Privacy Policy

1. What Enfermal Does

Enfermal is an AI-powered task automation service. You create agents ("Enfermos") that complete work on websites you choose — filling forms, drafting documents, or performing repetitive tasks. Enfermos can run on your device via a browser extension or on our servers (cloud mode).

2. Data We Collect

3. Third-Party AI Providers

To process your tasks, Enfermal sends page content and task instructions to the following AI providers:

• Anthropic (Claude API)— Used for browser automation in cloud mode, task completion, and content generation. Data is processed under Anthropic's Commercial Terms and is not used to train their models.
• DeepSeek— Used for text generation, content drafting, and processing page content. Task instructions and page content are sent to DeepSeek's API for processing. DeepSeek is based in China and is subject to Chinese data regulations.

We do not sell, rent, or share your data with advertisers, data brokers, or any parties beyond those listed above and the payment / email providers below.

4. Payment Processing

We use Stripe to process subscription payments and credit pack purchases. Your payment card details are sent directly from your browser to Stripe and are never stored on Enfermal servers — we receive only a customer ID and the subscription metadata needed to grant credits and manage your plan. Stripe's privacy policy: stripe.com/privacy.

5. Email Delivery

We use Resend to send authentication emails (magic links) and transactional emails (receipts, account notifications). Resend processes your email address and the message contents we send. Resend's privacy policy: resend.com/legal/privacy-policy.

6. User Authorization & Responsibility

By creating an Enfermo or running a task, you confirm that you have the right to automate actions on the target website and that your use complies with the target site's terms of service. Enfermal accesses websites on your behalf, reads page content, and sends it to the AI providers listed above for processing. You are responsible for ensuring your use of automated tools is permitted on each site you configure.

7. Writing Analysis

If Writing Analysis is enabled (available on Plus and Pro plans), Enfermal collects the prompts you send and content your agents encounter on platforms where user-generated writing is present. This data is used solely to build a private writing-style profile stored in your account. The profile helps Enfermal match your voice when generating content.

• Your writing profile is stored encrypted alongside your account data and is never shared with third parties.
• Writing-style context is sent to AI providers only during your own task execution and may cause minimally extra credit usage.
• You can disable, clear, or adjust the memory level of your writing profile at any time from Settings.

8. How We Use Your Data

• To run Enfermo tasks you configure
• To authenticate you and manage your account
• To track credit usage and billing
• To build and refine your writing-style profile (when enabled)
• To improve service reliability and fix errors

We do not use your data for advertising, profiling, or purposes unrelated to delivering the Enfermal service.

9. Data Retention

• Task results: Stored until you delete them or for 90 days after completion, whichever comes first.
• Page content: Transmitted to AI providers during task execution and not retained after the task completes.
• Account data: Retained while your account is active. Deleted within 30 days of account deletion.
• Connected account credentials: Deleted immediately when you remove them from Settings or delete your account.
• Writing profile: Retained while Writing Analysis is enabled. Cleared immediately when you disable or clear it from Settings, or when your account is deleted.

10. Data Security

Connected account credentials are encrypted at rest using AES-256-GCM. All data is transmitted over HTTPS. We follow industry-standard practices to protect your information, but no system is 100% secure — we encourage you to use strong, unique passwords for connected accounts.

11. Your Rights

You can at any time:

• View, edit, or delete your Enfermos and task history from the app
• Remove connected account credentials from Settings
• Disable, clear, or adjust your writing-style profile from Settings
• Request a copy of your data by contacting us
• Request account deletion by contacting us

If you are in the European Economic Area (EEA), you have additional rights under GDPR including the right to access, rectification, erasure, data portability, and the right to object to processing. Our lawful basis for processing is legitimate interest (providing the service you signed up for) and your explicit consent for credential storage.

12. Browser Extension

The Enfermal browser extension runs on your device and uses your existing browser sessions. When a scheduled task is ready to run, the extension will show a notification requesting your approval before taking any action. The extension reads page content from the target site and sends it to our servers for AI processing. No data is collected from sites you have not configured as Enfermo targets.

13. Cookies

Enfermal uses Supabase authentication cookies (named sb-<project-ref>-auth-token) to maintain your signed-in session. These cookies are HTTP-only, secure, and used solely for authentication purposes. They are not used for tracking or shared with third parties. The browser extension reads these cookies to authenticate with our servers on your behalf.

14. Children

Enfermal is not intended for users under 13 years of age. We do not knowingly collect data from children.

15. Changes

We may update this policy from time to time. Material changes will be announced in the app. Continued use after changes constitutes acceptance of the updated policy.

16. Contact

For privacy questions, data requests, or concerns, contact us at support@enfermal.com.