FreshFrame

Privacy Policy

What we do with your data.

Last updated: 2026-04-18 · Effective: 2026-04-18

TL;DR

  • Your selfies are deleted 30 days after delivery.
  • We do not train a general-purpose AI model on your face.
  • We don't sell your data. Third parties we use (Stripe, Google Gemini, Cloudflare R2, Firebase, Neon, Upstash, Resend) are listed in §4.
  • You can delete your account and everything in it at any time by emailing alex.c@freshframe.co.

1. What we collect

When you use FreshFrame we collect:

  • Account information: email address and display name (via Firebase sign-in).
  • The selfies you upload. Stored in Cloudflare R2 object storage, encrypted at rest.
  • Generated output: the photos our pipeline produces for you, also in R2.
  • Order and payment metadata:order id, amount, status, and a reference to Stripe's session. We do not store your card number; Stripe handles all of that.
  • Technical logs: timestamps, IP hashes (salted), progress/status events from the pipeline. Used only for debugging and abuse prevention.

2. How we use it

Your selfiesare used only to: (a) build a structured model of your face that anchors the generator; (b) score generated photos against that model; (c) deliver your gallery. They are not used to train a general-purpose AI. They are not shared with advertisers. They are not reused on other customers' shoots.

Your email is used to send transactional notifications (your gallery is ready, refund issued, etc.) and, if you opt in, occasional product updates.

Payment metadata is used to process the transaction, issue refunds, and meet tax and accounting requirements.

3. Retention

  • Uploaded selfies: 30 days after your shoot is delivered, then deleted.
  • The face-model we build from your selfies: kept only for the duration of the shoot for one-time orders; for Club subscribers, kept for the life of the subscription so re-shoots can pick up from the same anchor. Deleted within 30 days of cancellation.
  • Generated photos: available in your gallery for 30 days (Starter) or 90 days (Pro) or for the life of your Club subscription. You can download at any time.
  • Demo page uploads: automatically deleted 24 hours after upload.
  • Payment records: retained for 7 years, or as required by local tax law.

4. Service providers we use

We use a small set of third-party services to run FreshFrame. Each gets only the data it needs and is contractually bound to use that data only to provide its service to us.

  • Stripe — payment processing. Sees your email and payment details; we do not.
  • Firebase (Google) — authentication. Stores your email and a hashed password.
  • Cloudflare R2 — image storage. Stores your selfies and generated photos encrypted.
  • Google Gemini API — image generation and face-match scoring. Sees your selfies during generation; Google commits not to train on Gemini API inputs.
  • Anthropic Claude API — secondary scoring for some pipeline stages. Sees your selfies and generated photos during scoring; Anthropic commits not to train on API inputs.
  • Neon — database. Stores order, user, and job metadata (no image data).
  • Upstash Redis — job queue. Stores transient job references (no image data).
  • Resend — transactional email.
  • Fly.io — background worker hosting.
  • Vercel — website + API hosting.

5. Your rights

You can at any time:

  • Access all data we hold about you — email alex.c@freshframe.co.
  • Delete everything — we will delete all personal data within 14 days, excepting payment records which we are legally required to retain.
  • Correct inaccurate information.
  • Export your photos at any time from the dashboard.
  • Object to any processing you disagree with.

If you're in the EU, UK, or California, you have additional rights under GDPR / CCPA; these apply to you by default under the list above.

6. Security

We encrypt data at rest (R2) and in transit (TLS everywhere). Presigned upload/download URLs expire within hours. We salt and hash IP addresses rather than storing them plain. No system is 100% secure; we'll notify you promptly if a breach occurs.

7. Children

FreshFrame is not for anyone under 18. We don't knowingly collect data from minors. If you believe we have data from a minor, email us and we'll delete it.

8. International transfers

FreshFrame is operated from Israel and our service providers are primarily US-based. By using the service you consent to your data being processed in those jurisdictions.

9. Changes

Material changes will be emailed to registered users. The “Last updated” date above always reflects the current version.

10. Contact

Questions, data-access requests, deletions, complaints:
alex.c@freshframe.co