Legal

Privacy Policy

Last updated: March 31, 2026

This Privacy Policy explains how The Fair Company ("Fair," "we," "us," or "our") collects, uses, and protects your information when you use any Fair product — including FairCRM, FairCal, FairPost, FairSign, FairMail, FairDesk, FairForm, FairDeck, FairFlow, FairLinks, FairCrawl, FairTrack, FairWrite, and any future products accessible at tryfair.ai, faircompany.ai, or any fair*.ai domain.

All Fair products operate under one account, one privacy policy, and one set of data practices. This policy applies to all of them.

Our Business Model Matters

Fair charges you for infrastructure usage at cost plus a small margin. We do not sell your data, we do not run ads, and we do not monetize your information in any way. Your data is used exclusively to provide the services you use.

1. Information We Collect

Account Information

When you create an account, we collect your name and email address. If you sign in with Google or Apple, we receive your name, email, and profile photo from the identity provider. We do not receive or store your Google or Apple password.

Payment Information

When you add funds to your wallet, payment is processed by Stripe. We store your Stripe customer ID and transaction history. We do not store credit card numbers, CVVs, or full card details — Stripe handles that.

Usage Data

We track which actions you perform and when (e.g., "sent 3 emails," "created 1 document") to calculate your bill accurately. We also collect standard analytics (pages viewed, features used, errors encountered) via PostHog to improve our products. We do not use third-party advertising trackers.

Content You Create

When you use Fair products, you create content — contacts, emails, documents, forms, posts, workflows, links, and other data. This content is stored on our servers to provide the service. You own your content. We do not claim any rights to it.

Connected Account Data

Some Fair products connect to your external accounts to provide their core functionality:

Product
What we access
Why
FairCRM
Gmail messages (metadata, subject, body preview, sender, recipients), Google Calendar events
To sync email conversations with CRM contacts and show upcoming meetings linked to deals
FairCal
Google Calendar and Outlook Calendar events, busy/free times
To detect scheduling conflicts and create booking events on your calendar
FairPost
Social media accounts (X, LinkedIn, Meta, TikTok)
To publish scheduled posts on your behalf
FairMail
Email sending domain configuration
To send email campaigns on your behalf

2. How We Use Your Information

  • To provide the service. Your data powers the features you use — syncing emails, scheduling posts, creating documents, managing contacts.
  • To bill you accurately. Usage metering ensures you only pay for what you use.
  • To improve our products. Anonymized usage analytics help us understand which features work and which need improvement.
  • To communicate with you. Transactional emails (receipts, password resets, usage alerts) and occasional product updates. No marketing spam.
  • To prevent abuse. Rate limiting, fraud detection, and security monitoring.

3. Google API Services — Limited Use Disclosure

Fair's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only use Google user data to provide and improve the specific Fair product features that require it (email sync in FairCRM, calendar integration in FairCal).
  • We do not use Google user data for advertising, market research, or email campaign targeting.
  • We do not sell, rent, or share Google user data with third parties, except as necessary to provide the service (e.g., our hosting infrastructure).
  • We do not use Google user data to train machine learning or AI models.
  • Google user data is stored encrypted at rest and in transit.
  • OAuth tokens are stored encrypted (AES-256) and are only used to maintain your connection to Google services.
  • You can disconnect your Google account and delete all synced data at any time from the product settings.

4. Data Storage and Security

  • Encryption at rest. All data is stored encrypted using AES-256.
  • Encryption in transit. All connections use TLS 1.3.
  • OAuth tokens. Access tokens and refresh tokens for connected accounts (Google, Microsoft, social platforms) are stored encrypted and never exposed in logs or error reports.
  • Infrastructure. Our services run on Railway (cloud hosting), with data stored in PostgreSQL databases. File storage uses Cloudflare R2. Payment processing uses Stripe.
  • Access controls. Only authorized personnel have access to production systems. We do not have customer support agents who can read your email or calendar data.

5. Data Sharing

We share your data only with the following categories of service providers, and only as necessary to deliver the service:

  • Cloud infrastructure: Railway (hosting), Cloudflare (CDN, DNS, storage)
  • Payment processing: Stripe
  • Email delivery: Resend (transactional emails)
  • Analytics: PostHog (self-hosted where possible)
  • Error tracking: Sentry

We do not sell, rent, or provide your data to advertisers, data brokers, or any third party for their own purposes. Ever.

6. Data Retention

  • Active accounts: Your data is retained for as long as your account is active.
  • Deleted accounts: When you delete your account, all your data is permanently deleted within 30 days. This includes all content, connected account data, usage history, and OAuth tokens.
  • Disconnected integrations: When you disconnect a connected account (e.g., Gmail, Google Calendar), all synced data from that connection is deleted immediately.
  • Billing records: Transaction history may be retained for up to 7 years as required by tax and financial regulations.

7. Your Rights

You have the right to:

  • Access — View all data we have about you.
  • Export — Download your data in standard formats (CSV, JSON) at any time from within the product.
  • Delete — Delete your account and all associated data.
  • Disconnect — Remove any connected account (Gmail, Calendar, social accounts) and delete the associated synced data.
  • Correct — Update your account information at any time.
  • Object — Opt out of non-essential data collection (analytics).

To exercise any of these rights, use the in-product settings or email privacy@faircompany.ai.

8. Cookies

We use cookies for:

  • Authentication: Session cookies to keep you logged in. Essential — the product doesn't work without them.
  • Analytics: PostHog cookies to understand usage patterns. You can opt out.

We do not use advertising cookies, retargeting pixels, or third-party tracking cookies.

9. Children's Privacy

Fair products are designed for businesses and professionals. We do not knowingly collect data from anyone under 16. If you believe a minor has created an account, contact us and we will delete it.

10. International Data Transfers

Our servers are located in the United States. If you use Fair from outside the US, your data will be transferred to and processed in the US. We apply the same privacy protections regardless of where you are located.

11. Changes to This Policy

We may update this policy as we add new products or change how we handle data. We will notify you of material changes via email or in-product notification. Continued use of Fair after changes constitutes acceptance.

12. Contact

The Fair Company
Email: privacy@faircompany.ai
Web: faircompany.ai