Last updated: 17 July 2022
Fig is a developer tool for the terminal. The terminal is an incredibly sensitive environment. Therefore, Fig takes your data, privacy, and security very seriously.
The below is a good faith effort to be fully transparent on how our app works + what we do and do not do with your data.
Fig does not send any of your local, potentially sensitive data to the cloud without your permission. In the case of our most popular app, Autocomplete all data is processed locally on your device (ie we do not send any keystrokes to the cloud).
Fig tracks basic usage metrics (outlined below) as well as error/crash reports. This enables us to make better product decisions and provide better support. At this time, tracking is de-anonymized. We are incredibly close with our users
You can disable all tracking by running
fig settings telemetry.disabled true
Each time you run a fig cli command (like fig update) we send a ping to Fig’s servers. The CLI is an important part of the Fig app. If commands like fig update break, up to date versions of Fig can’t be downloaded for users, meaning Fig will break. Note: only the subcommand selected (e.g. “update” or “source”) is sent. An arguments passed to the subcommands are not sent.
We send a ping each time you select an autocomplete suggestion. The ping contains the root command you used (e.g. git, cd, aws, etc) and nothing else (ie if you select “commit” in “git commit”, all we see is git).
Mission Control Usage
“Mission Control” is the interface for managing all other Fig apps (like Dotfiles, Workflows, Credential, etc). You access it by running
fig. It is web-based but rendered using the operating system’s native web view, rather than Electron/Chromium. Fig tracks interactions like navigation in the sidebar, creating new workflows/dotfiles, or adding a teammate. Any data you input into Fig is stored on Fig’s servers unless you on an enterprise plan that is self hosting. Any field labelled as “secret” only stores a token on our servers and stores the actual secret in a secure third party service called verygoodsecurity.com.
Sometimes developers use the Terminal 100+ times a day. Other times they don’t use it at all. If someone uses Fig 50 times one day but 0 times the next day, is it because they turned off Fig or because they didn’t use a Terminal? Having a high level picture of this without being intrusive will help us make better product decisions.
Therefore, once a day, Fig sends a single ping with aggregated metrics on how long you used the Terminal, how many times Fig popped up, and how many times you interacted Fig.
Fig uses Sentry as its error tracking tool. Fig send events to Sentry if the Fig app crashes and is then restarted. We also send any uncaught errors. We make sure these errors do not contain any potentially sensitive data (e.g. breadcrumbs do not contain any logs that could contain terminal keystrokes)
Fig sends a ping for basic app events like login, quit, onboarding completion, updating, and turning autocomplete on/off.
To re-iterate, Fig does not send any of your terminal input, output, or keystrokes to our servers.
In the future we may build additional features/products that my require sending this data (e.g. SSH session replay or shared history across teams). These products will be entirely opt in and we will make sure to tell you how your data is managed.
The email login is not designed to be a hinderance. In fact, the login is designed to be one of the most valuable parts of Fig.
For individuals, logging into Fig allows you to sync your dotfiles, workflows, personal shortcuts SSH credentials, and more across devices. Developers are switching devices and logging into remote machines more than ever. In order to be most productive, it’s incredibly important their dev environment comes with them. Our hope is that Fig becomes the source of truth for you dev configuration - in order to set up a new device, all you need to do is login to Fig!
For teams, we enable the exact same functionality, we just enable collaboration as a layer on top. Your dev environment is not just your personal configuration, but the environments, workflows, and credentials shared with your team too.
fig settings telemetry.disabled true. This will disable all telemetry and crash reports
Fig uses a secure 3rd party service called verygoodsecurity.com (VGS) to store secrets.
First, Fig will always be free for individuals. We want users to feel confident that even if they sign up to Fig and become the biggest power user, they will never be charged.
Our pricing model is inspired by GitHub’s: for individuals and open-source projects, Fig is completely free. For team products that require hosting, Fig will charge a small fee per person per month.
For instance, our autocomplete for teams product enables companies to build and share completions for internal CLIs. We think charging for hosting is reasonable as there is a cost incurred by us. We are willing to absorb this cost for individuals, but not for teams.
You can try this: with Fig’s autocomplete running, try turning off your wifi. Autocomplete will still work. However, if you restart Fig while wifi is still off, it will stop working.
Fig will enable things like self-hosting, SAML/SSO, and more on our enterprise plan. Please email firstname.lastname@example.org for more information.
Please feel free to email email@example.com with any questions. We would be more than happy to help.