TermsPrivacyCookies

Privacy Policy

Effective Date: Aug 2, 2025

At Flowgrid, we are deeply committed to protecting your privacy and the privacy of your website users. This Privacy Policy describes how we collect, use, and process your personal data and the data we collect on your behalf via our analytics service.

1. Information We Collect

Information You Provide Us (Account Data)

When you create an account, we collect personal data such as your name, email address, company name, and billing details. This information is used for account management, billing, and communication.

Data Collected on Your Website (Usage Data)

Our analytics script, when installed on your website, collects non-personally identifiable usage data from your visitors. This may include:

  • Page visits, interactions, and events (e.g., clicks, scrolls)
  • Visitor identifiers (anonymized unique IDs)
  • Anonymized IP addresses (where possible, we anonymize IP addresses before storage)
  • Browser type, operating system, and device information
  • Referral sources and entry/exit pages
  • Approximate geographic location (country, region, city - coordinates are truncated for privacy)

Important: We do not collect personal data like names or email addresses from your visitors unless you explicitly configure the script to send us that information.

Advertising Platform Click Identifiers

When conversion tracking is enabled, our script may collect advertising platform click identifiers to help you understand which advertising campaigns are driving conversions. These identifiers are only collected with your visitors' explicit consent and include:

  • gclid - Google Ads Click Identifier
  • fbclid - Facebook/Meta Click Identifier
  • ttclid - TikTok Click Identifier
  • msclkid - Microsoft Advertising Click Identifier
  • twclid - Twitter/X Click Identifier
  • dclid - DoubleClick Click Identifier
  • li_fat_id - LinkedIn First-Party Ad Tracking Identifier

These identifiers are used solely for attribution purposes and are never shared with third parties or used for cross-site tracking beyond your own analytics.

2. How We Use Your Information

  • To Provide the Service: We use your account data to deliver and maintain our service, and the usage data collected on your behalf is used to generate the analytics reports you see in your dashboard.
  • To Improve Our Service: We analyze anonymized usage data to understand how our own platform is used, helping us to improve features and user experience.
  • For Billing and Communication: We use your account information to manage your subscription, process payments, and send you important service-related updates.
  • For Security and Compliance: We use data to monitor for and prevent fraudulent activity, ensure platform security, and comply with legal obligations.

3. Information Sharing

We do not sell any personal data to third parties. We may share data with trusted third-party service providers who assist us in operating our business, such as payment processors, hosting providers, and customer support tools. These providers are bound by strict confidentiality agreements and are only permitted to use the data to perform services on our behalf.

4. Cookies and Tracking

We use cookies and similar technologies (e.g., local storage) to enhance your experience on our platform, manage your sessions, and perform our own internal analytics. When our script is deployed on your website, it may also use cookies and other identifiers to collect data on your behalf, enabling the analytics features. As a user, you are responsible for ensuring you have a clear Cookie Policy and that you obtain consent from your visitors as required by law.

5. Your Data Rights

Depending on your location and applicable law (such as GDPR), you may have the right to:

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Ask us to correct any inaccurate or incomplete data we have.
  • Right to Erasure: Request the deletion of your personal data under certain conditions.
  • Right to Object: Object to the processing of your personal data.
  • Right to Portability: Request that we transfer your data to another organization or directly to you.

6. Data Retention

We will retain your personal data for as long as your account is active and for a reasonable period thereafter to comply with our legal obligations, resolve disputes, and enforce our agreements.

Analytics Data Retention: By default, visitor analytics data collected via our script is automatically purged after 30 days. This includes page visits, click events, form submissions, and conversion data. This automated purge helps ensure compliance with data minimization principles under GDPR.

Enterprise customers may configure custom retention periods based on their specific compliance requirements.

7. Security Measures

We employ a variety of technical and organizational security measures to protect your data from unauthorized access, use, or disclosure. This includes data encryption, access controls, secure hosting environments, and regular security audits. While we strive to protect your data, no method of transmission over the internet is 100% secure.

8. International Data Transfers

Your information may be transferred to and maintained on computers located outside of your country or other governmental jurisdiction where the data protection laws may differ. We will take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through a prominent notice on our website before the changes take effect. Your continued use of the service after any such changes constitutes your acceptance of the new Privacy Policy.

Last updated: Aug 2, 2025. If you have any questions about this Privacy Policy, please contact ToastLabz at info@toastlabz.com.

Terms of ServicePrivacy PolicyCookie Policy