Privacy policy — Framework

What we collect

When you create a Framework account we collect your email address, your chosen display name, and authentication data handled by our identity provider (Supabase). When you enrol we collect billing details through Stripe — Framework never stores card numbers directly. When you use the site we collect standard analytics events through Google Analytics 4 (page views, approximate geography, device type).

Cookies and local storage

Framework uses cookies and browser local storage for session authentication, to remember your preferences inside the member portal, and to attribute referral codes at checkout. Analytics cookies are set by Google Analytics.

How we use your data

We use your data to provide the service you have paid for, to send service-related email about your membership, to process payments, and to understand how the site is being used so we can improve it. We do not sell your data.

Who we share it with

Framework shares the minimum data required with its processors: Supabase (authentication and database), Stripe (payments), Google Analytics (analytics), and Discord (community access, if you choose to link your account).

Data retention

We retain account data for as long as your account is active and for a reasonable period afterwards for accounting and legal compliance.

Your rights

If you are in the UK, EU, or another jurisdiction with equivalent data-protection law, you have the right to access, rectify, export, or request erasure of your personal data. To exercise any of these rights, contact the email address listed on the site footer.

This page contains a minimum-viable placeholder pending formal legal review. For the definitive version, paste the output from your legal content generator (Termly / TermsFeed) into content/legal/privacy.md.