Privacy Policy
Last updated: 2026-05-22 · Plain-English version
The 60-second TL;DR
- We only collect what's needed to create and deliver your gifts.
- All media is encrypted at rest with AES-256.
- Your data is stored in US data centers (Supabase, Virginia).
- One-click ZIP export anytime, plus an automatic annual backup.
- One-click account deletion with a 30-day cascading data purge.
- Cookieless analytics. No Google Analytics. No Facebook Pixel. No third-party trackers.
- 18+ accounts only (COPPA-clean — children can be recipients or depicted, never account holders).
- We never sell, lease, or share your data with third parties.
- Fablely does not process biometric data and does not perform voice cloning, face recognition, or any biometric identification.
1 · Who we are
Fablely is operated by Northbright Labs LLC (Wyoming, USA), founded in 2026 by solo founder Gavin Wong. You can reach us at hello@fablely.ai or by postal mail at 5830 E 2nd St, Ste 7000 #35863, Casper, WY 82609, USA (registered-agent forwarding address).
We are a small indie SaaS providing personal media archive software. We are not a trust company, not a financial product, not insurance, not a security, not an investment vehicle, and not a regulated financial service.
2 · What we collect
Automatically (no account required)
- Anonymous session UUID in your browser's localStorage. Lets us tie your draft gift together without knowing who you are.
- Draft gift content you write before signing in (your letter, recipient, and delivery date), saved in your browser so you can come back and finish.
- IP address, hashed, for rate-limiting only. Auto-purged within 24 hours.
If you create an account
- Email address — required for login and unlock notifications.
- Display name — optional, how we address you in emails.
- Due date or birthday — optional, only if you provide it.
- OAuth provider data — if you sign in with Google, we receive your email and Google profile name. We never see your Google password.
When you create a gift
- Voice recordings — your real voice. We do NOT clone voices.
- Photos — uploaded image files.
- Text — letters, captions, stories you write.
- Optional video — short clips.
- All of the above are encrypted at rest with AES-256.
3 · Why we collect it
- Your letter & gift content → to create your gift and deliver it to the recipients and dates you choose.
- Email → login, capsule-unlock notifications, and transactional messages.
- Media files → to store your family memories and deliver them to the recipients and dates you choose.
- IP (hashed) → rate-limiting only.
We do NOT use your data for:
- Targeted advertising
- Profiling or scoring
- Algorithmic decisions about you
- Training general-purpose AI models
4 · Who we share it with
We use exactly these processors, and only as needed to run the product:
- Anthropic (Claude API) — naming and story text generation.
- OpenAI Whisper — voice transcription only. Audio is sent, a transcript is returned.
- Supabase (US-East-1, Virginia) — storage and database.
- Resend — transactional email.
- Stripe — payment processing. We never see your card number.
- Vercel — hosting and cookieless analytics.
- Cloudflare — CDN and backup object storage (R2).
We do NOT share with: advertisers, data brokers, social platforms, government (except by valid court order), or AI training datasets.
5 · Encryption and storage
- All media files: AES-256 encryption at rest in Supabase Storage.
- Optional E2EE: a user-passphrase-derived key encrypts the gift before it reaches our server, so we only ever see ciphertext. Important trade-off: if you lose the passphrase, the gift is unrecoverable. We cannot reset it. This is the explicit cost of true E2EE.
- Honest claim: we describe the actual algorithm (AES-256). We do not use marketing phrases like "bank-level" or "military-grade."
- Backups: encrypted backups to Cloudflare R2 (multi-region within the US).
- Data residency: US only. No EU data storage. No international transfers out of the US. Canadian users see the cross-border disclosure under PIPEDA standard.
6 · Account deletion (cascade behavior)
One click by emailing hello@fablely.ai (account self-service /settings launching with Phase 1 — until then, replies within 24 hours). Email confirmation required. Then a 30-day cascading purge runs:
- Capsules you created → deleted from primary storage within 7 days; media files purged.
- Capsules where you are a recipient → you get the option to download an archive first; then your name is removed from the recipient list. The capsule is preserved for other recipients (the sender's data, not yours).
- Family tree → your node and any edges that include you are deleted.
- Heir designation → if anyone designated you as their heir, they are notified that they need to choose another heir.
- Backups → final purge from all backups within 30 days.
