OF
OpenFrameBack to Home

Privacy Policy

Last updated: February 26, 2026

1. Introduction

OpenFrame ("we," "our," or "us") operates the OpenFrame Cloud platform at openframe.us and related services. This Privacy Policy explains how we collect, use, and protect your information when you use our services.

OpenFrame is an open-source, self-hosted family dashboard platform. The cloud service provides optional remote management, relay connectivity, and account features for self-hosted instances.

2. Information We Collect

Account Information

When you sign in via Google or Microsoft OAuth, we receive your name, email address, and profile picture from the identity provider. We store this information to identify your account.

Calendar & Contact Data

If you connect Google Calendar, Microsoft Outlook, or other calendar services, we access your calendar events, task lists, and related metadata solely to display them on your OpenFrame dashboard. This data is synced to your self-hosted instance and cached locally.

Photos

If you connect Google Photos, we access your photo library metadata and image files solely to display slideshows on your dashboard. Photos are cached on your self-hosted instance.

Email (Gmail)

If you connect Gmail, we access your email messages in read-only mode to display an email widget on your dashboard. We do not send, modify, or delete any emails.

Instance & Device Data

When you register a self-hosted instance with OpenFrame Cloud, we store connection metadata (server URL, instance name) to facilitate remote management and relay connectivity.

Usage Data

We may collect basic usage analytics such as page views and feature usage to improve the service. We do not use third-party tracking or advertising services.

3. How We Use Your Information

  • To provide and maintain the OpenFrame Cloud service
  • To authenticate your identity and manage your account
  • To sync calendar events, photos, tasks, and email to your self-hosted dashboard
  • To facilitate relay connections between your devices and self-hosted instances
  • To respond to support requests
  • To improve and develop new features

4. Data Storage & Security

Your personal data (calendars, photos, emails) is primarily stored on your self-hosted OpenFrame instance, which you control. The OpenFrame Cloud service stores only account information and instance connection metadata.

OAuth tokens are encrypted at rest. We use industry-standard security practices to protect your data, including HTTPS encryption for all communications.

5. Third-Party Services

OpenFrame integrates with third-party services at your direction, including:

  • Google — Calendar, Photos, Tasks, Gmail (via Google OAuth 2.0)
  • Microsoft — Outlook Calendar, To Do (via Microsoft Identity Platform)
  • Spotify — Music playback controls

Each integration is optional and requires your explicit authorization. You can disconnect any integration at any time through your dashboard settings.

6. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. We may share data only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations or valid legal process
  • To protect the rights, safety, or property of OpenFrame or its users

7. Data Retention & Deletion

You can delete your account and all associated data at any time. Upon account deletion, we remove your account information, OAuth tokens, and instance registrations from our servers.

Data stored on your self-hosted instance is under your control and is not affected by cloud account deletion.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Disconnect any third-party integration at any time
  • Export your data

9. Children's Privacy

OpenFrame is designed as a family dashboard and may display information relevant to family members of all ages. However, account registration and management requires users to be at least 13 years of age.

10. Open Source

OpenFrame is open-source software. You can review the complete source code to verify our data handling practices at github.com/tyler-danielson/openframe.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes by updating the "Last updated" date at the top of this page.

12. Contact

If you have questions about this Privacy Policy, please open an issue on our GitHub repository.