UCL

Privacy Policy

Last updated June 9, 2026

Overview

This Privacy Policy explains how Fastn, Inc. ("Fastn", "we", "us") collects, uses, and shares information when you use the MCP gateway and related services (the "Service"). By using the Service you agree to the practices described here.

Information we collect

We collect the following categories of information:

  • Account data: your name, work email, organization, and authentication identifiers used to sign in.
  • Connection data: the MCP servers, databases, and third-party accounts you connect, including OAuth tokens and connection metadata needed to route tool calls.
  • Usage data: tool-call counts, timestamps, latency, and error rates we meter to operate, secure, and bill the Service.
  • Support data: messages you send us and the context you choose to share when requesting help.

How we use information

We use information to:

  • Provide, maintain, and secure the gateway and route your tool calls.
  • Meter usage for billing and enforce plan limits and member permissions.
  • Detect, investigate, and prevent abuse, fraud, and security incidents.
  • Communicate with you about your account, changes, and support requests.

Tool-call content

The gateway routes requests between your agents and the tools you connect. We process the content of those requests only as needed to deliver them, apply your compliance policies (for example masking detected PII, PHI, PCI, or secrets), and meter usage. We do not sell tool-call content, and we do not use it to train models.

Sharing

We share information with the third-party providers you choose to connect (so we can route your calls to them), and with infrastructure subprocessors that host and secure the Service. We may disclose information if required by law or to protect the rights, safety, and security of users and the public. We do not sell personal information.

Data retention

We retain account and connection data for as long as your account is active, and usage metadata for as long as needed for billing, security, and legal obligations. You can request deletion of your account data at any time; some records may be retained where required by law.

Security

We use industry-standard administrative, technical, and physical safeguards to protect your information, including encryption in transit and access controls on stored credentials. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal information, and to object to or restrict certain processing. To exercise these rights, contact us at privacy@fastn.ai.

Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the date above and, where appropriate, notify you through the Service.

Contact

Questions about this policy? Email us at privacy@fastn.ai.