Privacy Policy

Last updated: February 2026

Overview

MCP GitLab is a stateless proxy that connects AI assistants to your GitLab instance via the Model Context Protocol (MCP). It does not collect, store, or sell any personal data.

Data We Do NOT Collect

• No personal information or user profiles
• No analytics, tracking pixels, or cookies
• No GitLab content, repositories, issues, or merge requests
• No IP addresses or access logs beyond Cloudflare's standard infrastructure

Authentication

This server uses Personal Access Token (PAT) authentication only. Your token is passed through request headers and used solely to authenticate with the GitLab API on your behalf. Tokens are never stored by the server — each request is processed and immediately discarded.

Third-Party Services

• Cloudflare Workers — hosts the server runtime. Subject to Cloudflare's Privacy Policy.
• GitLab — your data remains on GitLab's infrastructure. Subject to GitLab's Privacy Policy.

Open Source

This project is fully open source under the MIT License. You can audit the complete source code at GitHub.

Contact

For questions about this privacy policy, please open an issue on our GitHub repository.