Back to KoraSafe privacy policy

KoraSafe VS Code Extension Privacy Policy

This policy explains how the KoraSafe VS Code Extension processes data when developers use it to register AI systems, review governance requirements, and check policy evidence from the development environment.

1. Data processed locally

The extension may inspect local workspace metadata, file paths, dependency manifests, configuration files, and AI-related code patterns to help identify AI systems and governance-relevant context. Local analysis supports registration prompts, policy checks, and developer workflow guidance.

The extension does not send source code to KoraSafe by default. Any content capture beyond metadata must be explicitly configured by the organization or initiated by the user.

2. Data sent to KoraSafe

If you sign in with a KoraSafe organization account, the extension may send governance events and AI system metadata to KoraSafe. This can include workspace identifier, repository URL, branch name, AI system name, policy check status, timestamps, extension version, and evidence needed for governance review.

KoraSafe does not sell extension data. Organization administrators control retention and access to governance records in the KoraSafe platform.

3. Authentication and settings

The extension stores authentication tokens and non-sensitive settings using VS Code extension storage. Users can sign out from the extension, clear local extension storage, or uninstall the extension at any time.

4. Permissions and workspace access

The extension runs inside VS Code and accesses workspace information only for governance workflows such as AI system registration, policy review, evidence capture, and developer guidance. It does not modify source files unless a user explicitly invokes an action that writes a generated artifact.

5. Retention

Local extension settings remain on the device until the user clears them or uninstalls the extension. Governance events sent to KoraSafe are retained according to the organization's KoraSafe retention settings and the main KoraSafe privacy policy.

6. Your choices

7. Contact

For privacy questions or requests, contact KoraSafe at Contact-us@korasafe.ai.

For the platform-wide policy, see KoraSafe Privacy Policy.

Last updated: June 18, 2026