← Back to SolidFrame

SolidFrame Technologies

Privacy Policy

How we collect, use, share, and protect personal data. Last updated: July 17, 2026.

1. Who we are

This Privacy Policy explains how Solidframe Technologies OÜ ("SolidFrame", "we", "us", or "our") collects and processes personal data when you visit solidframe.io or use SolidFrame Studio (the "Service").

Solidframe Technologies OÜ is an Estonian company with registry code 14562948 and registered office at Harju maakond, Tallinn, Lasnamäe linnaosa, Võru tn 2-51, 13612, Estonia. For privacy enquiries, contact info@solidframe.io.

2. Data we collect

Account data includes your email address, account identifier, authentication records, account status, credit balance, and information you choose to provide.

Transaction data includes purchased packages, payment status, currency, amount, timestamps, billing references, and limited payment-method details supplied by our payment processors. We do not store complete payment-card numbers or card security codes.

Service data includes projects, uploaded media, prompts, generated outputs, editing activity, model selections, credit usage, support requests, and waitlist or registration messages.

Technical and security data may include IP address, browser and device information, session identifiers, logs, error reports, access times, and signals used to prevent fraud, abuse, or unauthorised access.

3. How and why we use data

We process data to create and secure accounts, provide browser-based editing and generation features, deliver purchased credits, process transactions, respond to support requests, maintain the Service, and communicate important service information.

Our legal bases under the GDPR include performance of a contract, compliance with legal obligations, our legitimate interests in operating and protecting the Service, and consent where consent is specifically requested. You may withdraw consent at any time without affecting processing already carried out lawfully.

We may analyse aggregated or de-identified usage information to understand performance and improve product workflows. We do not sell personal data.

4. Media, prompts, and generated content

We process uploads, prompts, project data, and outputs as necessary to provide the features you request. Some generation tasks require transmitting relevant content to the selected third-party model or media-processing provider.

Do not upload personal data, confidential material, or images and recordings of another person unless you have a lawful basis and all necessary rights and permissions.

5. Service providers and recipients

We use carefully selected providers for hosting, storage, authentication, email delivery, analytics, customer support, fraud prevention, payment processing, and media or content generation. These providers receive only the data reasonably required to perform their services and process it under contractual or legal obligations.

Payment information is processed by the payment provider presented at checkout. That provider may act as an independent controller for information it must process for payment, fraud prevention, taxation, and regulatory compliance; its privacy notice also applies.

We may disclose data when required by law, court order, or a competent authority, or when reasonably necessary to protect users, the public, our rights, or the security and integrity of the Service.

6. International transfers

Some providers may process data outside Estonia or the European Economic Area. Where required, we use an approved transfer mechanism such as an adequacy decision or the European Commission's Standard Contractual Clauses, together with appropriate supplementary safeguards.

7. Retention

We retain account and project data while your account is active and for a reasonable period afterward where needed to provide the Service, resolve disputes, prevent abuse, or comply with law. Transaction and accounting records are retained for the periods required by Estonian tax and accounting laws.

Retention periods vary by data type and purpose. Data may be deleted or anonymised when it is no longer required. Backup copies may remain for a limited period before being securely overwritten.

8. Cookies and local storage

We use cookies or similar browser storage that are necessary for authentication, session continuity, security, preferences, and core Service operation. If we introduce optional analytics or advertising cookies, we will request consent where required by law.

9. Your rights

Depending on applicable law, you may request access to your personal data, correction, deletion, restriction of processing, portability, or object to processing based on legitimate interests. You may also withdraw consent where processing is based on consent.

Send requests to info@solidframe.io. We may need to verify your identity before acting on a request. You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) or the supervisory authority in your country of residence or work.

10. Security and children

We use organisational and technical safeguards designed to protect personal data, but no online service can guarantee absolute security. You are responsible for protecting your account credentials.

The Service is intended for adults and is not directed to children. We do not knowingly collect personal data from children. Contact us if you believe a child has provided data to us unlawfully.

11. Changes and contact

We may update this Privacy Policy as the Service or legal requirements change. The current version will be posted here with a revised last-updated date.

Privacy questions and requests may be sent to info@solidframe.io or to Solidframe Technologies OÜ at its registered address above. Telephone: +372 5911 6652.