Privacy Policy

Framebase (“we”, “us”) takes privacy seriously. This policy explains what we collect, why, and how we handle it.

What we collect

• Account: email and password (passwords are stored hashed by our auth provider, Supabase).
• Uploaded assets: the images and metadata you upload to your vault.
• Billing: if you subscribe, Stripe processes your payment. We only store a customer identifier — no card numbers ever touch our servers.
• Usage: basic logs (timestamps, IP, user agent) for security, abuse prevention, and reliability.

How we use it

To operate and improve the Service, process payments, send essential account email, and comply with legal obligations. We don't sell your data, and we don't use your uploaded assets to train models.

Sub-processors

• Supabase — database, auth, object storage
• Stripe — billing
• Vercel — application hosting

Your rights

You can export your data, request deletion, or update your account from Settings. Email us at privacy@framebase.app for anything else.

Data retention

Account and asset data is kept while your account is active. On deletion, data is purged within 30 days, excluding records we are legally required to retain (e.g. invoices).

Changes

We may update this policy from time to time. Material changes will be announced via email or in-app notice.