Privacy Policy
Last updated: 2026-04-18
Overview
This Privacy Policy explains how Facebetter ("we", "us") collects, uses, discloses, and protects information in connection with our software-as-a-service platform, developer SDKs, documentation site, demo applications, and related services (collectively, the "Service").
By using the Service, you acknowledge that you have read and understood this Privacy Policy.
Information We Collect
- Account Information: email address, authentication identifiers, and profile metadata you provide when signing up or signing in.
- Usage Data: logs and metrics about how you interact with the Service, including page views, API calls, error codes, and device/browser information.
- Support Communications: messages and attachments you send to us for assistance.
- Payment Information: processed securely by third-party providers; we do not store full payment card details.
We do not intentionally collect sensitive categories of data (e.g., health, biometric, financial data) unless explicitly stated and compliant with applicable law.
How We Use Information
- Provide and operate the Service, authenticate users, and maintain accounts.
- Improve performance, security, reliability, and user experience.
- Communicate updates, respond to inquiries, and provide support.
- Comply with legal obligations and enforce Terms of Service.
Cookies and Similar Technologies
What Are Cookies?
Cookies are small text files stored on your device that help us remember your preferences, maintain session state, and improve your browsing experience. When you visit our website, we and our third-party service providers may place cookies on your device.
Cookies We Use
We use the following types of cookies:
| Cookie | Type of cookie | When is the cookie dropped? | How long does the cookie stay on my device? | Purpose of the cookie | Links to respective privacy notices |
|---|---|---|---|---|---|
| cookieconsent_status | Strictly necessary | When you first access the Site and make a cookie consent choice | 12 months | Recording your consent choices for cookie usage | This Privacy Policy |
| sidebar_state | Functional | When you expand or collapse the sidebar | 7 days | Remembering your sidebar expand/collapse state preference | This Privacy Policy |
| Supabase Auth | Strictly necessary | When you sign in or register for an account | End of session or based on "Remember Me" settings | Maintaining your login state and session security, preventing cross-site request forgery (CSRF) attacks | Supabase Privacy Policy |
| Stripe | Strictly necessary | When you access the payment interface on our Service | 30 minutes to 2 years (depending on the specific cookie) | Detecting and preventing fraudulent payments and transactions | Stripe Cookie Settings |
Local Storage
In addition to cookies, we also use your browser's local storage functionality to store the following information:
| Storage Item | Type | When is it stored? | How long is it retained? | Purpose |
|---|---|---|---|---|
| selfhosted_token | Local storage | When you successfully sign in and obtain a self-hosted API token | 24 hours | Storing the self-hosted API authentication token for calling backend APIs |
| selfhosted_token_expires_at | Local storage | When you successfully sign in and obtain a self-hosted API token | 24 hours | Storing the token expiration time for automatically cleaning up expired tokens |
Session Storage
We also use your browser's session storage functionality to temporarily store the following information:
| Storage Item | Type | When is it stored? | How long is it retained? | Purpose |
|---|---|---|---|---|
| redirectAfterLogin | Session storage | When you access a page that requires authentication | End of session (closing the browser tab) | Temporarily storing the page path to redirect to after login |
| fb_auth_flow_id | Session storage | When you authenticate through a browser extension | End of session (closing the browser tab) | Temporarily storing the authentication flow ID for browser extension synchronization |
Cookie Type Descriptions
Strictly Necessary Cookies
These cookies are essential for the basic functionality of our website. Without these cookies, the website cannot function properly. These cookies do not store any personally identifiable information.
Functional Cookies
These cookies remember your choices and preferences to provide enhanced, personalized experiences.
Cookie Consent Management
We use a cookie consent banner to obtain your consent for non-essential cookies:
- Accept All: You consent to our use of all types of cookies
- Essential Only: You consent only to essential cookies; functional cookies will be disabled
You can change your cookie preferences at any time through your browser settings or the cookie consent banner.
How to Manage Cookies
Most browsers allow you to control cookies through your browser settings:
- Accept or reject cookies
- Delete existing cookies
- Receive notifications when cookies are set
Please note that if you disable or delete cookies, some features of our website may not function properly. These settings will typically be found in the "options" or "preferences" menu of your browser.
Cross-Site Tracking
We do not use cross-site tracking technologies (such as pixel tags, web beacons, etc.) to track your activities on other websites. Our cookies are used solely to improve your experience on our website.
More Information
For more information about cookies or if you have questions about our cookie usage, please contact us through the support channel provided in your dashboard.
Data Processing and Third Parties
Authentication and Hosting
We may use third-party services (e.g., Supabase, GitHub, Google) for authentication and hosting. Your use of those services is subject to their privacy policies.
Payment Processing - Stripe
We use Stripe as our third-party payment processor to handle all subscription payments:
- Payment Information Processing: All payment information (including card numbers, expiration dates, CVV, etc.) is processed and stored directly by Stripe. We never have access to or store complete bank card information.
- PCI-DSS Compliance: Stripe is a PCI-DSS Level 1 certified payment service provider, which is the highest level of security certification in the payment industry.
- Data Sharing: Stripe shares the following limited information with us:
- Transaction status (success/failure)
- Order amount and currency
- Customer email (for account linking)
- Last 4 digits of card and brand (e.g., Visa, Mastercard)
- Subscription status and billing cycle information
- Stripe Privacy Policy: Stripe's processing of your payment information is governed by their privacy policy, available at https://stripe.com/privacy
- Data Security: Stripe uses industry-leading encryption technology to protect your payment data, including TLS encryption in transit and encryption at rest.
- Data Storage Location: Payment data is securely stored by Stripe in their global infrastructure, with specific locations depending on your geographic location.
We only store the following payment-related information:
- Stripe customer ID (to manage your subscription)
- Stripe subscription ID (to track subscription status)
- Subscription plan and expiration date
- Transaction records (without complete payment details)
Analytics and Logs
Operational analytics and logs may be processed by third-party providers to monitor Service health and usage.
Data Retention
We retain information for as long as necessary to fulfill the purposes described in this Policy, comply with legal requirements, resolve disputes, and enforce agreements. Retention periods may vary depending on the type of data and your account status.
Security
We implement reasonable technical and organizational measures to protect information. However, no system can be guaranteed to be completely secure. You are responsible for safeguarding your account credentials and for securely integrating our SDKs into your applications.
Your Rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal information. You may also have the right to data portability and to object to processing. To exercise these rights, contact us through the support channel indicated in your dashboard.
International Transfers
Information may be processed and stored in jurisdictions with different data protection laws than your own. We take steps to ensure appropriate safeguards when transferring information.
Children
The Service is not directed to children. If you believe a child has provided us personal information, contact us so we can take appropriate action.
Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via the website or dashboard. Continued use of the Service after changes indicates acceptance of the updated Policy.
Contact
For privacy inquiries, contact us via the support channel provided in the dashboard.