Privacy Policy

Last updated: May 24, 2026

FrumTube ("FrumTube", "we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, who we share it with, how we store and protect it, and how long we keep it. It also explains the rights you have over your information and how to exercise them.

This policy applies to the FrumTube website, mobile applications, and APIs (collectively, the "Service").

1. Information We Collect

1.1 Information You Provide

  • Account information: username, email address, password (stored hashed using bcrypt), and optional profile details such as display name, profile picture, banner, and bio.
  • User content: videos, thumbnails, titles, descriptions, comments, playlists, community posts, and messages you send through the Service.
  • Communications: support requests, feedback, and other correspondence with us.
  • Payment information (if you make purchases): processed by our payment processor (Stripe). We do not store full card numbers on our servers; we store only limited identifiers (such as a Stripe customer ID and the last 4 digits of the card) needed to manage subscriptions and purchases.

1.2 Information Collected Automatically

  • Usage data: videos watched, watch duration, likes, comments, searches, and other interactions with the Service.
  • Device and connection data: browser type and version, operating system, device identifiers, IP address, language preference, and approximate location derived from IP address.
  • Cookies and similar technologies: session cookies for authentication, preference cookies, and analytics cookies. See our Cookie Policy for details.

1.3 Information from Third-Party Sign-In Providers (Google, Apple)

If you choose to create or sign in to a FrumTube account using a third-party identity provider such as Google or Apple, we receive a limited set of profile information from that provider. We describe each data category, how we use it, who we share it with, and how long we keep it below.

#### 1.3.1 Specific Google user data we access

When you sign in with Google, we request and access only the following Google user data, via Google's standard OpenID Connect / OAuth 2.0 scopes (openid, email, profile):

  • Your Google account's email address and whether the email is verified.
  • Your name (given name and family name as listed on your Google profile).
  • A stable Google-issued user identifier (the sub claim) used to link your sign-in across sessions.
  • Your Google profile picture URL (if you have one set).
  • Your locale / language preference (if provided by Google).

We do not request and do not access any other Google data — including but not limited to your Gmail messages, Google Drive files, Google Contacts, Google Calendar, Google Photos, YouTube account data, Search history, location history, or any Google Workspace content. We do not request offline access or refresh tokens for purposes beyond completing sign-in. If we ever need to access additional Google APIs, we will request your consent through Google's standard consent screen and update this policy before doing so.

#### 1.3.2 Specific Apple user data we access

When you sign in with Apple, we receive only:

  • Your Apple-issued user identifier (the sub claim) used to link your sign-in across sessions.
  • The email address you choose to share with FrumTube. If you select Apple's "Hide My Email" option, we receive a private relay address provided by Apple and never see your real email.
  • Your name (only on first sign-in, only if you choose to share it).

We do not access any other Apple ID data, iCloud content, contacts, messages, or device information beyond standard request metadata.

2. How We Use Your Information (Data Usage)

We use the information described above only for the following clearly stated purposes:

  • Account creation and authentication. Google/Apple profile data and password credentials are used to create your FrumTube account, sign you in, link sign-in methods, and recover your account.
  • Service operation. To host and deliver the videos, comments, and other content you and other users create; to power features such as search, recommendations, playlists, notifications, and watch history.
  • Personalization. To remember your preferences (language, theme, content filters) and to surface relevant videos and channels.
  • Communication. To send transactional messages (sign-in alerts, password resets, content moderation notices), and — only if you opt in — product updates and newsletters.
  • Safety, security, and abuse prevention. To detect, investigate, and prevent fraud, abuse, spam, copyright infringement, and security incidents; to enforce our Terms of Service and Community Guidelines.
  • Payments. To process subscriptions, premium content purchases, and creator payouts.
  • Legal compliance. To meet legal obligations, respond to lawful requests, and protect the rights, property, and safety of FrumTube, our users, and the public.
  • Improving the Service. To analyze aggregated usage trends and improve features, performance, and reliability.

We do not use Google user data for advertising, do not sell or rent it, do not use it to build user profiles for purposes unrelated to providing or improving user-facing features, and do not allow humans to read it except (a) with your explicit consent, (b) for security purposes (such as investigating abuse), (c) to comply with applicable law, or (d) where the data has been aggregated and anonymized so it is no longer identifiable. This use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.

3. Information Sharing (Data Sharing)

We do not sell your personal information, and we do not share Google user data with third parties except in the limited circumstances below:

  • With your consent. If you publicly post content (a video, comment, or community post), that content is visible to other users. If you explicitly authorize sharing with a third-party integration, we will share only the data covered by that authorization.
  • Service providers (processors) acting on our behalf. We share limited operational data with vendors that help us run the Service, under contractual obligations that restrict their use of the data to providing services to us. Current categories and providers include:

- Cloud hosting and database: DigitalOcean (United States) — hosts our servers and managed PostgreSQL database.

- Object storage and media delivery: Backblaze B2 (United States) — stores uploaded videos, thumbnails, and avatars.

- CDN and edge security: Cloudflare (United States) — fronts our web traffic, caches static assets, and helps mitigate abuse.

