Legal Document

Privacy Policy

Last updated:12 Jan 2026

This Privacy Policy explains how Frame Arc Ltd (“we”, “us”, “our”) collects, uses, stores, and shares personal data when you use framearc.ai (the “Site”) or contact us.

We process personal data in accordance with the UK GDPR and the Data Protection Act 2018, and (where applicable) the Privacy and Electronic Communications Regulations 2003 (PECR) for cookies and direct marketing.

1. Who we are (Data Controller)

For the purposes of data protection law, we are the Data Controller.

  • Company NameFrame Arc Ltd
  • Registered Office128 City Road, London, United Kingdom, EC1V 2NX
  • Company Number16839264
  • Emailcameron@framearc.ai

2. Personal data we collect

We may collect the following categories of personal data:

A. Information you provide
  • Name
  • Email address
  • Company name and role
  • Project briefs & attachments
B. Automated Information
  • IP address
  • Device & browser info
  • Usage analytics
  • Performance data
C. Cookies and similar technologies

We use cookies for functionality, performance, analytics, and marketing. See Section 8.

Children

The Site is not intended for children under 13. If you believe a child has provided us with personal data, contact us and we will delete it.

3. How we use your personal data

  • Respond to enquiries and communicate about projects/quotes
  • Provide and operate the Site, including troubleshooting
  • Improve the Site through analytics and feedback
  • Send marketing emails (opt-in only, unsubscribe anytime)
  • Protect our business (security, fraud prevention)
We do not sell your personal data.

4. Lawful bases for processing (UK GDPR)

Legitimate interests
Operating site, enquiries, security
Consent
Non-essential cookies, marketing
Contract
Quotes, proposals, services
Legal obligation
Compliance with law

5. Who we share your personal data with

We share data only with trusted third parties necessary for operation:

  • Hosting providers
  • Analytics providers
  • Email providers
  • Professional advisers
  • Contractors

6. International transfers

Where data is transferred outside the UK, we ensure safeguards via:

  • UK adequacy regulations
  • UK International Data Transfer Agreement (IDTA)

7. Data retention

Enquiries24 Months
MarketingUntil Unsubscribe
AnalyticsPer Provider

8. Cookies and analytics (PECR)

We use Strictly Necessary, Analytics, and Marketing cookies.

Manage consent via our cookie banner or browser settings. Blocking cookies may impact site features.

9. Your rights

Under UK GDPR, you have the right to:

AccessRectificationErasureRestrictionObjectionPortabilityWithdraw Consent

Contact cameron@framearc.ai to exercise rights. You may also complain to the ICO.

10. Security

We implement appropriate technical and organisational measures. No internet transmission is 100% secure.

11. Third-party websites

We are not responsible for privacy practices of linked third-party sites.

12. Updates

Changes will be posted here with an updated date.

13. Contact

For privacy related questions:

cameron@framearc.ai