Frame of Work Logo

Privacy Policy

Last updated: August 2025

1. Information We Collect

We collect information you provide directly to us, such as when you create an account, make a purchase, or contact us for support.

Personal Information

  • Name
  • Email address
  • Payment information
  • Account credentials

Usage Information

  • How you use our Service
  • Features you access
  • Time spent on different sections
  • Device and browser information

2. How We Use Your Information

We use the information we collect to provide, maintain, and improve our Service:

  • To provide and deliver the services you request
  • To process transactions and send related information
  • To send technical notices and support messages
  • To communicate with you about products, services, and events
  • To monitor and analyze trends and usage
  • To detect, investigate, and prevent fraudulent transactions

3. Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as described in this policy:

Service Providers

We may share your information with third-party service providers who perform services on our behalf, such as payment processing, data analysis, and customer service.

HubSpot Integration

When you connect your HubSpot account to Frame of Work:

  • We use OAuth 2.0 to securely access your HubSpot portal
  • We store OAuth tokens securely to maintain the connection
  • We only access data necessary for template installation and usage analytics
  • We do not store or access your customer contact data, deal details, or sensitive business information
  • We may access portal configuration data to ensure template compatibility
  • You can revoke our access at any time through your dashboard or HubSpot settings

Legal Requirements

We may disclose your information if required by law or if we believe such disclosure is necessary to protect our rights or comply with legal proceedings.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Secure data storage practices

5. Data Retention

We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements.

6. Your Rights and Choices

You have certain rights regarding your personal information:

  • Access: You can request access to your personal information
  • Correction: You can request correction of inaccurate information
  • Deletion: You can request deletion of your personal information
  • Portability: You can request a copy of your data in a portable format
  • Restriction: You can request restriction of processing under certain circumstances
  • Object: You can object to processing based on legitimate interests
  • Withdraw Consent: You can withdraw consent for consent-based processing
  • Opt-out: You can opt out of marketing communications at any time

To exercise these rights, contact us using the information provided below. We will respond within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your usage of our Service.

  • Essential cookies for service functionality
  • Analytics cookies to understand usage patterns
  • Performance cookies to improve our Service

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers.

9. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract: Processing necessary to provide our services and fulfill our agreement with you
  • Legitimate Interest: Analytics, fraud prevention, and service improvement
  • Consent: Marketing communications and optional features (where consent is obtained)
  • Legal Obligation: Compliance with applicable laws and regulations

10. Data Breach Notification

In the event of a data breach that poses a risk to your personal information:

  • We will notify relevant authorities within 72 hours as required by law
  • We will inform affected users without undue delay
  • We will provide details about the nature of the breach and steps being taken
  • We maintain incident response procedures to minimize impact and prevent future breaches

11. Third-Party Services

Our service integrates with the following third-party providers:

  • HubSpot: For template installation and quote template usage
  • Polar: For payment processing and merchant of record
  • DataBuddy: For GDPR-compliant cookie consent management

Each third-party service has its own privacy policy, and we encourage you to review them.

12. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For material changes, we will provide additional notice via email.

14. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Email: privacy@frameofwork.com
General Support: hello+privacy@frameofwork.com
Website: https://www.frameofwork.com

Data Protection Officer: For GDPR-related inquiries, you can contact our Data Protection Officer at hello+gdpr@frameofwork.com