Privacy Policy for VisionFrame
Last Updated: July 6, 2026
Privacy Policy
This Privacy Policy ("Policy") describes how VisionFrame ("we", "us", "our") collects, uses, stores, and protects information from users ("you", "your", "User") of our website at https://visionframe.app (the "Website") and our AI-powered storyboarding and visual planning service (the "Service").
By using our Service, you agree to the collection and use of information in accordance with this Policy. If you do not agree with our practices, please do not use our Service.
Privacy at a Glance (Data Collection Summary)
This label summarizes the data we collect and why. It is a quick reference only — the full detail is in the numbered sections below. We do not sell your data or use it for cross-site advertising, and we do not use your creative content to train AI models.
| Data Type | Examples | Purpose | Linked to You | Used to Track You |
|---|---|---|---|---|
| Identity & Contact | Name, email, profile picture (Google OAuth) | Account creation, login, support | Yes | No |
| Payment & Billing | Billing address, payment method (via Stripe) | Process subscriptions and credit purchases | Yes | No |
| Your Creative Content | Scripts, scenes, shots, prompts, production boards, uploaded reference images, character descriptions | Deliver the Service and generate your storyboards | Yes | No |
| Prompts Sent to AI | Scene descriptions and prompts sent to OpenAI / Google Gemini | Generate images, parse scripts, cinematography notes | Yes | No |
| Usage & Diagnostics | Features used, credits consumed, clicks, error logs (via PostHog, cookieless) | Product analytics and reliability | No (aggregated / pseudonymized) | No |
| Device & Log Data | Browser type, OS, IP address, access times | Security, fraud prevention, debugging | Yes | No |
1. Information We Collect
1.1 Personal Information You Provide
When you register for an account or use our Service, we collect:
- Account Information: Name, email address, profile picture (via Google OAuth)
- Payment Information: Billing address, payment method (processed securely by Stripe)
- Content Data: Scripts, scenes, shots, production boards, and other content you create using our Service
- Character Data: Character descriptions and visual traits you define for AI consistency
1.2 Information from Third-Party Services
When you connect third-party services, we may collect:
- Google OAuth: Basic profile information (name, email, profile picture)
- Uploaded Images: Reference images you upload for characters or production boards
1.3 Automatically Collected Information
We automatically collect certain information when you use our Service:
- Usage Data: Features used, credits consumed, content generated
- Device Information: Browser type, operating system
- Log Data: IP address, access times, pages viewed
- Cookies: Session cookies for authentication and preferences
- Product Analytics: Pages and features viewed, clicks, and actions taken (e.g., creating a project or generating shots), collected via our analytics provider PostHog to understand how the Service is used. We operate PostHog in cookieless mode: it stores no cookies or other identifiers on your device, and aggregate usage counts are derived from a privacy-preserving hash calculated on PostHog's servers rather than from tracking you across sessions
1.4 AI-Generated Content
When you use our AI features:
- Scene Descriptions: Text prompts sent to AI models for shot generation
- Generated Images: AI-generated storyboard shots stored in your account
- Cinematography Notes: AI-generated technical recommendations
2. How We Use Your Information
2.1 Service Provision
We use your information to:
- Provide and maintain your account
- Process credit transactions and manage subscriptions
- Generate AI-powered storyboard shots and cinematography notes
- Parse scripts into scenes using AI
- Store and organize your production boards and projects
- Export your projects as PDF storyboards
2.2 Service Improvement
Your data helps us:
- Improve AI generation quality and accuracy
- Develop new features based on usage patterns
- Debug issues and improve system performance
- Optimize the user experience
2.3 Communication
We may contact you for:
- Account notifications and security alerts
- Subscription and billing information
- Service updates and new feature announcements
- Customer support responses
2.4 Legal and Security
We use information to:
- Comply with legal obligations and regulations
- Enforce our Terms of Service
- Detect and prevent fraud, abuse, or security threats
- Moderate content for policy compliance
3. Data Sharing and Disclosure
3.1 Service Providers
We share data with trusted third parties who assist in operating our Service:
- Stripe: Payment processing and subscription management
- Supabase: Database, authentication, and file storage services
- OpenAI: AI model processing for scene parsing and shot generation
- Google AI (Gemini): Alternative AI model for image generation
- Vercel: Website hosting and infrastructure
- Inngest: Background job processing
- PostHog: Cookieless product analytics and error tracking to help us understand usage and improve the Service
3.2 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction. We will notify you of any such change.
3.3 Legal Requirements
We may disclose your information when required by:
- Court orders, subpoenas, or legal processes
- Government or regulatory requests
- Protection of our legal rights
- Prevention of fraud or security threats
3.4 We Do Not Sell Your Data
We do not sell, rent, or trade your personal information to third parties for their marketing purposes.
