Privacy Policy

Account data. When you create an account we collect your name, email, and authentication credentials, plus workspace, project, and team membership.

Bug capture data. When you (or a teammate) deliberately capture a bug, we collect the artifacts you choose to include: a DOM session replay (via rrweb), console logs, network request metadata, screenshots, and environment details (browser, OS, viewport, page URL). Captures are always user-initiated.

Usage data. Basic, privacy-respecting product analytics and error diagnostics to keep the service reliable.

Personally identifiable information is redacted in your browser, before any data leaves the page. By default, input values and password fields are masked during recording. You control redaction rules from the extension. Because redaction is client-side, masked content is never transmitted to or stored by BugMojo.

To provide the service — store and display captured bugs, power session replay, route issues to people or AI agents, and sync with your connected tools (e.g. GitHub, Jira, Linear, Slack) when you enable them.

To secure, maintain, and improve the product, and to communicate with you about your account. We do not sell your data or use bug capture content for advertising.

Capture artifacts (recordings, logs, screenshots) are stored as files in cloud object storage (AWS S3) within your workspace, uploaded via short-lived presigned URLs. Data is encrypted in transit (HTTPS/TLS). Access is scoped to your workspace and its members.

Quick Capture (no account) links expire automatically — anonymous captures after 24 hours, free-tier captures after 30 days.

Account and workspace data is retained while your account is active. You can delete individual captures, issues, or your entire account at any time; deletion removes the associated stored artifacts.

We share data only with infrastructure providers that help us run the service, under contract — for example cloud hosting and object storage (AWS), transactional email (Resend), and error monitoring (Sentry). When you enable an integration, we share the relevant issue data with that provider at your direction.

We may disclose information if required by law or to protect the rights and safety of our users and the public.

The extension runs capture scripts on the page only when you start a capture, and shows a consent dialog on first use. It contacts only the BugMojo API to authenticate and upload the bugs you capture — no other hosts. It stores your session, capture history, redaction preferences, and a local retry queue on your device.

You can access, export, correct, or delete your data. Depending on where you live, you may have additional rights under laws such as the GDPR or CCPA. To exercise any of these, contact us using the details below.

BugMojo is a developer tool not directed to children under 16, and we do not knowingly collect their data.

We may update this policy as the product evolves. Material changes will be reflected by the “last updated” date above and, where appropriate, additional notice.

Questions about privacy? Email privacy@bugmojo.com.