Privacy Policy

Last updated: April 2026

Introduction

Farol provides agent observability software. This Privacy Policy explains how we collect, use, store, and share information when you use our service at usefarol.dev and related products.

What data we collect

We process information needed to run the observability service, including:

Account data — such as email and authentication identifiers you provide when you sign up.
Agent run metadata — for each traced run, this may include timing, token counts, estimated cost, status, agent name, model label, structured steps or spans, and error messages when something fails.
Prompts and model output (optional) — when you enable input/output capture in the SDK (for example capture_io=True), we store the prompt and response text associated with spans as configured in your integration.

We do not intentionally collect sensitive categories of personal data beyond what you or your application send to the API. You are responsible for not submitting regulated or unnecessary personal data in prompts or logs.

How we use your data

We use the information above to provide and improve the observability service: displaying runs and traces in your dashboard, detecting cost anomalies, supporting authentication and billing, maintaining security, and communicating with you about the product.

Who can see it

Run data and dashboard content are available to the owning account (you and teammates you authorize, if applicable). A limited number of Farol team members may access data when needed for customer support, security, or lawful compliance, under confidentiality and least-privilege practices.

We do not sell your personal data. We do not use your agent prompts to train third-party foundation models.

Data storage and security

We host application data with Supabase and related infrastructure. Data is encrypted in transit (TLS) and encrypted at rest according to our providers’ standards. We implement access controls and monitoring appropriate to the nature of the service.

Data retention

We retain your data while your account is active and as needed to provide the service, meet legal obligations, and resolve disputes. When you close your account, we delete or anonymize associated data within a reasonable period unless a longer retention is required by law.

Run data, traces, and spans are retained for the lifetime of your account. Upon account deletion, all associated data is permanently removed within 24 hours.

Your rights

Depending on where you live, you may have rights to access, correct, delete, or export personal data, or to object to or restrict certain processing. You may delete your account and associated data at any time through the product or by contacting us; we will respond to verified requests as required by applicable law.

Contact

For privacy questions or requests, contact privacy@usefarol.dev.

Changes

We may update this policy from time to time. We will post the revised version on this page and update the “Last updated” date.

This policy is provided for transparency. It is not legal advice. If you need terms that govern use of the product, see our Terms of Service.