FRAI
FRAI

Framework of Responsible Artificial Intelligence

Legal & Support

Privacy Policy

Understand how FRAI processes personal data, the rights you can exercise, and the safeguards we use to protect information.

Last updated: November 2025

Overview

FRAI builds governance tooling for responsible AI. We take privacy seriously. This policy explains what data we collect, how we use it, and the controls you have. The policy applies to our website, platform, support services, and communications.

If you have questions or need a data processing addendum, contact contact@frai.cc. We respond within two business days.

Information we collect

Customer data ingested for scans or tests (e.g., website URLs, chatbot transcripts) is processed solely to deliver the service. You retain ownership of that data.

  • Account information such as name, email address, job title, and company
  • Usage data from the FRAI platform including logins, scans executed, and test results metadata
  • Support conversations, survey responses, and content you voluntarily provide for research partnerships

How we use information

  • Deliver, maintain, and improve the FRAI platform
  • Provide customer support and incident response
  • Develop new features and informed roadmaps based on aggregated, anonymised insights
  • Send transactional updates, security notifications, and product communications (you can opt out of non-essential email at any time)
  • Comply with legal obligations, including responding to law enforcement requests when permitted

Data sharing and processors

We do not sell personal data. We share information only with trusted subprocessors that help us deliver the platform, such as hosting, error monitoring, and customer support services.

We use trusted service providers including hosting (Supabase), authentication (Clerk), and email services. For a complete list of subprocessors or contractual documentation, please email contact@frai.cc.

International data transfers

We host primary infrastructure in the European Union. When data moves outside these regions, we rely on Standard Contractual Clauses or equivalent frameworks to maintain adequate protection.

Your rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your personal data. You can exercise these rights by contacting contact@frai.cc. We authenticate requests to protect accounts.

If you believe we have not resolved your concern, you can lodge a complaint with your local data protection authority. We will work with regulators to address any issues.

Data retention

We retain customer data for the duration of the contract. When you cancel or request deletion, we purge account data within 30 days unless legal obligations require longer retention. Backup copies roll off within 45 days.

Cookies

We use essential cookies only for authentication and session management. These cookies are necessary for the platform to function and cannot be disabled. We do not use analytics cookies, advertising cookies, or any tracking cookies.

Updates to this policy

We may update this privacy policy to reflect product changes or regulatory requirements. We will notify account owners via email or in-app notice before material changes take effect.