interacts with the following third-party service:
GitHub (github.com)
- Purpose: Syncing your notes to your repository (only if you enable this feature)
- Data sent to GitHub: Your notes/tags (committed to your repo), your GitHub Personal Access Token (for API authentication)
- How data is sent: Directly from your browser to GitHub's API via HTTPS
- Important: We (CommitPad developers) do NOT intercept, store, proxy, or have access to any data sent to GitHub. The connection is directly between your browser and GitHub.
- GitHub's privacy policy: https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement
When you use GitHub sync, your data is governed by GitHub's privacy policy and terms of service. We have no control over or access to data once it reaches GitHub.
Your Rights and Control
You have full control over your data:
- Delete notes: Delete any note within CommitPad at any time
- Revoke access: Remove the GitHub token from settings or revoke it from GitHub directly
- Uninstall: Removing the extension deletes all locally stored data
- Export: Your notes live in your GitHub repo — you always have access to them
Data Security
- All communication with GitHub uses HTTPS encryption
- Your GitHub token is stored locally in your browser and is never transmitted to us (we have no server to receive it)
- Data flows directly from your browser to GitHub — no intermediary servers
- We recommend using a GitHub token with minimal required permissions (repo scope only)
- You can revoke your GitHub token at any time from GitHub's settings
Children's Privacy
CommitPad is not intended for use by children under 13. We do not knowingly collect data from children.
Changes to This Policy
We may update this privacy policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Continued use of CommitPad after changes constitutes acceptance of the updated policy.
Contact
If you have questions about this privacy policy or CommitPad, please contact:
Email: [email protected]
Website: https://ligabazi.co.za
Permissions Explanation
CommitPad requests the following browser permissions:
| Permission | Why It's Needed | Data Sent Externally |
|---|---|---|
storage |
To save your notes, tags, and settings locally in the browser | No |
host permissions for api.github.com |
To sync notes to your GitHub repository (only if you enable sync) | Yes, directly to GitHub |
Note: These permissions allow CommitPad to function. No data collected through these permissions is sent to CommitPad developers.
This privacy policy is effective as of January 25, 2026.