1. Scope and who we are
OurFable is a studio operations, project-management, Discord-integration, recruitment, documentation, time-tracking, and automation product owned and operated by Prime Fundamentals LLC(“Prime Fundamentals,” “we,” “us,” or “our”). This Policy applies to the OurFable website, dashboard, APIs, Discord bot and integrations, public project pages, recruitment and legal-signing workflows, and related services that link to this Policy (collectively, the “Service”).
When a company, studio, server owner, or workspace administrator uses OurFable to manage information about its own team, that organization may determine why and how certain workspace information is processed. In that situation, the organization may be the controller or business, and Prime Fundamentals may act as its service provider or processor. Questions about an organization’s use of your information should also be directed to that organization.
2. Information we collect
Depending on how you use the Service, we may collect the following categories of information:
- Account and identity information: Discord user ID, username, display name, avatar reference, server membership, roles, permissions, timezone, and authentication-session information.
- Workspace and project information: project names, descriptions, budgets, tasks, checklists, status updates, assignments, dependencies, resource links, Wiki documents, public project-page content, team records, departments, comments, and related operational data.
- Recruitment and legal workflow information: applications, portfolio or profile links, experience, availability, legal name, electronic signature, signed-document status, manual approvals, and the IP address associated with a signature or application event.
- Time and activity information: clock-in and clock-out events, task association, duration, recent sessions, audit records, sync runs, maintenance activity, and administrative actions.
- Billing and license information: license status, plan, purchase reference, purchaser name and email, transaction amount and currency, and payment-provider identifiers. We do not intend to store full payment-card numbers; payment processing is handled by the applicable payment provider.
- Support communications: support-ticket content, messages, subject, category, priority, status, attachments or links you provide, and support-resolution history.
- Technical and security information: IP address, request time, browser or user-agent information, device and network signals, authentication events, firewall events, blocked-request details, error logs, and diagnostic telemetry.
- Terms acceptance records: the Terms version accepted, acceptance date and time, Discord account identifier, acceptance source, browser or user-agent information, and a one-way security hash derived from the connection address used during acceptance.
- Integration and AI information: webhook events, source control metadata, integration status, prompts or project content you choose to send to an enabled AI provider, AI output, provider settings, and encrypted or otherwise protected provider credentials configured by a workspace administrator.
3. Sources of information
We collect information from:
- You, when you sign in, configure a workspace, submit content, apply to a project, sign a document, contact support, or use the Service.
- Workspace owners, administrators, leads, and other authorized users who create or manage records about their projects and teams.
- Discord and other integrations you authorize, subject to their settings and terms.
- Payment, hosting, security, source-control, AI, and infrastructure providers that support the Service.
- Automated logs and security systems generated when the Service is accessed or used.
4. How we use information
We use information to:
- Provide, authenticate, operate, maintain, and improve the Service.
- Create and synchronize workspaces, tasks, Wiki documents, team directories, public project pages, recruitment records, and Discord workflows.
- Enforce workspace roles, permissions, legal gates, and access controls.
- Record and verify consent to the current Terms and Privacy Policy before enabling protected website, API, dashboard, or bot features.
- Process purchases, manage license entitlements, and prevent payment or license abuse.
- Provide support, communicate service notices, and respond to requests.
- Detect, investigate, prevent, and respond to fraud, abuse, security threats, prohibited activity, outages, and legal claims.
- Generate requested AI-assisted content through the provider selected by a workspace administrator.
- Comply with law, enforce our agreements, and protect the rights, safety, and property of users, Prime Fundamentals, and others.
5. Legal bases for processing
Where applicable law requires a legal basis, we process personal information as necessary to perform a contract, provide the Service you request, comply with legal obligations, protect legitimate interests such as security and service improvement, and obtain consent where required. You may withdraw consent where processing depends on consent, but withdrawal does not affect processing that occurred before withdrawal.
6. How we disclose information
We may disclose information to:
- Your workspace organization and authorized members according to role-based permissions, visibility settings, and project configuration.
- Service providers and subprocessors that provide hosting, databases, content delivery, security, email or messaging, payments, customer support, analytics that we may later enable, and other technical services under appropriate contractual restrictions.
