Is my code sent to your servers?

Only the error message and the relevant code snippet around it. Your full codebase stays on your machine. Indexing runs locally inside VS Code.

How is this different from ChatGPT?

ChatGPT only knows what you paste. DebugAI pre-indexes your entire project: file structure, imports, call chains. It traces errors across files automatically. No architecture explanations needed.

What languages and frameworks does DebugAI support?

Python (FastAPI, Django, Flask, Streamlit, PyTorch) and JavaScript/TypeScript (React, Next.js, Express, Node.js, Vite). More added based on user feedback.

Is DebugAI actually free?

Yes. 10 debug sessions per day on the free tier, forever. During beta all features are included. No credit card required.

Will DebugAI overwrite my code without asking?

Never. Every fix shows a full diff before anything is applied. After applying you have 30 seconds to undo with a single click.

Does DebugAI work with Cursor or Windsurf?

Yes. DebugAI is a standard VS Code extension and works in any VS Code-compatible editor including Cursor and Windsurf.

How long does DebugAI setup take?

About 10 seconds. Install from the VS Code Marketplace, get an API key from the dashboard, and you are ready. No config files, no Docker, no build steps.

Legal

Privacy Policy

Last updated: April 12, 2026

What leaves your machine — and what doesn't

During indexing: When you index your workspace, file content is sent over HTTPS to DebugAI servers where it is chunked and sent to Voyage AI for embedding generation. Code chunks and their embeddings are stored in your project index on our servers. Only files you choose to index are sent — never your full filesystem, git history, or secrets.

During debugging: The error message, a relevant code snippet, and optionally the names of recently modified files in your git repository are sent for AI analysis. File contents beyond the retrieved snippet, commit history, and diff text are never sent.

When idle: Nothing is sent. No background scanning. No telemetry on your codebase. API keys are stored in VS Code's encrypted SecretStorage — never in plaintext.

1. Who we are

DebugAI ("we", "us", "our") operates the website at debugai.io, the DebugAI VS Code extension, and related APIs. This policy covers all of these services (collectively, the "Service").

For privacy questions, contact us at privacy@debugai.io.

2. Data we collect

Category	What	Why
Account	Email, name (via Clerk — Google, GitHub, or email sign-in)	Authentication, daily usage tracking, support
Indexed code chunks	Code chunks from files you index in VS Code, plus their embeddings	Stored in your project index on our servers to retrieve relevant snippets when you debug. Scoped to your account — never shared with other users.
Debug requests	Error message + relevant code snippet per request	Sent to AI for analysis. Cached short-term, then deleted
Git context	Names of recently modified files in your git repository (file paths only — never file contents, diff text, or commit history)	Helps the AI understand which files are relevant to the error. Sent only when a git repository is detected. Not stored beyond the debug session.
Usage analytics	Product events: debug sessions, fix applied, limit hit — no code content	Product improvement, feature prioritization
Error tracking	Stack traces from DebugAI itself — never from your code	Bug fixing and reliability

3. What we do NOT collect

Your full filesystem — only files you explicitly index in VS Code are ever sent. Your file system is never scanned automatically.
Git history or diff text — only the names of recently modified files are sent (paths only), and only during a debug request if a git repo is detected.
API keys or secrets — your DebugAI API key is stored in VS Code's encrypted SecretStorage, never in plaintext.
Background data — when you're not actively indexing or debugging, nothing is sent. Zero background scanning or telemetry on your codebase.
Your data shared with other users — code chunks in your project index are scoped to your account only.

4. How your data is processed

Workspace indexing

You run "Index Workspace" in VS Code.
The extension reads each file and sends the content over HTTPS to DebugAI servers.
The server chunks the content and sends chunks to Voyage AI for embedding generation.
Embeddings and code chunks are stored in your project index in our database, scoped to your account.

Debug analysis

You press Ctrl+Shift+P in VS Code.
The extension extracts the error message and retrieves relevant code snippets from your project index. If a git repository is detected, it also collects the names of recently modified files (paths only).
This data is sent over HTTPS to the DebugAI API.
The API forwards it to Claude (Anthropic) for analysis.
The response is cached short-term, then automatically deleted.
The fix is returned to your VS Code extension as a diff preview.

5. Subprocessors

We use the following third-party services to operate DebugAI:

Service	Category	Region
Anthropic	AI inference	United States
Voyage AI	Code embeddings	United States
Clerk	Authentication	United States
PostHog	Product analytics	United States / EU
Sentry	Error monitoring	United States
Railway	Infrastructure hosting	United States
Stripe (planned)	Payment processing	United States

6. Data retention

Indexed code chunks: Retained while your project index is active. Deleted when you delete your account or remove the project index.
Debug request cache: Short-term cache, automatically deleted.
Account data: Retained while your account is active. Deleted within 30 days of account deletion request.
Analytics events: Retained per PostHog's data retention policy.
Error tracking: Sentry retains events for 90 days.

7. Your rights

If you are in the European Economic Area (EEA), United Kingdom, or another jurisdiction with data protection laws, you have the following rights:

Access — Request a copy of the personal data we hold about you.
Rectification — Request correction of inaccurate data.
Deletion — Request deletion of your personal data.
Portability — Request your data in a machine-readable format.
Objection — Object to processing based on legitimate interests.
Restriction — Request restricted processing while we resolve a complaint.

To exercise any of these rights, email privacy@debugai.io. We will respond within 30 days.

8. Legal basis for processing (GDPR)

Contract performance: Account data and debug requests are processed to provide the Service you signed up for.
Legitimate interest: Analytics and error tracking help us improve reliability and user experience.
Consent: Where required, we obtain consent before processing (e.g., marketing communications).

9. Cookies

We use strictly necessary cookies for authentication. PostHog may set analytics cookies. We do not use advertising cookies or sell data to third parties.

10. Security

All data is transmitted over HTTPS/TLS. API keys are stored in VS Code's encrypted SecretStorage. Server infrastructure is hosted on Railway with managed PostgreSQL and Redis.

11. Children's privacy

DebugAI is not directed at children under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

12. Changes to this policy

We may update this policy from time to time. We will notify users of material changes via email or an in-app notice. The "Last updated" date at the top reflects the most recent revision.

13. Contact

For privacy-related questions or data requests:

Email: privacy@debugai.io
General support: support@debugai.io
Website: debugai.io