FaulTrace ← Back to site

Privacy Policy

Last updated: 2 July 2026

This Privacy Policy explains how FaulTrace (“we”, “us”) collects, uses, and protects personal data when you use our website and Service. We act as a data controller for account and billing data, and as a data processor for the model content you store in your instance.

1. Data we collect

2. How we use it

To provide, secure, and improve the Service; to provision and operate your dedicated instance; to process payments; to communicate with you about your account; and to comply with legal obligations. Legal bases (where GDPR applies) include performance of a contract, legitimate interests, and legal obligation.

3. Sub-processors

We use a small set of vendors to run the Service — including a cloud hosting provider (DigitalOcean), a payment processor (Stripe), and, only when you use optional AI features, AI providers. See the Data Processing Addendum & sub-processor list for details.

4. AI features

If you use optional AI-assistant features, the content you use with them may be transmitted to third-party AI providers for processing. These features are optional. Do not use them with data you are not permitted to share with a third-party processor.

5. Retention

We retain account and billing data for as long as your account is active and as required for legal and accounting purposes. Model data lives on your instance. If you cancel, sign-in access ends shortly after your paid period ends, so export any data you need before then (or contact us for an export). Your instance and its data are retained for 3 days after the end of the paid period so you can re-subscribe without losing work; after that the instance is decommissioned. Before decommissioning we take a final snapshot of the instance’s data where technically possible, which we retain so your account can be restored on request — contact us at hello@faultrace.com if you want the final snapshot deleted, and we will delete it.

If you begin checkout but do not complete payment, we retain the email address and company name you entered so we can resume or tidy up the pending account, and Stripe retains a corresponding customer record. Contact us to have an unpaid pending account deleted.

6. Your rights

Depending on your location (e.g. under GDPR or CCPA), you may have rights to access, correct, delete, or export your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at the address below.

7. Cookies

Our marketing site uses Google Ads (Google LLC) tags for advertising measurement and remarketing. These set cookies, collect information about your visit, and report a conversion signal after checkout. You can control Google’s ad personalization at adssettings.google.com and learn more at policies.google.com/technologies/ads. Our marketing pages also load fonts from Google Fonts and icons from unpkg.com; those services receive your IP address when a page loads. We also collect first-party page-view analytics on our marketing pages (the page visited, referrer, browser information, and IP address), stored on our own systems and never shared or sold. Your product instance itself sets only a strictly-necessary session cookie to keep you logged in and contains no advertising or analytics trackers.

8. Security

Each paid customer runs on a dedicated, isolated instance served over HTTPS. We apply reasonable technical and organizational measures to protect data; no method of transmission or storage is perfectly secure.

Short-term operational backups of your instance’s data are kept on the instance itself to allow rollback during upgrades. We do not currently maintain off-instance backups of your live data, so we recommend regularly exporting models you cannot afford to lose.

9. Additional disclosures

We do not sell or share personal information as those terms are defined under the CCPA/CPRA, and we will not discriminate against you for exercising privacy rights. If you are in the EEA or UK, you may lodge a complaint with your supervisory authority, and where we rely on consent you may withdraw it at any time. The Service is hosted in the United States; if you access it from elsewhere, your data is transferred to and processed in the United States. We may disclose personal data where required by law or legal process, and personal data may be transferred as part of a merger, acquisition, or sale of assets, in which case this policy will continue to apply to it. The Service is not directed to children under 16 and we do not knowingly collect their data. We may update this policy; we will post changes here with an updated date and will notify you of material changes through the Service or by email.

10. Contact

Questions or requests: hello@faultrace.com.