Privacy Policy

1. Information We Collect

When you create an account on Framework, we collect account information (name, email, phone number), usage data (pages visited, features used, session tokens for authentication), and any operational data you enter into the platform — including asset records, maintenance logs, calibration results, and client records.

2. How We Use Your Information

We use your information to provide and maintain Framework, send transactional emails (verification, password reset, service report delivery), improve our service based on usage patterns, and comply with applicable legal obligations. We do not use your data for advertising or sell it to third parties.

3. Data Storage & Security

Your data is stored on secure servers using PostgreSQL with Row Level Security (RLS), ensuring complete data isolation between organizations. All connections are encrypted via TLS/SSL. Files and documents are stored in private Supabase Storage buckets with signed, time-limited access URLs.

4. Data Sharing

We do not sell, trade, or rent your personal information to third parties. Service reports and certificates may be shared with your designated recipients (e.g. hospital contacts) via secure signed links as part of the platform's document delivery feature — this sharing is initiated by your own team.

5. Cookies

We use session cookies strictly for authentication and maintaining your logged-in state. No third-party tracking or advertising cookies are used inside the application.

6. Your Rights

You have the right to access, correct, delete, export, or object to the processing of your personal data. Organization owners may delete their account and all associated data at any time. To exercise these rights, contact us at the email address below.

7. Contact

For privacy concerns or data requests, contact us at: [email protected]