Privacy policy

Last updated: December 30, 2025

What we collect

We collect information you provide directly: your email address when you create an account, the learning goals you describe, and your progress through paths.

If you upload documents (such as PDFs or text files) to personalize your learning experience, we store those files securely to provide context for your paths.

We also collect basic usage data to improve the product: pages visited, features used, and performance metrics. We use cookies for authentication and remembering your preferences.

How we use your data

Your learning goals, uploaded documents, and feedback are used to create and personalize paths. We process this data through AI services to generate context, explanations, and resource recommendations.

We do not use your data to train AI models. Your content is processed to generate responses but is not retained by AI providers for model training.

We use aggregated, anonymized data to improve our service and understand how people learn. We never sell your personal information.

Team workspaces

If you join a team workspace, certain data is shared with team members: paths you create with team visibility, shared documents, and your display name. Team administrators can see team-wide usage.

Your personal paths (private or public) and profile documents remain private unless you explicitly share them with your team.

Data storage and security

Your data is stored securely using industry-standard encryption, with data encrypted at rest and in transit. Uploaded documents are stored in secure cloud storage with access controls. You can delete your documents at any time from your account settings.

For details on our security practices and infrastructure, see our Security page.

Third-party services

We use third-party services for database hosting, authentication, payment processing, AI content generation, analytics, and integrations. All our infrastructure providers are SOC 2 Type II certified.

For a complete list of vendors and their security certifications, see our Security page.

Data retention

We retain your account data while your account is active. If you delete your account, we remove your personal data within 30 days, except where we're required to retain it for legal or compliance purposes. Anonymized analytics data may be retained indefinitely.

Your rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your data in a portable format
  • Opt out of analytics tracking via our cookie preferences or by contacting us

For data requests or questions about this policy, contact us at privacy@guideframe.ai.

Guideframe
56 Broad St STE 54862
Boston, MA 02109

Cookies and tracking

We use cookies to provide and improve our service:

  • Essential cookies: Required for authentication and core functionality. Cannot be disabled.
  • Analytics cookies: Help us understand how you use Guideframe. You can opt out via our cookie preferences.

We do not use marketing or advertising cookies. Third-party services we integrate (such as YouTube embeds) may set their own cookies according to their privacy policies.

Children's privacy

Guideframe is not intended for users under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will delete it promptly. If you believe a child under 16 has provided us with personal information, please contact us at privacy@guideframe.ai.

California privacy rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know: Request disclosure of the categories and specific pieces of personal information we collect about you.
  • Right to delete: Request deletion of your personal information, subject to certain exceptions.
  • Right to opt-out of sale: We do not sell your personal information.
  • Right to non-discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise these rights, contact us at privacy@guideframe.ai. We will verify your identity before processing your request.

International transfers

Your data may be processed in countries outside your own. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required.

Changes to this policy

We may update this policy as our practices evolve. Significant changes will be communicated via email or in-app notification. Your continued use of Guideframe after changes constitutes acceptance.