Privacy Policy

Last updated: February 2026

Information We Collect

We collect information you provide directly when creating an account or using our services:

  • Account data: Name, email address, and company name provided at registration.
  • Usage data: Analytics about how you use our dashboard, API call logs, and error reports.
  • Gamification data: Player events and engagement data processed on behalf of our customers (see Data Processing for Customers below).

How We Use Your Information

We use the information we collect to:

  • Provide and operate the EngageFabric platform and services
  • Manage your account and authenticate access
  • Send transactional communications (account notifications, security alerts)
  • Improve our services and develop new features
  • Comply with legal obligations

Data Processing for Customers

EngageFabric processes player and end-user data on behalf of our customers. In this relationship:

  • Customers are data controllers — responsible for determining the purposes and means of processing their end users' data.
  • EngageFabric is a data processor — processing data only on customer instructions, as defined by the applicable agreement.

We recommend customers use pseudonymous identifiers for player identification (e.g., an internal ID rather than real name or email) to minimize personal data exposure within the platform.

Data Retention

  • Account data is retained while your account is active.
  • Player and gamification data is retained according to your plan's retention period (30 days for Free, 1 year for Professional).
  • System and access logs are retained for 90 days.
  • Upon account deletion, data is purged within 30 days.

Your Rights

If you are located in the EU, UK, or other jurisdictions with data protection laws, you have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your personal data (right to be forgotten).
  • Data portability: Receive your data in a machine-readable format.

To exercise these rights, contact us at privacy@engagefabric.com.

Security

We take security seriously and implement industry-standard protections:

  • All data is encrypted in transit (TLS) and at rest (AES-256).
  • We are on a SOC 2 Type II compliance roadmap.
  • Regular security audits and penetration testing.
  • Complete tenant data isolation — no cross-tenant data access.

Cookies

EngageFabric uses a minimal set of cookies:

  • Essential cookies: Session and authentication cookies required for the platform to function. These cannot be disabled.
  • Analytics: We use Plausible Analytics, a privacy-friendly tool that does not collect personal data and does not use cookies.

We do not use advertising or tracking cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will notify you via email at least 30 days before the changes take effect. The date at the top of this page reflects the most recent update.

Contact

For privacy-related questions or to exercise your rights, contact us at privacy@engagefabric.com.