- Email delivery: transactional email provider for account, security, and notification emails.

- Payment processing: Stripe (United States) — processes payments. Stripe receives card details directly from your browser/app and is responsible for storing them under PCI-DSS.

- Analytics: privacy-respecting product analytics for aggregated usage metrics. We do not pass Google user data to analytics providers.

  • Identity providers. When you sign in with Google or Apple, we exchange the minimum tokens required to authenticate you with that provider.
  • Legal and safety. We may disclose information when we have a good-faith belief that doing so is required by law, legal process (such as a subpoena), or to protect the rights, property, or safety of FrumTube, our users, or the public — for example to investigate fraud, copyright complaints, threats, or violations of our Terms.
  • Business transfers. If FrumTube is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you (for example, by email and/or a prominent notice on the Service) of any change in ownership or use of your personal information.

We never share Google user data with third parties for the purpose of serving advertisements, and we do not transfer Google user data outside the cases listed above.

4. Data Storage and Protection

  • Where data is stored. Account, profile, comment, and watch-history data is stored in our PostgreSQL database hosted by DigitalOcean in the United States. Videos, thumbnails, and other media are stored in Backblaze B2 in the United States. Edge caches and DDoS protection are provided by Cloudflare.
  • Encryption in transit. All traffic between your device and FrumTube is encrypted using TLS (HTTPS). Connections between FrumTube's servers and our database, object storage, identity providers, and payment processor are also encrypted in transit.
  • Encryption at rest. Managed database storage and object storage are encrypted at rest by our cloud providers using industry-standard algorithms.
  • Credentials. Passwords are never stored in plaintext; they are hashed using bcrypt with a per-user salt. Authentication tokens are short-lived JWTs signed with a secret key stored only on our servers.
  • Access controls. Production data is accessible only to a small number of authorized personnel with a need to access it. Access is gated by SSH key authentication with fail2ban, hardened SSH configuration, role-based access controls, and audit logging.
  • Monitoring. We run automated dependency scans (pip-audit, npm audit), secret scanning, container scanning, and application-level monitoring and alerting. We follow secure-development practices for code review and deploy.
  • Incident response. If we become aware of a data breach that affects your personal information, we will notify affected users and applicable regulators as required by law.

No security measure is perfect. You can help protect your account by using a strong, unique password and enabling two-factor authentication in your account settings.

5. Data Retention and Deletion

We retain personal information only as long as needed for the purposes described in this policy or as required by law:

  • Account data is retained while your account is active.
  • Sign-in metadata from Google/Apple (the user identifier and basic profile data) is retained while you maintain a sign-in link with that provider. If you unlink the provider, the corresponding tokens and provider identifier are deleted from your account record within 30 days; we keep your FrumTube account itself unless you also delete it.
  • User content (videos, comments, playlists) is retained until you delete it or your account.
  • Logs and security data (request logs, IP addresses, abuse signals) are retained for up to 90 days, except where a longer retention is needed to investigate ongoing abuse, fraud, or legal matters.
  • Payment records are retained for at least 7 years to comply with tax and financial regulations.
  • Backups. Database backups containing your data are retained for up to 30 days after a backup is taken, after which they are overwritten.

5.1 Deleting your data

You can request deletion of your account and associated personal data at any time by:

  • Using the "Delete Account" option in your account settings (Settings → Security), or
  • Emailing [email protected] from the email address associated with your FrumTube account.

When you delete your account:

  • Your profile, profile picture, banner, and account-level settings are permanently deleted from our active systems within 30 days.
  • Videos, comments, playlists, and other user content you created are deleted or anonymized (so they are no longer linked to you).
  • Any Google/Apple sign-in linkage and associated provider identifiers are deleted.
  • Residual copies in encrypted backups are overwritten within 30 days of the backup's expiry.
  • A minimal record may be retained where required by law (for example, tax records for payments, or where we are required to preserve evidence in an investigation). This record will not be used for any other purpose.

You may also request a copy of the personal data we hold about you by emailing [email protected].

6. Your Rights and Choices

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Delete your data.
  • Restrict or object to certain processing.
  • Receive your data in a portable format.
  • Withdraw consent where we rely on consent.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at [email protected]. We will respond within the timeframe required by applicable law (typically 30 days).

Residents of California (CCPA/CPRA), the EEA / UK (GDPR), and other jurisdictions with similar laws have specific rights described above. We do not sell your personal information as defined under these laws.

7. International Data Transfers

FrumTube is operated from the United States, and your information may be processed and stored in the United States or in other countries where our service providers operate. Where required by law (for example, for transfers out of the EEA/UK), we use appropriate safeguards such as the European Commission's Standard Contractual Clauses.

8. Children's Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without verifiable parental consent, we will delete it. Parents and guardians who believe their child has provided us with personal information should contact [email protected].

9. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of the policy reflects the most recent revision. Material changes will be communicated via the Service or by email at least 14 days before they take effect. Your continued use of the Service after the effective date constitutes acceptance of the updated policy.

10. Contact Us

For privacy-related questions, requests, or complaints, contact us at:

We will respond within the timeframe required by applicable law.