How Fabrica handles your data.

The following data lives in your browser’s extension storage and never leaves your machine unless you explicitly export it:

• Skills — the markdown files describing the click sequences Fabien knows for a given site. You can read, edit, and delete them at any time.
• Task history — the prompts you give Fabien and the high-level steps he took, used so you can replay and audit past tasks.
• Preferences — extension settings, theme, and keyboard shortcuts.

To turn a natural-language prompt into a plan of clicks, the extension sends the following to our Cloudflare Worker:

• The text of the prompt you typed and the URL of the active tab.
• A compact, structured representation of the visible page (the DOM accessibility tree, stripped of free-form text content where possible) — this is what allows Fabien to locate the right buttons.
• The Fabrica installation ID — a random UUID generated on first launch, used for rate-limiting and abuse prevention. It is not linked to your real identity.

The Worker forwards the prompt and the page representation to our language-model provider (see “Subprocessors” below) and returns a plan. Neither the Worker nor the model retains the request beyond the time needed to answer.

Cloudflare logs the IP address, user agent, and timestamp of each request for security purposes (DDoS protection, rate limiting, fraud prevention). These logs are retained for 30 days and then deleted.

If you choose to connect a third-party account such as Gmail or Google Calendar, the connection is brokered by Composio, an integration provider whose OAuth applications are already verified by the relevant providers (Google, Slack, Notion, etc.). The consent screen you see during connection is served by the provider through Composio’s verified application — Fabrica never holds raw OAuth credentials for these services.

When Fabien needs to act on a connected account (for example, to send an email or create a calendar event), the extension calls the Composio API with the action payload. Composio executes the call against the third-party API and returns the result to the extension. The data exchanged with the provider is never sent to our language-model provider.

• No accounts, no passwords. Fabrica does not require sign-up.
• No analytics on your tasks. We do not track which sites you visit, which prompts you run, or how often.
• No cross-site tracking, no advertising IDs, no third-party cookies.
• No selling, no sharing for ads. We do not sell your data and do not share it for advertising or marketing.

• The action payload you confirmed in Fabien’s side panel (e.g. the recipient and body of an email you asked Fabien to send, or the title and time of an event you asked Fabien to create).
• The connection identifier that links the action to the right account on your behalf.

Composio executes the call against the third-party API and returns the result to the extension. The data exchanged with the third-party service is never sent to our language-model provider, and we do not retain a copy beyond the request lifecycle.

Where a third-party provider — for example Google — applies its own data-use policy (such as the Google API Services User Data Policy and its Limited Use requirements), Fabrica honors those commitments end-to-end. Specifically, Fabrica:

• Does not use third-party user data to develop, improve, or train generalized or non-personalized AI or machine-learning models.
• Does not transfer third-party user data except as necessary to perform the user-facing action you requested, comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to you.
• Does not allow humans to read third-party user data unless we have your affirmative agreement for the specific item, it is necessary for security purposes (such as investigating abuse), or to comply with applicable law.
• Does not use third-party user data for serving ads, including personalized, retargeted, or interest-based advertising.

You can revoke Fabrica’s access to a connected account at any time, either from inside the extension or from the provider’s permissions page (for example, Google account permissions). Revocation takes effect immediately. Uninstalling the extension clears the locally stored connection state.

• Access — request a copy of the data we hold about you.
• Rectification — correct inaccurate data.
• Erasure — request deletion (“right to be forgotten”).
• Restriction — limit how we process your data.
• Portability — receive your data in a machine-readable format.
• Objection — object to processing based on legitimate interests.
• Withdraw consent at any time, without affecting the lawfulness of prior processing.
• Lodge a complaint with the French CNIL (cnil.fr) or your local supervisory authority.

• Right to know what personal information we collect.
• Right to delete personal information we hold.
• Right to correct inaccurate personal information.
• Right to opt out of any sale or sharing of personal information — we do not sell or share, but the opt-out remains available.
• Right to non-discrimination for exercising any of the above.