early access · waitlist open
← back to faro

Privacy, faro style

Last updated: 6-14-2026. faro is operated by TheFaroLab.

We are not trying to build a surveillance machine. We just need enough data to make faro work.

Below is the short version in plain English. The fuller version is underneath.

Read this first

This is the short version. If something changes, we will update this page instead of pretending nobody reads it. This is not legal advice, and we will likely have a lawyer review it before faro leaves beta.

Short version
Stuff we do not do
Stuff we do need

The fuller version

Still written to be read.

Information we collect

When you join the waitlist, we collect your email address. If you answer the optional survey, we may also collect your name, company, role, the help desk tool you use, your answers, and where you came from (referral source). We collect basic first-party usage data on our own site, such as page views, clicks, and waitlist form activity, plus UTM parameters and referrer data. If you become a customer and connect a help desk, we process the support data that connection provides.

How we use it

We use this data to run the waitlist, decide what to build, contact you about faro, understand where signups come from, and generate reports and product insights for the customer. That is the whole list. We do not sell it, and we do not use one customer's support data to market to that customer's own users.

Cookies and analytics

We use first-party product analytics (PostHog) to understand how people use our own site. This may set a first-party cookie or use local storage to measure visits and events. We do not use third-party advertising cookies, ad pixels, or retargeting trackers. No mystery pixels, no creepy retargeting.

Help desk data

When faro connects to your help desk, that access should be read-only unless we clearly state otherwise and you agree. Read-only means read-only: we read tickets and related support data to build your report, and we do not change, send, or delete anything in your help desk. We use this data to generate reports and insights for you, the customer, and for nobody else's marketing.

Third-party processors

To run faro, we rely on a small set of providers who process data on our behalf: Supabase (database and hosting), Vercel (hosting), PostHog (first-party analytics), and Resend (email delivery). When you connect a help desk, that provider is also involved. Each has its own privacy practices. We try to keep this list short and to share the minimum that the work requires.

Data retention

We keep waitlist and account data for as long as you are on the list or using faro, and for a reasonable period after, unless you ask us to delete it sooner. We do not keep data we do not need.

Data deletion requests

You can ask us to delete your data at any time. Email info@thefarolab.com and we will remove it, except for anything we are required to keep by law. We will confirm when it is done.

Security

We take reasonable steps to protect your data. The waitlist database uses row-level security, anonymous visitors can only insert, and we do not store passwords or payment card numbers in our own systems. No system is one hundred percent secure, so we cannot promise perfection, but we treat your data as if it were our own.

International users

faro is operated from the Dominican Republic, and our providers may process data in other countries, including the United States and the EU. If you join from outside those regions, you understand your data may be processed where we and our providers operate.

Changes to this policy

We may update this policy as faro changes. When we do, we will update this page and change the date at the top. If a change is significant, we will try to flag it rather than slip it in quietly.

Contact

Questions, concerns, or a deletion request? Email info@thefarolab.com. If something looks wrong, tell us. We would rather know.