Privacy Policy

1. Introduction

Welcome to SimpleFrame ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our picture frame design application and related services.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, and password when you create an account
• Payment Information: Billing details processed securely through Stripe (we do not store credit card numbers)
• Design Data: Images you upload and frame designs you create
• Communications: Messages you send us through support or feedback forms

2.2 Information Collected Automatically

• Usage Data: Pages visited, features used, time spent on the platform
• Device Information: IP address, browser type, operating system, device identifiers
• Cookies: We use cookies and similar tracking technologies (see Section 7)

3. How We Use Your Information

We use your information for the following purposes:

• Service Delivery: To provide, maintain, and improve our frame design services
• Account Management: To create and manage your account, process payments, and handle subscriptions
• Communication: To send you service updates, promotional offers, and respond to your inquiries
• Security: To detect, prevent, and address fraud, security issues, and technical problems
• Analytics: To understand how users interact with our platform and improve user experience
• Legal Compliance: To comply with legal obligations and enforce our Terms of Service

4. Third-Party Services We Use

We share your information with the following trusted third-party service providers:

• Firebase (Google): Authentication and user management
• Stripe: Payment processing and subscription management
• Google Cloud Storage: Secure storage of uploaded images
• SendGrid: Email delivery for account notifications and updates
• Neon (PostgreSQL): Database hosting for application data

These providers process your data only as necessary to perform their services and are contractually obligated to protect your information in accordance with applicable data protection laws.

5. Your Rights and Choices

Depending on your location, you may have the following rights:

5.1 General Rights

• Access: Request a copy of the personal data we hold about you
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and associated data
• Data Portability: Receive your data in a machine-readable format
• Withdraw Consent: Opt-out of marketing communications at any time

5.2 GDPR Rights (EU/UK Users)

If you are located in the European Union or United Kingdom, you have additional rights under GDPR:

• Right to restriction of processing
• Right to object to processing based on legitimate interests
• Right to lodge a complaint with your local supervisory authority

5.3 CCPA Rights (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act:

• Right to know what personal information we collect, use, and disclose
• Right to delete personal information (with certain exceptions)
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to non-discrimination for exercising your privacy rights

To exercise any of these rights, please contact us at privacy@simpleframe.app. We will respond to your request within 30 days (GDPR) or 45 days (CCPA).

6. Data Security

We implement industry-standard security measures to protect your information:

• SSL/TLS encryption for data transmission
• Encrypted storage of sensitive data
• Multi-factor authentication for admin access
• Regular security audits and vulnerability assessments
• Strict access controls limiting who can view your data

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Cookies and Tracking Technologies

We use the following types of cookies:

• Essential Cookies: Required for core functionality (login, session management)
• Analytics Cookies: Help us understand how users interact with our platform
• Preference Cookies: Remember your settings and preferences

You can control cookie preferences through your browser settings. Note that disabling essential cookies may limit your ability to use certain features.

8. Data Retention

We retain your personal data for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active and for 90 days after deletion
• Payment Records: Retained for 7 years to comply with tax and accounting regulations
• Design Data: Deleted within 30 days of account deletion
• Usage Analytics: Anonymized and aggregated after 24 months

9. International Data Transfers

Your information may be transferred to and processed in countries outside your country of residence, including the United States. We ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data during international transfers.

10. Children's Privacy

Our services are not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by email or through a prominent notice on our platform. Your continued use of our services after such modifications constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy, please contact us:

• Email: privacy@simpleframe.app
• Support: support@simpleframe.app