Privacy Policy

Last updated: May 26, 2026

Effective: May 26, 2026

Introduction

StillFrame is a free iOS app made by Stanislau Kuryan. It lets you import a video from your photo library, scrub to the exact moment you want, and save or share that single still frame. You pick videos through Apple's system picker, so the app never needs full access to your photo library.

This release adds something earlier versions of StillFrame did not have: advertising and analytics. To keep the app free, we now show ads from Google AdMob and use an analytics service called Amply to understand how the app is used. As a result, StillFrame now makes network connections and shares some data with these providers. This policy explains exactly what is collected, by whom, why, and what control you have. Older versions of this policy described the app as fully offline with no data collection — that is no longer accurate as of this release, and this document replaces it.

One thing has not changed: your actual content stays with you. The videos you import and the frames you extract are stored locally in the app's private space on your device and are never uploaded to any server.

This policy covers the StillFrame app (bundle ID com.stafox.framegrabber, App Store ID 6759562502) and this website at https://stillframe.stafox.com.

Information We Collect

We group what we — and the third parties working on our behalf — collect into five categories, aligned with Apple's App Store privacy labels.

1. Device identifiers

  • IDFA (Identifier for Advertisers): collected only if you grant permission through Apple's App Tracking Transparency (ATT) prompt. Google AdMob uses it to show you more relevant ads. If you decline, no IDFA is shared and ads are non-personalized.
  • IDFV (Identifier for Vendor): always available. It is scoped to our apps only and is not linked to you across other developers' apps. It helps distinguish your install for ad delivery and analytics.

2. Device and technical data

  • Device model (e.g. iPhone15,2), iOS version, app version, and your language, locale, and country as derived from device settings (not GPS).
  • This is sent by both Amply and AdMob.

3. Usage and product interaction

  • Analytics events about how you use the app — such as app launches, screens viewed, buttons tapped, frames captured, saved, or shared, ad impressions, and your tracking and consent decisions.
  • Non-identifying details attached to those events, such as the chosen aspect ratio, image quality, and file type, basic ad information (creative and duration), and your consent state.
  • This is sent to Amply, which generates a session identifier to group your events.

4. Advertising data

  • Ad impression, click, and completion signals generated when an ad is requested and shown.
  • This is sent to Google AdMob.

5. Consent state

  • Your privacy choices — your ATT decision and IAB-TCF consent string — are stored on your device, and your choices are shared with Amply so campaigns respect them.

What we do not collect

  • No name, email, or phone number — StillFrame has no account or sign-up.
  • No precise location — we never request location permission.
  • No health, financial, or contacts data, and no photos beyond the single frames you explicitly choose to save.
  • No videos, frames, or file names. Your media stays on device. (An earlier build sent a video_name field alongside analytics events; that field has been removed and is not present in this release.)

How We Use Information

We use the data above to:

  • Show ads. Around frame export (Save / Share) we may show a rewarded interstitial ad from AdMob. Ads are how the free version of StillFrame is funded.
  • Tailor ad relevance based on your ATT and consent choices — personalized when you allow it, generic when you don't.
  • Measure ad performance, such as impressions and completions.
  • Understand product usage through analytics, so we can fix problems and improve the app.
  • Time in-app messages. Amply dispatches campaign deeplinks that control when prompts appear — for example the timing of the ATT prompt and the GDPR consent prompt.
  • Meet our legal obligations to collect, store, and honor your consent signals (ATT and IAB-TCF).

We do not sell your media, and we do not use your data to build profiles outside of the advertising and analytics described here.

Third-Party Services

Three SDKs in StillFrame connect to outside services. Each is described below with a link to its own privacy information.

Google AdMob (Google Mobile Ads SDK)

Serves the ads. Operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. AdMob may collect device identifiers and ad-interaction data and, with your ATT consent, your IDFA to personalize ads. See Google's ad privacy information and AdMob's data disclosures.

Google User Messaging Platform (UMP)

Collects and stores your advertising consent under the IAB Transparency & Consent Framework (TCF v2.2) in regulated regions such as the EEA and the UK. UMP presents a consent form managed through Google's certified Consent Management Platform, which lists the advertising partners that may process your data; you can accept all, reject all, or manage each purpose individually. Your choices are saved as an IAB-TCF string on your device and read by AdMob on each ad request. Operated by Google LLC. See Google's ad privacy information.

Amply

Our analytics and in-app messaging service. We send Amply the usage, device, and consent data described above so we can understand how StillFrame is used; we never send it your videos, frames, or file names. How Amply handles that data is covered by Amply's privacy policy.

