FACET Privacy Policy

1. Overview

Five Letter Agency operates FACET as a private intake and workflow control plane for approved brand and source materials. This policy explains how FACET handles information when you use FACET-connected workflows, including Google Drive source intake.

2. Information We Collect

FACET may collect the following categories of information:

• account and contact information, such as name, email address, organization, and support communications;
• workspace and project metadata, such as customer, brand, project, connection, source binding, job, and audit references;
• selected source metadata, such as safe summaries, file type counts, lifecycle status, inventory hashes, timestamps, and review states;
• Google Drive data that you explicitly authorize FACET to access for brand source intake, subject to the scope and selected files or folders approved in the Google consent flow;
• operational data needed to secure and run the service, such as request timestamps, authentication status, error codes, and audit events.

3. How We Use Information

FACET uses information to:

• connect approved source accounts and selected source materials;
• inventory and summarize selected brand materials;
• coordinate review, classification, and readiness workflows;
• help prevent duplicate or destructive source intake runs;
• show safe intake status, reauthorization, revocation, cancellation, retry, and review states;
• secure the service, investigate errors, and maintain audit records;
• respond to support, deletion, and access requests.

4. Google Drive Data

If you connect Google Drive, FACET uses Google Drive access only for the source-intake purpose shown during the connection flow. FACET is intended to use selected files or folders to identify brand materials, prepare safe inventory summaries, and coordinate review workflows.

FACET does not sell Google user data. FACET does not use Google Drive data for advertising. FACET does not make selected Google Drive materials public.

FACET control-plane records are designed to store safe metadata and opaque references, not raw OAuth tokens, refresh tokens, signed URLs, Google Drive URLs, local file paths, source roots, raw provider payloads, prompts, OCR, image bytes, or base64 file data.

5. Sharing And Processors

FACET may share limited information with service providers and connected systems that help operate the workflow, such as hosting, authentication, storage, logging, review, and internal source or asset processing systems. Connected systems receive only the information needed for their role in the workflow.

We may disclose information if required by law, to protect rights and security, or with your direction or consent.

6. Retention

FACET retains records as needed to operate source intake, support review and audit needs, prevent duplicate intake, honor customer instructions, and comply with legal obligations. Approved downstream asset or brand records may be retained until archived, replaced, deleted, or otherwise handled under the applicable customer workflow.

7. Your Choices

You can request deletion or disconnection by following the instructions on the FACET Data Deletion page.

You can also revoke Google access from your Google Account security settings. Revoking Google access may stop new intake reads, but it may not automatically delete previously created safe records or downstream review records.

8. Security

FACET uses access controls, audit records, and credential-handling boundaries intended to limit access to authorized users and systems. No internet service can guarantee perfect security, but we work to protect source-intake workflows from unauthorized access, disclosure, or misuse.

9. Contact

For privacy questions or requests, contact kc@fivel.agency.

FACET Policies

• Privacy Policy
• Terms of Service
• Data Deletion
• Google Drive Disclosure