FrameFlow

Security & Privacy

Last updated: April 2026

How we protect your data and your creative work.

Your data is isolated

Think of your FrameFlow data as being in its own private vault. We use a security system called Row-Level Security in our database — automatic locks that ensure one user can never see another user's videos, scripts, or notes, even by accident. Every query to our database is checked against your identity before any data is returned.

Encryption

  • All data is encrypted in transit using HTTPS/TLS.
  • All data is encrypted at rest in our database.
  • Passwords are never stored in plain text — authentication is handled by Supabase Auth.

Payment security

We never see or store your credit card information. All payments are processed by Lemon Squeezy, a PCI-compliant payment processor. Your billing details never touch our servers.

AI and your content

When you use FrameFlow's AI features (Editorial Assistant and Concept Lab), your content is sent to Anthropic's API for processing. Here is what that means:

  • Anthropic does not use your content to train AI models.
  • Your content is processed and the result is returned — it is not stored by Anthropic beyond the API call.
  • AI features are optional. You can use FrameFlow fully without ever using them.
  • We do not use your scripts or ideas to train any AI model.

Infrastructure

FrameFlow runs on:

  • Vercel — hosting and deployment (SOC 2 Type II certified).
  • Supabase — database and authentication (SOC 2 Type II certified).
  • Anthropic — AI processing (enterprise-grade security).
  • Lemon Squeezy — payments (PCI DSS compliant).

We rely on these industry-standard providers so you benefit from their security investments without us having to reinvent the wheel.

What we don't do

  • We do not sell your data.
  • We do not share your data with advertisers.
  • We do not use your creative content for any purpose other than providing the FrameFlow service.
  • We do not have access to your YouTube account credentials.

Reporting a security issue

Found a vulnerability? Please email security@goframeflow.com with details. We take security reports seriously and will respond within 24 hours. Please do not publicly disclose any vulnerability until we have had a chance to address it.

Questions

General security questions? Email support@goframeflow.com.