1. Introduction
This Privacy Policy explains how Vrah ("we", "our") collects, uses, and protects your information when you use our platform.
2. Information We Collect
We collect account details (name, email), usage data (device, browser, activity logs), content you provide, and limited analytics. If you use paid features, we process billing data via trusted processors.
3. How We Use Information
We use data to operate and improve the product, provide support, personalize experiences, secure the platform, and comply with legal obligations. AI outputs may leverage anonymized or aggregated signals to enhance quality.
5. Data Security
We apply industry-standard security controls. No method is perfectly secure; promptly report any suspected issues to security@vrah.ai.
6. Data Retention
We retain data while your account is active and as needed for legal or operational purposes. You may request deletion of your account data, subject to lawful requirements.
7. Vrah Sync Services for Figma
Last Updated: January 2026. At Vrah.ai, we believe that design privacy is a fundamental right. Our 'Export to Figma' technology is built on a Privacy-by-Design architecture, ensuring that your creative assets are never permanently stored, never sold, and always protected.
The Zero-Persistence Principle
- •The Vrah Figma Plugin is a transient synchronization tool.
- •We operate under a Zero-Persistence policy, meaning we do not maintain a permanent database of your design content.
- •Our system acts solely as a secure 'hand-off' bridge between your Vrah AI workspace and your Figma canvas.
Data Handled & Processing Intent
- •Encrypted Synchronization Codes: 6-digit alphanumeric tokens that are anonymous and contain no user identity data.
- •Ephemeral Design Metadata: Structural properties required to rebuild your layout, processed in real-time and limited to the specific design you initiated for export.
- •Visual Asset Routing: Images and vector assets routed through secure channels, with Vrah not storing copies beyond the active synchronization window.
Industry-Leading Security Measures
- •Cryptographic Security: All data in transit is encrypted using TLS 1.3 (SSL) protocols, the highest standard for web communication.
- •Timed Expiry: Every synchronization session expires after 60 minutes, with all design data and sync codes automatically and permanently purged from our infrastructure.
- •No Persistent Access: Vrah does not require, nor can it request, access to your broader Figma account, team folders, or any files other than the one currently active during the import process.
Ownership & Third-Party Disclosure
- •You retain full intellectual property rights over all designs generated on Vrah.ai and imported into Figma.
- •Vrah does not sell, rent, or distribute your design data to third-party advertisers, AI-training datasets (without explicit consent), or data brokers.
Regulatory Compliance
- •This policy is designed to meet and exceed global privacy standards, including GDPR (Europe) and CCPA (California).
- •Strict adherence to Figma's Community Developer Terms.
8. Your Choices
You can update profile info, manage email preferences, and request data export or deletion. Opting out of essential emails may impact service delivery.
10. International Transfers
Data may be processed in regions where our subprocessors operate. We use appropriate safeguards for cross-border transfers where required.
11. Children
The service is not intended for users under the age of 16. If you believe a child has provided data, contact us to remove it.
12. Changes
We may update this Privacy Policy. Material changes will be communicated; continued use after updates signifies acceptance.
13. Contact
Questions or requests? Contact privacy@vrah.ai or support@vrah.ai.
Have Questions?
For privacy requests: privacy@vrah.ai
For general support: support@vrah.ai
For security inquiries: Data Protection Officer