Privacy Policy

Last updated: April 2026

1. Information We Collect

When you sign up for ShipRelay, we collect your GitHub username, email address, and OAuth access token (encrypted at rest using AES-256-GCM). We also collect repository metadata (names, tags, commits) that you explicitly connect to ShipRelay.

For subscribers to your changelogs, we collect their email address and a confirmation token. Subscriber emails are stored only for the purpose of delivering changelog digests.

2. How We Use Your Data

  • Generate AI-powered changelogs from your repository data
  • Send transactional emails (confirmations, changelog digests, draft notifications)
  • Process payments via Stripe (we do not store card details)
  • Track anonymous page views and engagement analytics for your changelog pages
  • Improve our service and debug issues via structured logging

3. Data Sharing

We do not sell your data. We share data only with the following third-party services necessary to operate ShipRelay:

  • Supabase — database hosting (Canada/US)
  • Anthropic (Claude) — commit messages, PR titles, and diff summaries are sent to Claude's commercial API for changelog generation; under Anthropic's commercial API terms, inputs and outputs are not used to train their models; no raw source code is sent
  • Resend — transactional email delivery
  • Stripe — payment processing
  • Vercel — application hosting
  • GitHub — repository data via OAuth

Your data may be processed in Canada, the United States, or other jurisdictions where our service providers operate. When data is transferred outside Canada, we rely on contractual safeguards (including standard contractual clauses where applicable) to ensure your data receives equivalent protection.

4. Data Retention

When you delete your account, your user record is soft-deleted immediately. After 30 days, all associated data (repositories, changelogs, subscribers, analytics) is permanently hard-deleted. Deletion audit logs are retained for 12 months for compliance purposes.

Anonymous analytics events — including changelog page views, email open tracking pixels, and widget impression counts — older than 12 months are automatically purged. These events are not linked to any personally identifiable information.

5. Your Rights

Under PIPEDA (Canada) and GDPR (EU), you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (self-serve via Settings)
  • Withdraw consent at any time

Subscribers can unsubscribe via one-click links in every email and request full data deletion via the link in the email footer.

6. Security

All data is transmitted over HTTPS. GitHub OAuth tokens are encrypted at rest using AES-256-GCM derived from a server secret. Supabase enforces row-level security policies. We do not store payment card details — Stripe handles all payment data.

7. Cookies

ShipRelay uses only essential session cookies for authentication. We do not use tracking cookies, advertising cookies, or third-party analytics scripts.

8. Children's Privacy

ShipRelay is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If we learn we have collected data from a child under 16, we will delete it promptly.

9. Contact

For privacy questions or data requests, email privacy@shiprelay.io.