FrameQuery

Privacy Policy

Last updated: April 2, 2026

1. Who We Are

FrameQuery is operated by Elly Software, a company registered in the United Kingdom. For any privacy-related questions or requests, contact us at privacy@framequery.com.

Under data protection law, Elly Software is the data controller for your account data, and acts as a data processor for the video and audio content you upload for analysis.

2. Data We Collect

Account Data

  • Email address
  • User identifier
  • Authentication credentials (managed by our authentication provider)

Uploaded Content

  • Video files you upload for analysis
  • Audio extracted from your videos for transcription
  • Video frames extracted for visual analysis

Derived Data (Processing Results)

  • Scene descriptions and captions
  • Detected object labels
  • Shot type and angle classifications
  • Transcription text with word-level timestamps
  • Anonymised speaker labels ("Speaker 1", "Speaker 2", etc.)
  • Detected language

Billing Data

  • Subscription tier and status
  • Usage metrics (indexing hours consumed)
  • Payment information (processed by Polar; we do not store card details)

Technical Data

  • IP addresses (retained for 30 days in infrastructure logs)
  • Browser and device information

Analytics Data

  • Product usage events (processed by PostHog, hosted in the EU). You can opt out of analytics at any time in your account settings.

3. How We Use Your Data

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process and analyze your video and audio content
  • Process billing and meter usage
  • Send you technical notices and support messages
  • Respond to your comments and questions
  • Monitor and analyze usage patterns (with opt-out)

4. Legal Basis for Processing

We process your data under the following legal bases (GDPR Article 6):

  • Contract performance (Article 6(1)(b)): Account creation, video and audio processing, billing, and all core service functionality.
  • Legitimate interest (Article 6(1)(f)): Product analytics to improve the service. You can opt out at any time via your account settings.

5. Video and Audio Content

We understand that your video and audio content may contain sensitive information. We treat this content with the utmost care:

  • We only process your content to provide the services you request
  • Video and audio files are deleted immediately after indexing. GCS lifecycle rules serve as a safety fallback in the unlikely event that automatic deletion fails.
  • We do not share your video or audio content with third parties
  • We do not use your content for AI model training
  • You maintain full ownership of all your content

6. Derived Data (Metadata)

We store metadata generated from your video and audio content (scene descriptions, object labels, transcriptions, speaker labels) to provide the search and analysis functionality of the service. This metadata:

  • Is never used for our own AI training
  • Is never sold or shared with third parties
  • Can only be accessed by you
  • Serves as a cloud backup for the desktop app

7. Speaker Diarization

Our transcription service identifies different speakers in your audio and labels them with anonymous identifiers ("Speaker 1", "Speaker 2", etc.). This process:

  • Does not create or store voice profiles or biometric templates
  • Does not attempt to identify who the speakers are
  • Produces anonymous numbered labels only — no identity mapping is performed or stored

Speaker diarization is not considered biometric processing under GDPR Article 9 because no biometric data is generated, stored, or used for identification purposes.

8. Data Processors

We use the following third-party services to provide FrameQuery. Each has a Data Processing Agreement (DPA) in place:

ProcessorPurposeRegion
Google Cloud PlatformInfrastructure (compute, storage, database)EU and US
Google Vertex AI (Gemini)Video frame analysisEU and US
Cloudflare (R2, Workers, D1)Object storage, authenticationGlobal
PolarBilling and subscriptionsUS
PostHogProduct analytics (opt-out available)EU
UpstashFrame analysis cache

An up-to-date list is also available programmatically via our API at GET /v1/privacy/data-processors.

We will notify you at least 30 days before adding or replacing a sub-processor by updating this list.

9. International Data Transfers

Our primary processing infrastructure is hosted in the EU (Google Cloud, europe-west2 London and europe-west4 Netherlands).

Speech-to-text transcription is performed on US-based GPU instances due to GPU availability constraints. These transfers are covered by:

  • Google Cloud's Standard Contractual Clauses (SCCs) and Data Processing Addendum
  • The EU-US Data Privacy Framework (Google LLC is a certified participant)

Audio data sent to US infrastructure is ephemeral — it is present on the US GPU for approximately 10 to 120 seconds and is deleted immediately after transcription. The GPU instances have no public IP address and self-terminate when idle.

A Transfer Impact Assessment documenting the necessity, safeguards, and risk assessment for this transfer is available on request.

10. Data Retention

Data TypeRetention
Raw video uploadsDeleted after indexing (7-day safety fallback)
Transcoded video proxiesDeleted after indexing (90-day safety fallback)
Extracted video framesDeleted after analysis (30-day safety fallback)
Audio filesDeleted immediately after transcription
Processing job results6 months
Retained proxies (user-initiated)30 days standard, then 90 days cold storage
Frame analysis cache30 days
Audit logs1 year
Infrastructure logs30 days

11. Your Rights

Under GDPR and UK data protection law, you have the following rights:

  • Access and portability: You can export all your data at any time through the app or via the API.
  • Deletion: You can delete your account through the app. This triggers a 7-day recovery window, after which all your data is permanently removed across all systems — including job data, billing records, API keys, reviews, proxies, shared indexes, analytics data, and object storage files.
  • Analytics opt-out: You can disable product analytics at any time in your account settings.
  • Rectification: To update your personal data, contact us at privacy@framequery.com.
  • Lodge a complaint: You have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the UK or the relevant supervisory authority in your EU member state.

12. Security

We implement appropriate technical and organizational measures to protect your data:

  • All data is encrypted in transit (TLS 1.2+) and at rest
  • Least-privilege access controls on all services and infrastructure
  • GPU processing instances are ephemeral and have no public IP
  • API keys are stored as SHA-256 hashes, never in plaintext
  • Rate limiting per user and per IP address
  • Sensitive tokens and query parameters are redacted from all logs
  • SSRF protections on all external URL fetches

13. Data Breach Notification

In the event of a personal data breach affecting your data, we will notify you without undue delay and in any event within 72 hours of becoming aware of the breach. The notification will include the nature of the breach, its likely consequences, and the measures we have taken or propose to take.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the 'Last updated' date. For material changes, we will also notify you by email.

15. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

privacy@framequery.com