Last updated: February 2026
When you actively record a workflow using the Sidequest browser extension, we capture the following data:
This data is only captured while you are actively recording. No data is collected when the extension is idle.
token, secret, key, credit, card, cvv, ssnSensitive field values are redacted at capture time in the content script, before the data ever leaves your browser. The redaction happens locally based on field type (password inputs) and field name pattern matching against the sensitive patterns listed above.
Screenshots may contain visible page content. We recommend avoiding recording workflows that display sensitive information on screen.
Event data and workflow metadata are stored in a PostgreSQL database. Screenshots are stored in Cloudflare R2 object storage.
Your data is retained for as long as the associated workflow exists. If you delete a workflow, all associated events, metadata, and screenshots are removed.
Captured workflow data (events, page titles, selectors, and screenshots) may be sent to the OpenAI API to generate natural-language step instructions for your workflow guide. This processing is subject to OpenAI's data usage policies.
We do not sell or share your data with third parties. The only third-party data processor is OpenAI, used solely for generating workflow step descriptions as described above.
You can request deletion of your data by emailing privacy@getside.quest. We will process deletion requests within 30 days. Please include the workflow ID or URL in your request so we can locate your data.
We may update this privacy policy from time to time. Material changes will be noted by updating the "Last updated" date at the top of this page.