Quay — Privacy Policy

Privacy Policy

Quay does not collect, store, or transmit any personal data. There are no analytics, no telemetry, and no third-party services.

What Quay stores locally

GitHub credential — your OAuth access token or personal access token, stored in the app's sandboxed container (~/Library/Containers/Quay/) with file permissions restricted to the current user (0600). Never sent anywhere except GitHub.

Repository configuration — folder paths, branch names, and sync history. Stored locally in the same sandboxed directory.

Network requests

Quay communicates only with GitHub. The requests it makes:

POST github.com/login/device/code — to start the "Sign in with GitHub" device flow
POST github.com/login/oauth/access_token — to poll for authorization during sign-in
GET api.github.com/user — to validate your credential and display your username
GET api.github.com/repos/.../issues and .../pulls — to show open issue and PR counts

All sync operations use the local git binary. Data travels directly between your Mac and GitHub's servers. No data passes through any intermediary.

Data deletion

To delete all data stored by Quay, use Settings > Reset Quay in the app, or run:

rm -rf ~/Library/Containers/Quay/

Contact

Questions about this policy? See the support page.

Updated

Last updated 12 March 2026