diff --git a/packages/xpub-faraday/config/authsome-mode.js b/packages/xpub-faraday/config/authsome-mode.js
index 07e4319c82b5381c216e8bc335b6a7c2ae2359ca..a01f22101ba9216b97bdf65ed94eb3dc89ea1828 100644
--- a/packages/xpub-faraday/config/authsome-mode.js
+++ b/packages/xpub-faraday/config/authsome-mode.js
@@ -342,6 +342,11 @@ async function applyAdminPolicy(user, operation, object, context) {
 async function applyEditorInChiefPolicy(user, operation, object, context) {
   if (operation === 'GET') {
     if (get(object, 'type') === 'collection') {
+      if (
+        !filterDraftCollections(object) ||
+        !filterTechnicalChecksCollections(object)
+      )
+        return false
       return {
         filter: collection => ({
           ...collection,
@@ -353,6 +358,17 @@ async function applyEditorInChiefPolicy(user, operation, object, context) {
       }
     }
 
+    if (get(object, 'type') === 'fragment') {
+      const collection = await context.models.Collection.find(
+        get(object, 'collectionId'),
+      )
+      if (
+        !filterDraftCollections(collection) ||
+        !filterTechnicalChecksCollections(collection)
+      )
+        return false
+    }
+
     if (get(object, 'path') === '/api/users') {
       return helpers.getUsersList({ UserModel: context.models.User, user })
     }