Privacy Policy
Last updated: February 2026
What yellingatbots is
yellingatbots.com is a community platform for sharing the AI prompts that built your software projects. It is powered by whogitit by dotsetlabs for AI code attribution.
What data we collect
We collect and store the following data when you use yellingatbots:
- Account data: Your GitHub username, display name, and avatar URL. This comes from GitHub when you sign in via OAuth.
- Profile data: Bio and website URL, if you choose to add them.
- Project data: Repository name, title, description, and live site URL for projects you list.
- Prompt and commit data: When you sync a project, we store the full text of AI prompts, commit messages, author names, AI model identifiers, session IDs, line count statistics, and file paths. This data comes from whogitit exports that you push via GitHub Actions.
Why we collect it
We process your data to operate the platform: displaying your projects and prompts publicly, calculating AI attribution statistics, and letting you manage your listings. The legal basis under GDPR is performance of a contract (providing the service you signed up for) and legitimate interest (operating and improving the platform).
Cookies
We use only functional cookies that are strictly necessary for the site to work. These include Supabase authentication session cookies and a short-lived GitHub token cookie (expires after 8 hours) used to load your repositories when adding a project. We do not use any tracking, analytics, or advertising cookies.
Third-party services
Your data is processed by the following third parties:
- GitHub -- OAuth authentication provider. Subject to GitHub's privacy statement.
- Supabase -- Database and authentication infrastructure. Subject to Supabase's privacy policy.
- Vercel -- Hosting provider. Subject to Vercel's privacy policy.
Data retention
Your data is kept for as long as your account exists. You can delete individual projects at any time from your dashboard, which removes all associated commits and prompts. You can also delete your entire account from the dashboard, which removes all your data from our systems.
Prompt visibility
Prompts you sync are public by default. As a project owner, you can hide individual prompts so that other users see only a placeholder instead of the prompt text. Hidden prompt text is redacted server-side and never sent to non-owners.
Your rights under GDPR
If you are in the European Economic Area, you have the right to:
- Access your personal data
- Rectify inaccurate data (edit your profile and project details from the dashboard)
- Erase your data (delete your account from the dashboard)
- Export your data (download a copy from the dashboard)
- Object to processing or restrict processing
To exercise any of these rights, use the self-service tools in your dashboard or contact us at the address below.
Contact
For privacy-related questions or requests, open an issue on the yellingatbots GitHub repository.