Privacy Policy

Effective Date: April 4, 2026

Last Updated: April 4, 2026

Welcome To Vrah.

Vrah ("we," "our," or "us") is committed to protecting your privacy and ensuring transparency in how we collect, use, and safeguard your information. This Privacy Policy explains how we handle your data when you use our website, platform, and services.

By using Vrah, you agree to the practices described in this policy.

1. Who We Are

Vrah is an AI-powered product structuring platform that helps users transform ideas into structured Product Requirement Documents (PRDs), sitemaps, wireframes, design systems, interactive prototypes, and production-ready outputs.

2. Information We Collect

Vrah is an AI-powered product structuring platform that helps users transform ideas into structured Product Requirement Documents (PRDs), sitemaps, wireframes, design systems, interactive prototypes, and production-ready outputs.

We collect information to provide and improve our services.

A. Account Information

When you create an account, we may collect:

  • Full name
  • Email address
  • Password (encrypted)
  • Company name (optional)
  • Billing information (if applicable)

B. Product & Workspace Data

When you use Vrah, we may process:

  • Product descriptions and idea inputs
  • Answers to AI-driven questions
  • PRD content
  • Sitemap structures
  • Wireframes and UI layouts
  • Design system configurations
  • Comments and collaboration data
  • Export preferences (Figma, code, prototype)

This data is used solely to generate structured outputs and enhance your workspace experience.

C. Payment Information

If you subscribe to a paid plan:

  • Billing address
  • Payment method details

Payments are processed securely via third-party providers (e.g., Razorpay or Stripe). We do not store your full payment details.

D. Usage & Technical Data

We may collect:

  • Device information
  • Browser type
  • IP address
  • Usage analytics
  • Interaction logs
  • Feature usage patterns

This helps us improve performance, reliability, and product quality.

3. How We Use Your Information

We use your data to:

  • Generate structured PRDs and UI outputs
  • Provide interactive prototypes
  • Enable Figma and code exports
  • Improve AI-generated suggestions
  • Enhance product performance and accuracy
  • Process payments and manage subscriptions
  • Provide customer support
  • Prevent fraud and abuse
  • Improve security and reliability

We do not sell your personal or workspace data.

4. AI Processing & Generated Content

Vrah uses AI models to:

  • Analyze user inputs
  • Suggest improvements
  • Generate structured documentation
  • Create UI layouts and exports

Your workspace content is processed to generate outputs. We do not use your private project data for public training without explicit consent.

Deep PRD generation (backend-level structured outputs) may process enhanced structured data internally but remains protected and not publicly visible.

5. Data Storage & Security

We implement industry-standard security practices, including:

  • Encrypted data transmission (HTTPS)
  • Secure server environments
  • Role-based access controls
  • Limited internal access to sensitive information

We strive to protect your data but cannot guarantee absolute security.

6. Data Retention

We retain your information:

  • As long as your account is active
  • As necessary to provide services
  • To comply with legal obligations

If you delete your account, we will remove or anonymize your data unless required for compliance or legal reasons.

7. Sharing Of Information

We do not sell or rent your personal data.

We may share information only with:

  • Payment processors
  • Cloud hosting providers
  • Analytics services
  • Legal authorities (if legally required)

All third-party partners are required to maintain data protection standards.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your data
  • Correct inaccurate data
  • Request deletion
  • Restrict processing
  • Export your data
  • Withdraw consent
To exercise your rights, contact us at: support@vrah.ai

9. Cookies & Tracking

We use cookies and similar technologies to:

  • Maintain login sessions
  • Improve performance
  • Analyze usage trends
  • Enhance user experience

You may control cookies via your browser settings.

10. International Users

If you access Vrah from outside our operating country, your data may be transferred and processed in accordance with this policy.

11. Children's Privacy

Vrah is not intended for users under 18 years of age. We do not knowingly collect personal data from minors.

12. Changes To This Policy

We may update this Privacy Policy from time to time.

Any changes will be posted on this page with an updated revision date.

Continued use of the platform constitutes acceptance of the revised policy.

13. Vrah Sync Services for Figma

At Vrah.ai, we believe that design privacy is a fundamental right. Our "Export to Figma" technology is built on a Privacy-by-Design architecture, ensuring that your creative assets are never permanently stored, never sold, and always protected.

A. The "Zero-Persistence" Principle

The Vrah Figma Plugin is a transient synchronization tool. We operate under a Zero-Persistence policy, meaning we do not maintain a permanent database of your design content. Our system acts solely as a secure "hand-off" bridge between your Vrah AI workspace and your Figma canvas.

B. Data Handled & Processing Intent

To facilitate a high-fidelity design import, we process the following data points:

  • Encrypted Synchronization Codes: We utilize 6-digit alphanumeric tokens to authorize the secure tunnel between Vrah.ai and Figma. These tokens are anonymous and contain no user identity data.
  • Ephemeral Design Metadata: We transmit the structural properties required to rebuild your layout (layer dimensions, CSS attributes, and text strings). This data is processed in real-time and is strictly limited to the specific design you have initiated for export.
  • Visual Asset Routing: Images and vector assets generated by our AI are routed through secure channels to your Figma instance. Vrah does not store copies of these assets beyond the active synchronization window.

C. Industry-Leading Security Measures

We protect your design intellectual property using a multi-layered security stack:

  • Cryptographic Security: All data in transit is encrypted using TLS 1.3 (SSL) protocols, the highest standard for web communication.
  • Timed Expiry (1-Hour Window): Every synchronization session is hard-coded to expire. According to our security protocols, all design data and sync codes are automatically and permanently purged from our infrastructure after 60 minutes, regardless of import status.
  • No Persistent Access: Vrah does not require, nor can it ever request, access to your broader Figma account, your team folders, or any files other than the one currently active during the import process.

D. Ownership & Third-Party Disclosure

  • 100% Ownership: You retain full intellectual property rights over all designs generated on Vrah.ai and imported into Figma.
  • No Third-Party Sharing: Vrah does not sell, rent, or distribute your design data to third-party advertisers, AI-training datasets (without explicit consent), or data brokers.

E. Regulatory Compliance

This policy is designed to meet and exceed global privacy standards, including GDPR (Europe) and CCPA (California), alongside strict adherence to Figma’s Community Developer Terms.

14. Contact Us

If you have questions about this Privacy Policy or your data, contact:

Vrah Support

Email: support@vrah.ai