Privacy Policy

Last updated: 12 May 2026

FrontRows is built on a simple principle: you own your audience and your data. We collect only what we need to run the service, we never sell your data, and we never earn from what your members pay you.

1. Who we are

FrontRows is operated by FRWS OÜ, a private limited company registered in Estonia. Our product, FrontRows, is an access control layer for content creators that connects payment sources such as Stripe and Patreon to platforms such as Discord, Ghost, Kit, Transistor, and Youtuber.

When we say “FrontRows”, “we”, “us”, or “our” in this policy, we mean FRWS OÜ.

2. Who this policy covers

This policy applies to two groups of people:

• Creators — people who sign up for a FrontRows account to manage their membership business.
• Members — people who join a creator’s membership tier through a FrontRows-powered join link.

3. What data we collect and why

Creators

When you create a FrontRows account we collect:

• Your email address — to identify your account and send you service emails.
• Your name — to personalise your account and communications.
• Authentication credentials — either a password (stored as a secure hash, never in plain text) or a Google OAuth token if you choose to sign in with Google.
• Your connected platform credentials — API keys and tokens for the platforms you connect to FrontRows (Stripe, Discord, Ghost, Kit, Transistor, YouTube). These are stored encrypted and used only to perform the integrations you have configured.

Members

When someone joins a creator’s membership tier through FrontRows we collect:

• Their email address — to deliver access confirmations, receipts, and membership-related communications on behalf of the creator.

We do not collect member payment card details. All payment processing is handled directly by Stripe. FrontRows receives payment event notifications from Stripe but never sees or stores card numbers, CVV codes, or bank account details.

4. How we use your data

We use the data we collect to:

• Operate the FrontRows service — managing membership events, granting and revoking platform access, and sending transactional emails.
• Communicate with creators about their account, billing, and service updates.
• Send members access confirmation emails and receipts on behalf of the creator they have joined.
• Improve the product — we use aggregated, anonymised usage data to understand how the service is used. This data cannot be used to identify individuals.

We do not use your data for advertising. We do not sell your data to third parties. We do not use your data for any purpose beyond operating and improving the FrontRows service.

5. Google sign-in

Creators can optionally sign into FrontRows using their Google account. When you do this, Google shares your email address and basic profile information with us. We use this only to create or identify your FrontRows account. We do not access your Google Drive, Gmail, calendar, or any other Google services beyond basic authentication. You can revoke FrontRows' access to your Google account at any time through your Google account security settings.

6. YouTube Data API

When a creator connects their YouTube channel to FrontRows, we access their YouTube account data via the YouTube Data API. Specifically:

• We use the youtube.readonly scope to fetch the creator's video list and channel metadata so we can grant members entitlements to specific unlisted videos. We read video titles, thumbnails, and URLs only — we do not modify, upload, delete, or publish any content on the creator's behalf.
• We use the userinfo.email and userinfo.profile scopes to identify the creator's Google account when they connect their YouTube channel.

YouTube data accessed via the YouTube Data API is used solely to operate the FrontRows video entitlement feature. We do not transfer this data to third parties for any purpose. Channel metadata and video information fetched from YouTube is retained only for as long as the creator's YouTube channel remains connected to FrontRows. When a creator disconnects their YouTube channel, all associated YouTube data is deleted from FrontRows within 30 days.

Our use of data obtained via the YouTube Data API complies with the Google API Services User Data Policy, including the Limited Use requirements.

7. Analytics

We use Google Analytics to understand how visitors use the FrontRows website. Google Analytics collects information such as pages visited, time spent on the site, and general geographic location (at country level). This data is anonymised and aggregated — it does not identify you personally. You can opt out of Google Analytics tracking by using the Google Analytics opt-out browser add-on.

8. Third-party platforms

FrontRows integrates with third-party platforms on your behalf. When you connect a platform to FrontRows, we interact with that platform’s API using credentials you provide. Each platform has its own privacy policy:

• Stripe — stripe.com/privacy
• Discord — discord.com/privacy
• Ghost — ghost.org/privacy
• Kit (ConvertKit) — kit.com/privacy-policy
• Transistor — transistor.fm/privacy

9. Data storage and security

FrontRows stores data on servers located within the European Economic Area. All data is transmitted over encrypted connections (HTTPS/TLS). Platform credentials and API keys are stored encrypted at rest. We apply appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure.

10. Data retention

We retain creator account data for as long as your account is active. If you close your account, we delete your personal data within 30 days, except where we are required to retain it for legal or accounting purposes (for example, billing records which Estonian law requires us to retain for seven years).

Member email addresses are retained for as long as the membership relationship is active. When a member cancels and their access is fully revoked, their email address is deleted from FrontRows within 30 days unless the creator has a legitimate reason to retain it (for example, for their own email marketing, which the member has separately consented to).

11. Your rights under GDPR

As FrontRows is registered in Estonia, we operate under the General Data Protection Regulation (GDPR). You have the following rights regarding your personal data:

• Access — you can request a copy of the personal data we hold about you.
• Correction — you can ask us to correct inaccurate data.
• Deletion — you can ask us to delete your personal data, subject to any legal retention obligations.
• Portability — you can request your data in a structured, machine-readable format.
• Objection — you can object to how we process your data in certain circumstances.
• Withdrawal of consent — where we rely on your consent to process data, you can withdraw that consent at any time.

To exercise any of these rights, contact us at the address below. We will respond within 30 days. You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (aki.ee) if you believe we have handled your data incorrectly.

12. Cookies

FrontRows uses cookies to keep you signed into your account and to collect anonymised analytics data via Google Analytics. We do not use advertising cookies or tracking pixels. You can control cookies through your browser settings. Disabling cookies may prevent you from staying signed into your FrontRows account.

13. Changes to this policy

We may update this policy from time to time. If we make significant changes we will notify creators by email and update the "Last updated" date at the top of this page. Continued use of FrontRows after changes are published constitutes acceptance of the updated policy.

14. Contact

If you have any questions about this privacy policy or how we handle your data, please contact us:

FRWS OÜ

Email: [email protected]

Website: frontrows.com

Registered in Estonia