Your Privacy Choices

You stay in control of the tracking and advertising data:

  • App Tracking Transparency. When it first becomes relevant, StillFrame asks permission to track. You can change this any time: iOS Settings → Privacy & Security → Tracking → toggle StillFrame off (or on). With it off, no IDFA is shared and ads are non-personalized.
  • Reset your advertising identifier. iOS Settings → Privacy & Security → Apple Advertising → Reset Advertising Identifier.
  • Withdraw GDPR / UMP consent. We are building an in-app "Manage Privacy Choices" shortcut that re-opens the consent form; it is not yet available in this release. In the meantime, email [email protected] and we will re-present the form or process your request. Reinstalling the app also clears the stored consent.
  • Request access or deletion. Email [email protected] (see the GDPR and California sections below).

EEA / UK Users (GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, this section applies to you.

  • Controller. Stanislau Kuryan ([email protected]) is the data controller for StillFrame. Google and Amply process data on our behalf; Google AdMob also acts as an independent controller for ad-personalization data under its own terms.
  • Legal bases. Consent (Art. 6(1)(a)) for advertising identifiers, personalized ads, and analytics where consent is required — collected through the UMP / IAB-TCF form and the ATT prompt. Legitimate interests (Art. 6(1)(f)) for basic non-personalized functionality, security, and aggregate measurement where permitted. Legal obligation (Art. 6(1)(c)) for honoring your consent signals.
  • Recipients. Google LLC and Amply (see Third-Party Services).
  • Retention. See Data Retention below.
  • Your rights (Arts. 15–22): access, rectification, erasure, restriction, portability, and objection, plus the right to withdraw consent at any time. Because StillFrame has no user account, the data we can act on is the local data on your device plus the analytics events tied to your Amply session identifier. Email [email protected] to exercise these rights.
  • Complaints. You may lodge a complaint with your local data protection supervisory authority.

California Residents (CCPA / CPRA)

If you are a California resident, this section applies to you.

  • Categories of personal information collected: identifiers (IDFA, IDFV); internet and device activity (device data and app-usage analytics); and commercial / advertising information (ad interactions). We do not collect names, contact details, precise geolocation, or sensitive personal information.
  • Sources: directly from your use of the app, and from the AdMob, UMP, and Amply SDKs.
  • Purposes: advertising, analytics, app functionality, and legal compliance, as described above.
  • Your right to opt out of sale / sharing: We do not sell your personal information for money, but sharing advertising identifiers with AdMob for personalized ads counts as a "sale" or "share" under the CCPA/CPRA, and you can opt out. Use the App Tracking Transparency control or the consent form described under Your Privacy Choices above — either one switches you to non-personalized ads. We also honor Global Privacy Control signals where they apply, and you can email [email protected] to opt out.
  • No discrimination: we will not treat you differently for exercising your privacy rights.

International Data Transfers

Google and Amply may process your data in countries other than your own, including the United States. For users in the EEA, the UK, and Switzerland, these transfers rely on Standard Contractual Clauses (SCCs) maintained by each vendor. See Google's controller terms and data-transfer framework.

Data Security

Data sent to AdMob and Amply travels over encrypted HTTPS / TLS connections. Your videos, extracted frames, and saved files stay in the app's private sandbox on your device, protected by iOS. We recommend keeping your device software up to date and using a passcode. No method of transmission or storage is completely secure, but we use industry-standard protections.

Children's Privacy

StillFrame is not directed at children under 13, and we do not knowingly collect personal information from them. The ad units are not flagged as child-directed in AdMob (no Tag for Child-Directed Treatment is set). If you believe a child has provided us with data, contact [email protected] and we will delete it. If we ever target a younger audience, we will add the appropriate COPPA disclosures.

Data Retention

  • Local app data (saved frames, settings): kept until you delete it or uninstall the app.
  • Consent state (the IAB-TCF string on your device): kept until you reset it in iOS Settings or the app resets it.
  • AdMob advertising data: retained per Google's policies — see Google's ad privacy information and AdMob's data disclosures.
  • Amply analytics data: retained per Amply's privacy policy.

Changes to This Privacy Policy

We may update this privacy policy from time to time. Thus, you are advised to review this page periodically for any changes. We will notify you of any changes by posting the new privacy policy on this page. These changes are effective immediately after they are posted on this page. For material changes — such as adding a new SDK or a new category of data — we aim to flag the update in-app the next time you launch StillFrame.

Contact Us

If you have any questions or suggestions about this privacy policy, or you want to exercise your privacy rights, contact us at [email protected].