Every deletion action is logged and emailed to you for your own audit trail.
7 · Content acceptance policy
We accept: voice, photos, text, optional video, and family-relationship metadata, where you have full rights and consent.
We refuse:
- Medical records and health data
- Banking or financial documents
- Government identification (passport, SSN, driver's license scans)
- Notarized or legally-binding documents
- Wills, trusts, or estate planning documents
- Cryptocurrency keys or wallet data
- CSAM (illegal everywhere)
- Content depicting third-party people without their consent
Each refused category keeps us out of a regulatory regime (HIPAA, GLBA, estate law) that we cannot afford to be in. Accepting that content would put your other data at risk too.
8 · COPPA posture (children)
- Fablely is 18+ only. Account holders must be adults.
- Children CAN be: recipients of capsules, and depicted in photos or recordings under parental authority.
- Children CANNOT be account holders.
- When a child recipient turns 18, they can claim their archived capsules by creating their own Fablely account.
This structure keeps Fablely out of COPPA jurisdiction.
9 · Two-factor authentication (2FA)
- Recommended for all tiers (TOTP app or Passkey).
- Required for Premium+ tier.
10 · Audit log (Premium+)
On Premium and above, we keep a detailed audit log:
- Every sign-in
- Every capsule creation, edit, or deletion
- Every export
- Every family invitation acceptance
- Every Heir Designation change
24-month retention. Downloadable as CSV by emailing hello@fablely.ai (account self-service /settings launching with Phase 1 — until then, replies within 24 hours).
11 · Third-party people in photos
- When you upload a photo with people in it, we ask once per session: "Are you authorized to upload this image of [face count] people?"
- We do not run automatic facial recognition. Any face-tagging is user-driven only.
- Non-Fablely users receive no automated notification. We don't have their consent to email them.
- DMCA-style takedown: if a non-consenting person wants content removed, contact privacy@fablely.ai. 14-day SLA.
12 · Cookieless analytics
- We use Vercel's built-in analytics — no cookies, no fingerprinting.
- No Google Analytics. No Facebook Pixel. No Mixpanel. No third-party trackers.
- Transactional emails contain delivery receipts only, no tracking pixels.
13 · State-specific rights
California: Do Not Sell or Share My Personal Information (CCPA/CPRA)
Fablely does not sell your personal information, and we do not "share" it for cross-context behavioral advertising (CPRA definitions). We also do not engage in any activity that California's CPRA defines as "sale." There is therefore nothing to opt out of — the opt-out has already been applied by default for every user. To exercise this right formally in writing, email privacy@fablely.ai with subject "CCPA Opt-Out Confirmation" and we will reply within 15 business days with a written confirmation suitable for your records.
Additional California rights you have, exercisable at privacy@fablely.ai: right to know what we collect, right to delete, right to correct, right to limit use of sensitive personal information (we don't collect any to begin with), right to portability (one-click ZIP export from your Settings page covers this), right to non-discrimination for exercising any of the above.
California: Shine the Light (Cal. Civil Code § 1798.83)
California residents may request, once per calendar year, a disclosure of what personal information (if any) we have shared with third parties for those parties' direct marketing purposes in the preceding calendar year. Our answer is: none. Fablely has never shared customer personal information with third parties for direct marketing. To receive a written confirmation, email privacy@fablely.ai with subject "Shine the Light Request."
Other states
- Illinois: the prior BIPA notice is deprecated. We do not process biometric data — no facial recognition, no voice cloning, no biometric identifiers.
- Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA): access / delete / portability rights are honored on the same email channel as CCPA above.
- Texas (TDPSA): covered by the same channel; we do not engage in "targeted advertising" as defined by the statute.
- Canada (PIPEDA): your data crosses the border to the US (Supabase US-East-1, Virginia). Disclosed here.
- Other states: standard US consumer protections apply.
14 · How to contact us
- Privacy questions: privacy@fablely.ai
- Data subject requests (access, export, delete): hello@fablely.ai
- Consent issues or content of non-consenting people: hello@fablely.ai (48h response window)
15 · Changes to this policy
- 14-day email notice for material changes.
- "Last updated" date refreshed at the top of this page.
- A change-log of past revisions will appear here on this same page (in a "Changes history" appendix) on the first material change.