4. Data Security
4.1 Security Measures
We implement comprehensive security measures including:
- Encryption: TLS/SSL for data in transit
- Access Controls: Role-based permissions and secure authentication
- Infrastructure Security: Secure cloud hosting with Vercel and Supabase
- Database Security: Row Level Security (RLS) for data isolation
4.2 Data Breach Response
In the event of a data breach:
- We will notify affected users within 72 hours
- Provide details about the nature and scope of the breach
- Offer guidance on protective measures you can take
5. Data Retention and Deletion
5.1 Retention Periods
- Active Account Data: Retained while your account is active
- Content Data: Retained for 90 days after account closure
- Payment Records: Retained for 7 years for legal compliance
- Trashed Items: Permanently deleted after 30 days in trash
5.2 Data Deletion Rights
You may request deletion of your personal data by:
- Contacting us at brenfurtado@gmail.com
- Deleting your account through settings
- Note: Some data may be retained for legal or legitimate business purposes
6. Your Privacy Rights
6.1 Access and Portability
You have the right to:
- Access personal information we hold about you
- Export your projects as PDF storyboards
- Request copies of your data
6.2 Correction and Update
You can:
- Update your account information through settings
- Request correction of inaccurate data
- Modify your projects and content at any time
6.3 Opt-Out Rights
You may opt-out of:
- Marketing communications (via unsubscribe link)
- Non-essential cookies (through browser settings)
7. Content Moderation
To ensure safe and appropriate use of our AI features, we employ content moderation:
- Scene descriptions are checked before AI generation
- Violence is permitted for legitimate filmmaking purposes
- Hate speech, harassment, self-harm, and sexual content are blocked
- Moderation logs are kept for security and compliance
8. Cookies and Tracking
8.1 Types of Cookies We Use
- Essential Cookies: Required for authentication and Service functionality
- Preference Cookies: Remember your settings (e.g., theme preference)
We do not use advertising or third-party tracking cookies. Our product analytics (PostHog) runs in cookieless mode and does not set any cookies or store identifiers on your device, so no analytics consent banner is required.
8.2 Managing Cookies
You can control cookies through your browser settings. Note that disabling essential cookies may prevent you from using the Service.
9. Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you believe your child has provided us with personal information, please contact us immediately at brenfurtado@gmail.com.
10. International Data Transfers
Your information may be transferred to and processed in countries other than your own, particularly the United States where our servers are located. We ensure appropriate safeguards for international transfers through compliance with applicable data protection laws.
11. California Privacy Rights (CCPA)
California residents have additional rights under the California Consumer Privacy Act:
- Right to Know: What personal information is collected and how it's used
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: We do not sell personal information
- Non-Discrimination: We will not discriminate against you for exercising privacy rights
12. GDPR Compliance (For EU Users)
We process your data based on:
- Consent: For marketing and optional features
- Contract: To provide the Service you've subscribed to
- Legitimate Interests: For Service improvement and security
- Legal Obligations: To comply with applicable laws
EU users have the right to lodge complaints with supervisory authorities and withdraw consent at any time.
13. Artificial Intelligence Transparency
We believe you should clearly understand when and how artificial intelligence is used in our Service. Consistent with U.S. Federal Trade Commission (FTC) guidance on transparent and non-deceptive AI, we disclose the following:
13.1 Our Service Uses AI
VisionFrame is an AI-powered product. Features such as shot generation, script parsing, character consistency, and cinematography notes are produced by artificial intelligence, not by human artists or editors. AI-generated output is clearly the result of automated generation, and we do not present it as human-made.
13.2 Third-Party AI Models We Use
To provide these features, the prompts and content you submit are sent to third-party AI providers for processing:
- OpenAI (e.g., DALL·E 3 and language models) — image generation and script parsing
- Google AI (Gemini) — alternative image generation
These providers process your inputs to return generated results. Your use of AI output is also subject to the terms of the applicable provider.
13.3 We Do Not Train AI Models on Your Content
We do not use your scripts, prompts, uploaded images, or AI-generated content to train our own AI models. We rely on the business/enterprise API terms of our AI providers, under which content submitted through their APIs is not used to train their foundation models by default. When we refer to "improving AI generation quality" elsewhere in this Policy, we mean tuning our own prompts, settings, and product features — not training models on your creative work.
13.4 No Automated Decisions With Legal or Significant Effects
AI output in VisionFrame consists of creative suggestions (images, scene breakdowns, notes). We do not use AI or automated processing to make decisions that produce legal or similarly significant effects about you, such as credit, employment, or eligibility decisions.
13.5 AI Output May Be Inaccurate
AI-generated content can be inaccurate, incomplete, or unexpected, and may not reflect real people, places, or events. You are responsible for reviewing AI output before relying on or publishing it. We make no warranty as to the accuracy or suitability of AI-generated results.
14. Changes to This Privacy Policy
We may update this Policy to reflect changes in our practices, legal requirements, or Service features. We will notify you of material changes through email or prominent notice on our Website. Continued use of our Service after Policy updates constitutes acceptance of the revised Policy.
15. Contact Information
For questions, concerns, or requests regarding this Privacy Policy:
- Email: brenfurtado@gmail.com
- Website: https://visionframe.app
This Privacy Policy is effective as of July 6, 2026. By using VisionFrame, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
Thank you for trusting VisionFrame with your information. We are committed to protecting your privacy and providing a secure, valuable service for your filmmaking and visual planning needs.