Privacy Policy

By using the Platform, you acknowledge this Privacy Policy together with our Terms and Conditions. Capitalized terms used here have the same meanings as in the Terms unless otherwise defined below. If you do not agree, please do not use the Platform.

1. Who we are and how to contact us

FrameLore operates FrameLore Enterprise, an AI-powered pre-production intelligence platform for film and television professionals. Our principal contact details are:

FrameLore
Vancouver, British Columbia, Canada
Website: www.framelore.com

For privacy-related requests (including access, correction, or deletion where applicable), contact us at the email address associated with your Account or at info@bpcinemagroup.com. We may need to verify your identity before fulfilling a request.

2. Definitions

"User Content" means scripts, screenplays, treatments, source materials, notes, briefs, questionnaire responses, and other files and data you upload to the Platform.

"Generated Outputs" means reports, analyses, documents, visualizations, AI-generated images, and other deliverables produced by the Platform based on User Content.

"Personal information" means information about an identifiable individual, as defined under applicable privacy laws (for example, PIPEDA in Canada).

3. Information we collect

We collect and process the following categories of information:

• Account and contact data. Name, email address, organization (if provided), authentication credentials, and similar information you provide when you register or communicate with us.
• User Content. Materials you upload or submit, including scripts and project-related files, metadata associated with those files, and responses to intake questionnaires.
• Generated Outputs. Deliverables created for your projects, which may be stored so you can access and export them.
• Usage and technical data. Log data, device and browser type, approximate location derived from IP address where available, actions taken in the Platform, timestamps, and diagnostic information used to operate, secure, and improve the service.
• Communications. Messages you send us (for example via email or contact channels), including content and metadata.

4. How we use information

We use the information above to:

• Provide, operate, and maintain the Platform and your Account;
• Process User Content through our systems and Third-Party AI Services to generate Generated Outputs you request;
• Authenticate users, prevent fraud and abuse, and enforce our Terms and Conditions;
• Communicate with you about the Platform, security alerts, or material policy updates;
• Comply with law and respond to lawful requests; and
• Analyze aggregated, non-personally identifiable usage data (such as feature usage and processing metadata) to improve the Platform's performance, accuracy, and functionality—without using your original scripts or materials in a way that identifies you or your project.

No sale of personal information. FrameLore does not sell, license, rent, or share User Content or personally identifiable information with any external party for marketing, advertising, research, or any commercial purpose unrelated to providing the Platform.

Anonymized Generated Outputs. As described in our Terms, we may use anonymized, de-identified Generated Outputs solely to improve the quality, accuracy, and functionality of our internal systems. This does not involve your original scripts or source materials, and we apply professional standards so such data does not identify any individual user or project.

No AI training on User Content. Your scripts, screenplays, and source materials are never used to train, fine-tune, or improve any AI models—whether operated by FrameLore or by third parties. This applies to all User Content at all times.

5. Legal bases (where applicable)

If you are in a jurisdiction that requires a legal basis for processing (such as the EEA or UK), we rely on one or more of: performance of a contract; legitimate interests (for example security, service delivery, and product improvement balanced against your rights); consent where required; and legal obligation. You may contact us to discuss supplementary data protection terms where applicable.

6. Confidentiality, access, and personnel

All User Content is treated as strictly confidential from the moment of upload. We implement commercially reasonable administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of User Content and personal information.

Each user's project exists in a logically separated environment within the Platform. No other user or unauthorized party can access your uploaded materials through the Platform. FrameLore personnel do not access, read, or review your scripts or source materials unless you explicitly request that we do so (for example, manual review services you engage) or unless we are required by law.

7. Third-party AI services and other processors

To deliver the Platform, we use Third-Party AI Services—external AI infrastructure and APIs—to process User Content and generate outputs. By using the Platform, you acknowledge and consent to the transmission of User Content to those providers solely for that processing purpose.

We select providers whose commercial API terms are designed to include protections such as:

• No model training: User Content submitted through our API integrations is not used by those providers to train, fine-tune, or improve their AI models.
• Limited retention: Providers may temporarily retain API inputs and outputs for a limited period (typically not exceeding thirty (30) days) for operational, safety, and abuse-prevention purposes, after which they are automatically deleted.
• No sharing for commercial exploitation: Providers do not sell, license, or share API-submitted data with external parties in the manner described in our Terms.

We do not publicly disclose the identity of our third-party AI infrastructure providers as part of standard service terms. If you require specific disclosure for compliance purposes, contact us to discuss a separate confidentiality arrangement.

We also use other service providers (for example hosting, authentication, and infrastructure) under agreements that require appropriate confidentiality and security measures.

8. Encryption and transmission

Data transmitted between your device and the Platform, and between the Platform and third-party processing infrastructure, is encrypted using industry-standard encryption protocols.

9. Retention and deletion

User Content is retained for the duration of your active session and project as needed to provide the Platform. You may request deletion of your data by contacting us. Upon account deletion or your written request, we will delete User Content and identifiable Generated Outputs from our primary systems within thirty (30) days, subject to legal or regulatory obligations that require longer retention.

Residual copies may exist in encrypted backup systems for a limited period and will be overwritten in the normal course of backup rotation.

Anonymized and de-identified Generated Outputs that have already been incorporated into our internal systems before a deletion request are not individually retrievable or attributable to you and are not subject to deletion in the same way, consistent with our Terms.

We may retain aggregated, non-personally identifiable usage data that does not contain User Content or information that could identify a specific user or project.

10. When we may disclose information

We may disclose User Content or personal information only in limited circumstances:

• As required by law, regulation, court order, or legal process;
• To protect the rights, safety, or property of FrameLore, our users, or the public; or
• With your explicit written consent.

We may also share information in connection with a merger, acquisition, or sale of assets, with notice where required by law.

11. International transfers

We are based in Canada. Your information may be processed and stored in Canada and in other countries where our service providers or Third-Party AI Services operate. Where cross-border transfers are subject to legal requirements, we use appropriate safeguards (such as standard contractual clauses or equivalent measures) where applicable.

12. Regulatory framework

We process personal information in accordance with applicable Canadian privacy legislation, including the Personal Information Protection and Electronic Documents Act (PIPEDA). Users in jurisdictions with additional requirements (including the EU/UK General Data Protection Regulation) may contact us to discuss how we address those obligations.

13. Your rights

Depending on where you live, you may have rights to access, correct, delete, or export your personal information; to object to or restrict certain processing; to withdraw consent where processing is consent-based; and to lodge a complaint with a supervisory authority. To exercise these rights, contact us using the details in Section 1. We may need to verify your identity before responding.

14. Children

The Platform is not directed to children under the age of 16 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us.

15. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through a prominent notice on the Platform at least thirty (30) days before they take effect, consistent with our Terms. The "Last updated" date at the top of this page will be revised when we post changes. Continued use of the Platform after the effective date may constitute acceptance of the revised policy where permitted by law.