Privacy Policy

Arcframe (arcframe.ai) is an AI-powered creation platform for video, image, audio, and 3D generation. The platform is operated as a consumer product. For operator details and legal entity information, please refer to our Terms & Conditions.

We collect only the minimum data required to deliver, operate, and improve the service:

• Account data — your email address and display name, provided when you register directly or via Google / GitHub / Facebook OAuth. We also store your profile avatar if supplied by your OAuth provider.
• Files you upload — images, voice recordings, and reference assets that you explicitly upload to use as inputs for AI generation (e.g. branding images, voice clone samples, source photos for 3D). These are stored in a private, access-controlled cloud bucket and are used solely to process your requests.
• Generated outputs — videos, images, audio clips, and 3D models created by the platform on your behalf. These are stored in your private asset library and accessible only by you.
• Usage data — your generation history (prompts, model used, credit cost, timestamps) and your credit balance. We use this to display your job history and manage your account.
• Contact inquiries — if you write to us via the contact form or email, we store your message to respond to it.
• Newsletter opt-in — if you voluntarily subscribe to our newsletter, we store your email for that purpose only. You can unsubscribe at any time via the link in any email we send.

We do not collect or process:

• Behavioural tracking data, browser fingerprints, or advertising IDs
• Third-party cookies or cross-site tracking
• Location data beyond what your browser may expose at the network level
• Payment card details — we do not store any financial information on our servers

We do not sell, rent, or share your personal data with any third party for their own commercial purposes.

• Service delivery — to authenticate you, process your generation requests, and display your results.
• Transactional communications — to send you account-related emails such as password resets, credit-balance alerts, and generation notifications.
• Product updates — if you opted in to our newsletter, to inform you about new features and models.
• Support — to respond to your contact inquiries and debug issues you report.
• Service improvement — aggregate, anonymised usage metrics (e.g. which models are most popular) to prioritise product development.

We share data with the following service providers strictly to operate the platform. Each provider is contractually bound to use your data only for the services they provide to us:

• Supabase — authentication, database, and private cloud storage. Your uploaded files and generated outputs are stored in Supabase Storage in a private, access-controlled bucket.
• AI inference providers — generation requests (your prompts and any uploaded reference files) are processed by third-party AI model providers. Inputs are transmitted securely over HTTPS and are not stored by us beyond your own asset library. Refer to each model's provider terms for their own data retention policies.
• Resend — transactional and newsletter email delivery.

We use only essential session cookies set by Supabase Authentication to keep you logged in. We do not use advertising cookies, analytics cookies, or any third-party tracking scripts on our platform.

Your account data, uploaded files, and generated outputs are retained for as long as your account is active. If you delete your account, we will remove your personal data and associated files within 30 days, except where retention is required by law.

Contact form inquiries are retained for up to 12 months for support-tracking purposes and then purged.

You have the right to:

• Access — request a copy of the personal data we hold about you.
• Correction — ask us to correct inaccurate data.
• Deletion — request deletion of your account and associated data.
• Unsubscribe — opt out of newsletter or marketing emails at any time via the unsubscribe link in any email.

To exercise any of these rights, email us at support@arcframe.ai. We will respond within 15 business days.

All data is transmitted over HTTPS / TLS. Uploaded files and generated outputs are stored in private, access-controlled storage with row-level security policies ensuring each user can only access their own data. We follow industry-standard practices for credential storage and access control.

No method of transmission or storage is 100% secure. If you believe your account has been compromised, please contact us immediately.

Arcframe is not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with personal data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. If the changes are material, we will notify you by email or via a notice on the platform. Continued use of the service after any change constitutes acceptance of the updated policy.