1. Introduction

Frank Dashboard Pty Ltd (“we”, “us”, or “our”) operates the Frank business health dashboard (“the Service”). This Privacy Policy explains how we collect, use, store, and protect your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and business name.

Business Data from Integrations

When you connect third-party services, we access and store data from those platforms including:

Stripe: Transaction data, revenue metrics, subscription information, and payment failure rates
Xero: Financial statements, invoices, expenses, and account balances
Google Analytics: Website traffic, session data, conversion metrics, and traffic sources
Google Ads: Ad spend, campaign performance, and cost-per-lead data

Usage Data

We collect information about how you interact with the Service, including pages visited, features used, and AI chat interactions.

Analytics

We use Google Analytics (GA4) to understand how users interact with our website. This collects anonymized usage data including page views, session duration, and device information.

3. How We Use Your Information

We use your information to:

Provide, maintain, and improve the Service
Generate dashboard metrics and AI-powered insights
Send you weekly business summaries and alerts
Communicate with you about the Service
Detect and prevent fraud or abuse
Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using Firebase (Google Cloud Platform) with encryption at rest and in transit. We implement industry-standard security measures including:

Encrypted data transmission (TLS/SSL)
Encrypted data storage
Access controls and authentication
Regular security reviews

5. Data Sharing

We do not sell your personal or business data. We may share data with:

Service providers: Third-party services that help us operate (e.g., hosting, AI processing)
AI providers:We use Anthropic's Claude to generate insights. Business data sent to AI models is not used to train those models.
Legal requirements: When required by law, regulation, or legal process

6. Third-Party Integrations

When you connect third-party services, we access your data through their APIs using OAuth tokens. You can disconnect any integration at any time from your dashboard settings. Upon disconnection, we will stop syncing new data from that service.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal and business data within 30 days, except where we are required to retain it for legal or compliance purposes.

8. Your Rights

You have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your data
Export your data in a portable format
Withdraw consent for data processing
Disconnect third-party integrations at any time

To exercise any of these rights, contact us at hello@frankdash.com.

9. Cookies

We use essential cookies to maintain your session and authentication state. We also use Google Analytics cookies to understand usage patterns. You can disable non-essential cookies in your browser settings.

10. Children's Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at hello@frankdash.com.