Privacy Policy

At Pubflow, Inc. ("Pubflow," "we," "us," or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

We collect information that you provide directly to us, including:

• Account Information: Name, email address, company name, and password
• Profile Information: Job title, phone number, and other profile details you choose to provide
• Payment Information: Processed securely through Stripe (we do not store complete credit card details)
• Communication Data: Information you provide when you contact us for support or feedback

When you use our Services, we automatically collect:

• Usage Data: Pages visited, features used, time spent, and interaction patterns
• Device Information: IP address, browser type, operating system, and device identifiers
• Log Data: Server logs, error reports, and performance metrics
• Cookies: Small data files stored on your device (see our Cookie Policy below)

We may receive information from:

• Authentication Providers: If you sign in using OAuth (Google, GitHub, etc.)
• Payment Processors: Transaction data from Stripe
• Analytics Services: Aggregated usage statistics

We use the information we collect to:

• Provide Services: Create and manage your account, process transactions, and deliver features
• Improve Services: Analyze usage patterns, fix bugs, and develop new features
• Communicate: Send service updates, security alerts, and respond to inquiries
• Security: Detect fraud, prevent abuse, and protect against security threats
• Compliance: Meet legal obligations and enforce our Terms of Service
• Marketing: Send promotional communications (you can opt out anytime)

We may share your information with:

Service Providers

Third-party vendors who perform services on our behalf, including:

• Stripe for payment processing
• Cloud hosting providers (AWS, Google Cloud, etc.)
• Analytics services
• Email service providers

Legal Requirements

We may disclose information if required by law, court order, or governmental request, or to protect our rights and safety.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

We implement industry-standard security measures to protect your information:

• Encryption: Data in transit (TLS/SSL) and at rest (AES-256)
• Authentication: Secure password hashing with Argon2id
• Access Controls: Role-based permissions and least-privilege principles
• Monitoring: 24/7 security monitoring and incident response
• Audits: Regular security assessments and penetration testing

While we strive to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

• Active Accounts: Data retained while your account is active
• Closed Accounts: Some data may be retained for up to 90 days after account closure
• Legal Requirements: Certain records kept longer to meet compliance obligations
• Backup Systems: Data in backups deleted according to our backup retention schedule

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal information
• Portability: Receive your data in a machine-readable format
• Opt-Out: Unsubscribe from marketing communications
• Object: Object to certain processing of your information

To exercise these rights, contact us at privacy@pubflow.com. We will respond within 30 days.

We use cookies and similar tracking technologies to:

• Essential Cookies: Required for authentication and security
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Understand how you use our Services
• Marketing Cookies: Deliver relevant advertisements (optional)

You can control cookies through your browser settings. Disabling essential cookies may affect functionality.

Pubflow is based in the United States. If you access our Services from outside the U.S., your information may be transferred to, stored, and processed in the United States and other countries.

We implement appropriate safeguards for international transfers, including standard contractual clauses approved by regulatory authorities.

Our Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

• Posting the new policy on this page
• Updating the "Last updated" date
• Sending an email notification for material changes

Your continued use of the Services after changes constitutes acceptance of the updated policy.