Privacy Policy
Your data matters to us. Learn how we collect, use, and protect your information.
Table of Contents
1. Data Controller
The data controller responsible for processing your personal data is:
- Flowra
- Email: contact@flowra.io
2. Data We Collect
We collect the following categories of data:
- Identity data: full name, email address, phone number.
- Professional data: company name, industry, job title, ERP or data source type.
- Business data: transaction history, product catalogs, purchase orders, and sales records you connect to Flowra for analysis.
- Usage data: login logs, features accessed, and actions performed within the platform.
- Communication data: messages you send us via the contact or demo request forms.
3. Purposes of Processing
Your data is processed to:
- Deliver and continuously improve the Flowra platform and analysis engine
- Manage your account and subscription
- Generate inventory risk scores, demand forecasts, and client intelligence reports
- Send transactional notifications and service alerts
- Provide technical support and onboarding assistance
- Ensure the security and integrity of the platform
- Comply with our legal and regulatory obligations
4. Legal Basis
Processing of your data is based on:
- Contract performance: to deliver the services you have subscribed to.
- Consent: for marketing communications and non-essential cookies.
- Legitimate interest: to improve our platform and ensure security.
- Legal obligation: to comply with applicable regulations.
5. Data Retention
Data is retained only for as long as necessary for the purposes for which it was collected:
- Account data: duration of the subscription + 3 years
- Billing and invoices: 10 years (statutory requirement)
- Business data (ERP / transaction history): duration of the contract
- Analysis cache: 90 rolling days
- Technical logs: 12 months
6. Data Sharing
Flowra never sells your data. It may be shared with:
- Our technical service providers (hosting, transactional email) under strict data processing agreements
- Competent authorities when required by applicable law
All sub-processors are located in the European Union or offer adequate guarantees under GDPR. Your business data is never used to train models or generate analysis for other clients.
7. Security
Flowra implements appropriate technical and organizational measures to protect your data against unauthorized access, loss, or destruction, including:
- TLS encryption for all data in transit
- Encryption of data at rest
- Automated daily backups with tested recovery procedures
- Strict role-based access controls
- Hosting on certified European servers
8. Your Rights (GDPR)
Under the General Data Protection Regulation, you have the following rights:
👁 Access
Obtain a copy of the personal data we hold about you
✎ Rectification
Correct inaccurate or incomplete data
🗑 Erasure
Request deletion of your personal data
⛔ Objection
Object to certain types of processing
⏸ Restriction
Limit how your data is processed
💾 Portability
Receive your data in a machine-readable format
To exercise your rights, email us at contact@flowra.io. You may also lodge a complaint with your national data protection authority.
9. Cookies
Our website uses essential cookies (session management, language preferences) and analytics cookies (audience measurement) to improve the experience. You can manage your preferences at any time via your browser settings.
10. Contact
For any questions about this policy or to exercise your rights:
- Email: contact@flowra.io
We will respond to all data rights requests within 30 days.