Legal
Privacy Policy
Last updated: June 21, 2026 · Effective: June 21, 2026
Who we are
Just Frank is a community platform operated by QX Holdings Inc., a Canadian corporation. Just Frank powers private communities, each led by a community owner (a “Host”). This policy covers both the Just Frank platform and the Just Frank mobile app.
Contact: hello@itsjustfrank.com
Mailing address: QX Holdings Inc., 4705 Mann Road, Box 302, Rossland, BC V0G 1Y0, Canada.
Plain-language summary
- You create a profile to use Just Frank. We store the data you give us.
- Content you post (feed posts, comments, journal entries, dharma reviews, messages) is stored so the app can work. Who can see it depends on where you posted it.
- We use AI (“Frank” and other community AIs) to help you. Your conversations with AI are processed by third parties (Anthropic via our AI partner Anima) and stored so the AI has context.
- We use analytics to understand how the app is used. We don’t sell your data.
- You can request deletion of your account and data at any time.
1. Data we collect
Account data
Email address, name, profile photo, username, bio, and other profile fields you choose to fill in.
Content
Anything you post, write, send, or upload inside Just Frank: posts, comments, direct messages, reactions, journal entries, dharma reviews, loop entries, voice notes, photos, calendar events, scheduler bookings, and notes.
AI conversations
Your messages to Frank (or your community’s AI), the AI’s responses, and the context it uses to answer you (e.g. recent posts, classroom progress, journal entries — scope depends on the feature and your privacy settings). We retain conversation history so the AI has memory across sessions.
Community membership
Which communities you belong to, your role (member, admin, owner), when you joined, and your engagement level.
Device data
When you use the Just Frank mobile app (iOS or Android): your device type, OS version, app version, crash reports, and push notification tokens (if you enable push).
Usage data
Pages viewed, features used, session duration, and anonymous analytics events (e.g. post_created, dharma_review_submitted). Used to improve the product.
Payment data
If your host charges for your community, payment is processed by Stripe. We receive only the minimum needed (subscription status, last-4 of card, country). We never see your full card number.
Connected services
If you connect Google Calendar (via the Just Frank Calendar feature), we receive calendar events you choose to sync, per the scope you grant. See §3b for our Google API Services Limited Use disclosure.
If a community admin connects a Facebook Page or Instagram Business accountvia the Just Frank → Meta integration, we receive: the connecting admin’s Meta user ID and name, the IDs and names of the Pages and Instagram Business accounts they grant access to, short-lived and long-lived access tokens (stored encrypted at rest), and the granted permission scopes. We do not receive contact lists, friends lists, or any data outside the granted scopes. See §3a below for what flows from Just Frank to Meta when an admin cross-posts content.
What we do NOT collect
Precise location, contacts, health data, advertising identifiers, or biometric data. (Face ID / fingerprint unlock happens entirely on your device’s secure enclave; we never see the biometric template.)
2. How we use your data
- Provide the Just Frank platform and app
- Power AI assistance (Frank and community AIs) with your context
- Send notifications you opted into (in-app, email, push)
- Improve the product (analytics, feature usage)
- Keep Just Frank secure (fraud detection, abuse prevention)
- Comply with legal obligations
We do not sell your data. We do not use your content to train third-party AI models — AI processors (Anthropic via Anima) are bound to process data only on our behalf and not train on it.
3. Who sees your data
Inside your community: hosts, moderators, and other members can see content based on where you post it. A post in the main feed is visible to all community members; a direct message is visible only to the recipient; your journal and dharma reviews are private to you (and optionally to your AI if you enable classroom context in your Frank settings).
Just Frank platform staff: limited, role-based access. Engineering access to raw data is logged.
Third-party processors (bound by data processing agreements):
| Service | Purpose | Data shared |
|---|---|---|
| Supabase | Database, auth, file storage | All platform data (encrypted at rest) |
| Vercel | Web + API hosting | Request logs, IP |
| Anthropic (via Anima) | AI model inference | AI conversation turns + context |
| Anima | AI orchestration layer | Same as Anthropic (Anima is the API gateway) |
| Stripe | Payment processing (if your host charges) | Billing info |
| Google Calendar sync, Google Sign-In (optional) | Calendar scope you grant, OAuth profile | |
| Firebase Cloud Messaging | Android push notifications | Device token, notification payload |
| Apple Push Notification service | iOS push notifications | Device token, notification payload |
| Meta Platforms (Facebook / Instagram) | Cross-posting community content to connected Facebook Pages and Instagram Business accounts when a community admin enables it | Connecting admin’s Meta identity (ID + name), access tokens (encrypted at rest), Pages/IG accounts the admin grants, and post content + media that the admin chooses to cross-post |
Law enforcement: we disclose data only when legally compelled by a valid order, subpoena, or warrant.
3a. Connecting third-party social accounts (Meta)
Community admins can connect a Facebook Page or Instagram Business account so they can cross-post community content from Just Frank to those surfaces. The connection is per-community and admin-initiated. Members do not connect their personal Facebook or Instagram accounts through Just Frank.
Permissions we request
- pages_show_list — list the Facebook Pages the admin manages so they can pick which one to connect.
- pages_manage_posts — publish posts to the connected Facebook Page on the admin’s behalf.
- pages_read_engagement — read post identifiers returned by Meta after a successful publish (used for the Just Frank audit log).
- instagram_basic — fetch the Instagram Business account ID and handle linked to the connected Facebook Page.
- instagram_content_publish — publish posts to the linked Instagram Business account when an admin enables Instagram cross-posting.
What flows from Just Frank to Meta
Only when a community admin explicitly toggles “Cross-post to Facebook” (or Instagram) on an individual post, Just Frank sends to Meta:
- The post text body the admin authored.
