Your data, scoped and accounted for
We don't sell data. We don't train models on your data. This page explains what we collect, why, and how long we keep it.
Last updated . This policy describes how ChangeFabric handles your data today. We version it as the product evolves and note the effective date on each update.
Data we collect
We practice minimum collection. We gather only what's needed to run the service: account details (name, work email), workspace configuration, the connectors you explicitly enable, and the credentials those connectors require — stored encrypted and scoped to your workspace.
Document and workflow content flows through the system only when you run a workflow that touches it. We do not crawl or ingest systems you haven't connected.
How we use it
We use your data to operate the product: run the workflows you configure, attach release evidence and change records, and surface value and risk signals back to you.
We don't sell data, and we don't train models on your data. Your content is not used to improve any model, ours or a third party's.
Cookieless analytics
Our marketing site uses cookieless, privacy-respecting analytics. We don't set tracking cookies or build cross-site advertising profiles. Aggregate page metrics help us understand what's useful — they don't identify you.
Subprocessors
We rely on a small set of vendors to deliver the service. Today this includes:
- Cloudflare — hosting (Pages / Workers) and edge delivery.
- Model providers — for AI workflow execution, under terms that prohibit training on submitted content.
We maintain this as a current, versioned subprocessor register and update it as subprocessors change. Enterprise deployments can run on a dedicated instance with regional pinning.
Data retention
Raw document content is not retained beyond a single run unless you explicitly save it. Account and configuration data is kept for the life of your workspace. Change records and release evidence are retained as part of your operating record so it stays replayable.
Your rights
You can request access to, correction of, or deletion of your data. We'll honor verified requests within a reasonable period. Deleting a workspace removes its associated data, subject to any retention we're legally required to keep.
Security controls supporting these rights include workspace-scoped row-level security, encrypted credential storage, and — for Enterprise — SSO, custom RBAC, and audit-log export. SOC 2 Type II is on our roadmap (in progress, not yet attained).
Contact
Questions about privacy or a data request? Email privacy@changefabric.ai.