- Third-party integrations such as Discord, payment providers, source-control systems, and AI providers when you or an authorized administrator directs the Service to connect or send data.
- Legal and safety recipients when reasonably necessary to comply with law, legal process, enforce agreements, investigate misuse, or protect rights, safety, property, or the integrity of the Service.
- Business transaction recipients in connection with a merger, financing, acquisition, reorganization, sale of assets, or similar transaction, subject to applicable law.
- The public only for information an authorized workspace administrator deliberately publishes through a public project page or another public-facing feature.
We do not sell personal information for money. We also do not use personal information for cross-context behavioral advertising. If these practices change, we will update this Policy and provide legally required choices.
7. AI-assisted features
A workspace administrator may connect a third-party AI provider and use it to generate checklists, summaries, or other content. Information included in an AI request may be transmitted to that provider and processed under the provider’s own terms and privacy policy. Do not submit secrets, regulated data, personal information, confidential source code, or other sensitive material to an AI feature unless you are authorized to do so and have reviewed the provider’s practices. AI output may be inaccurate and should be reviewed by a qualified person before use.
9. Data retention
We retain information for as long as reasonably necessary to provide the Service, maintain project history and backups, support security and fraud prevention, comply with legal and accounting obligations, resolve disputes, and enforce agreements. Retention periods vary by data type, workspace configuration, account status, backup schedule, and legal requirements. Authorized users may delete certain records through the dashboard. Deletion from active systems may not immediately remove information from protected backups, logs, or records that must be retained for legal or security reasons.
10. Security
We use administrative, technical, and organizational safeguards designed to protect information, including authentication, role-based access controls, firewall and abuse monitoring, encrypted network transport where supported, backups, and restricted administrative access. No method of storage or transmission is completely secure, and we cannot guarantee absolute security. You are responsible for protecting your account, Discord account, API keys, integration credentials, and authorized devices.
11. International data transfers
Prime Fundamentals and its providers may process information in the United States and other countries where privacy laws may differ from those in your location. Where required, we use appropriate safeguards for cross-border transfers. By using the Service, you understand that information may be processed outside your country, subject to applicable law.
12. Your privacy rights
Depending on your location and subject to exceptions, you may have rights to request access, correction, deletion, portability, restriction, or objection; withdraw consent; and appeal a denied request. You may also have the right to opt out of certain sales, sharing, targeted advertising, or profiling. Because we do not currently sell personal information or use it for cross-context behavioral advertising, there is no sale or advertising opt-out to exercise for those practices at this time.
To submit a request, email support@primefindamentals.com. We may need to verify your identity and authority. If your information is controlled by a workspace organization, we may direct the request to that organization or assist it in responding. You will not be discriminated against for exercising applicable privacy rights.
13. California privacy notice
California residents may have rights to know the categories and specific pieces of personal information collected, know the sources and purposes, request correction or deletion, receive information about disclosures, opt out of sale or sharing, limit certain uses of sensitive personal information, and receive equal service. Our collection and disclosure categories are described in Sections 2, 3, 4, and 6. We do not sell personal information or share it for cross-context behavioral advertising. We do not use sensitive personal information to infer characteristics beyond purposes permitted by applicable law.
14. Children’s privacy
The Service is intended for professional studios, teams, contractors, and authorized collaborators and is not directed to children under 13. We do not knowingly collect personal information from a child under 13 without legally required authorization. If you believe a child has provided information in violation of this section, contact us so we can investigate and take appropriate action.
15. Third-party services and links
The Service may link to or interoperate with third-party services. Their privacy practices are governed by their own policies, not this Policy. Review those policies before authorizing an integration or providing information.
16. Changes to this Policy
We may update this Policy to reflect changes to the Service, law, or our practices. We will update the “Last updated” date and provide additional notice when required. Continued use after an update becomes effective is subject to the revised Policy.
17. Contact us
Privacy questions and requests may be sent to support@primefindamentals.com.
Prime Fundamentals LLC
OurFable Privacy Team
Florida, United States