- Image and video URLs the admin attached, if any (Instagram requires media).
- The Page or Instagram Business account access token (used to authenticate the publish request).
Just Frank does not transmit member identities, comments, reactions, AI conversations, journals, direct messages, or any other community data to Meta. We do not use Meta-granted tokens to read content from connected Pages or Instagram accounts beyond confirming a successful publish.
How tokens are stored
All Meta access tokens are encrypted at rest using AES-256-GCM. Tokens are stored only on Just Frank’s servers (Supabase), never sent to client browsers, and never logged. Tokens are scoped to the community that connected them — Just Frank cannot use one community’s tokens on behalf of another.
Disconnecting and data deletion
A community admin can disconnect Meta at any time from the community’s admin settings. Disconnecting revokes the access token at Meta and removes the encrypted token from Just Frank’s database. The admin can also revoke Just Frank’s access from Facebook’s own settings → Business Integrations panel; Meta will notify Just Frank via the deauthorize webhook and Just Frank will mark the connection as revoked.
Members of the community whose posts were cross-posted to Meta can request deletion of the Meta-side post by contacting the community admin (who controls the connected Page) or by submitting a deletion request via itsjustfrank.com/legal/data-deletion. Just Frank forwards Meta-initiated data deletion callbacks to /api/public/meta/data-deletion-callbackper Meta’s requirements.
3b. Google API Services — Limited Use
Just Frank’s use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Just Frank connects to Google Calendar only when you choose to link your Google account from the Just Frank Calendar feature. When you do, we request the following Google OAuth scopes:
https://www.googleapis.com/auth/calendar— to read your calendars and to create, update, and sync calendar events between Just Frank and Google Calendar.https://www.googleapis.com/auth/userinfo.emailandopenid— to identify which Google account you connected.
Specifically, in relation to data obtained through these Google APIs, Just Frank:
- uses Google user data only to provide and improve the user-facing calendar sync features you enable inside Just Frank;
- does not transfer Google user data to others except as necessary to provide or improve those features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with prior notice to users;
- does not use Google user data for serving advertisements;
- does not sell Google user data, and does not use it to train, develop, or improve generalized or non-personalized AI / machine-learning models;
- does not allow humans to read Google user data unless we first obtain your affirmative agreement to view specific data, it is necessary for security purposes (such as investigating abuse), it is required to comply with applicable law, or the data has been aggregated and anonymized.
You can disconnect Google Calendar and revoke Just Frank’s access at any time from your Just Frank calendar settings, or from your Google Account → Security → Third-party access page. Disconnecting revokes the token at Google and deletes the stored access and refresh tokens from Just Frank.
4. AI and your data
Just Frank’s AI features (“Frank” and community-specific AIs) run on Anthropic Claude models via our AI partner Anima (also operated by QX Holdings Inc.). When you interact with AI:
- Your current message plus relevant context (recent posts, profile, classroom progress, journal entries — scope depends on the feature and your Frank privacy toggle) is sent to Anthropic.
- Anthropic processes the request and returns a response.
- We retain your conversation history so the AI has memory across sessions.
- Anthropic does not train on your data. It is processed under a commercial agreement that prohibits training use.
You can control AI context by adjusting privacy settings in Just Frank. Options include “full context,” “ask-only,” and “never use my classroom/journal data.”
5. Retention
- Active account data: kept while your account is active.
- After account deletion: most data is erased within 30 days; some data (audit logs, legal holds, anonymized analytics) may be retained longer where required by law.
- AI conversations:retained alongside your profile; deleted when you delete your account or explicitly clear your AI history (where supported in your community’s configuration).
- Backups: deleted data may persist in encrypted backups for up to 90 days before being purged.
6. Your rights
You can:
- Access your data — export from your settings or by emailing us
- Correct inaccurate data — edit in the app, or email us
- Delete your account and data — Settings → Account → Delete Account, or email us
- Port your data — export in machine-readable format (JSON or CSV)
- Opt out of non-essential communications — Settings → Notifications
- Withdraw consent to optional processing — revoke calendar sync, revoke AI context, etc.
EU / UK residents (GDPR): you also have the right to object to processing, restrict processing, and lodge a complaint with your local data protection authority.
California residents (CCPA / CPRA):you have the right to know, delete, correct, opt out of sale (we don’t sell), and non-discrimination. Email us to exercise these rights.
Data Controller: QX Holdings Inc.
7. Security
We use industry-standard practices:
- TLS 1.2+ for all data in transit
- Encryption at rest (Supabase: AES-256)
- Row-level security (RLS) on all database tables
- Magic-link or OAuth sign-in (we don’t store plaintext passwords)
- API keys stored as encrypted environment variables
- Biometric unlock on mobile uses your device’s secure enclave — we never see the biometric template
No system is perfectly secure. In the event of a breach affecting your data, we will notify you within the timeframe required by applicable law (typically 72 hours under GDPR).
8. International transfers
Just Frank uses infrastructure providers (Supabase, Vercel, Anthropic, Google, Firebase) with data centers primarily in the United States and Europe. Transfers from the EU / UK are covered by Standard Contractual Clauses where required.
9. Children
Just Frank is not intended for users under 16 (or the minimum age required by your country’s law, whichever is higher). We do not knowingly collect data from children. If you believe a child has given us data, email us and we will delete it.
10. Changes to this policy
We will post the updated version at this URL with a new “Last updated” date. Material changes are announced in-app and by email at least 14 days before taking effect.
11. Contact
Privacy questions: hello@itsjustfrank.com
QX Holdings Inc.
4705 Mann Road, Box 302
Rossland, BC V0G 1Y0
Canada