Introduction
AutoFlow ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (autoflow.llc) and our AI-powered chat agent services (collectively, the "Services").
Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Services.
Information We Collect
Personal Information
We may collect the following types of personal information:
Contact Info
Name, email address, phone number, business name, business address
Account Credentials
Username, password, authentication tokens
Payment Information
Billing address, payment card details (processed by third-party processors)
Business Information
Services offered, pricing, operating hours, booking systems, website URL
Customer Lead Data
Names, contact information, and inquiries collected by your AI chat agent
Auto-Collected Data
IP address, browser type, device info, access times, cookies, analytics
Information from Third Parties
We may receive information from authentication providers (Clerk), payment processors (Stripe), analytics providers, and business partners you authorize.
How We Use Your Information
- Service Delivery — To provide, maintain, and improve our AI chat agent services
- Account Management — To create and manage your account, process payments
- Communication — To communicate about your account, support requests, and updates
- Customization — To customize AI agent responses based on your business information
- Lead Management — To collect, store, and deliver customer leads to you
- Analytics — To analyze usage patterns and improve service performance
- Security — To detect, prevent, and address fraud, abuse, and security threats
- AI Improvement — We may use anonymized aggregated data to improve our AI models. This data cannot identify you or your customers.
Data Sharing and Disclosure
We May Share Information With
- Service providers who provide hosting, AI processing, and payment services on our behalf
- Third-party platforms you authorize for integration (booking, CRM, messaging)
- Professional advisors including lawyers and accountants
- Legal authorities as required by law
- Business transfer parties in connection with mergers or acquisitions
We Do NOT — Sell your personal information to third parties. Share your customer lead data with other clients. Use your data for advertising without consent.
Third-Party Service Providers
We use the following third-party services which may have access to your data:
- Stammer AI — AI chatbot platform, provides AI processing and chat functionality
- Supabase — Database services, stores client configurations and lead data
- Clerk — Authentication services, manages user authentication
- Stripe — Payment processing, handles billing transactions
- Google Workspace — Email services, delivers lead notifications
- Cal.com — Appointment scheduling and calendar integration
Each third party's data practices are governed by their own privacy policies.
Data Security
We implement industry-standard security measures including:
- Encryption of data in transit and at rest
- Access controls and authentication requirements
- Regular security audits and testing
- Employee training on data protection
- Incident response procedures
However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
Data Retention
We retain personal information as long as your account is active, needed to provide services, required by legal obligations, or necessary for legitimate business purposes. Customer lead data is retained for as long as your account is active unless you request deletion.
Your Rights
You have the following rights regarding your personal information:
- Access — Request a copy of personal data we hold about you
- Correction — Request correction of inaccurate personal data
- Deletion — Request deletion of your personal data (subject to legal requirements)
- Portability — Request your data in a portable, machine-readable format
- Opt-Out — Opt-out of marketing communications at any time
- Restriction — Request restriction of processing
To exercise these rights, contact us at info@autoflow.llc.
Cookies and Tracking
We use cookies and similar tracking technologies to authenticate users, remember preferences, analyze traffic, and improve our services. You can control cookies through your browser settings. We also respect Global Privacy Control (GPC) and Do Not Sell signals where required by law.
Children's Privacy
Our Services are not intended for individuals under 13 years of age. We do not knowingly collect information from children. If we become aware of such collection, we will delete it promptly.
International Data Transfers
Your information may be transferred to and processed in the United States and other countries. We use appropriate safeguards to protect your data during these transfers.
Data Breach Notification
In the event of a data breach affecting your personal information, we will investigate promptly, notify affected individuals within 72 hours where required, take remedial measures, and report to relevant authorities as required.
Your Customers' Data
Important — If you use our Services to collect data from your own customers, you are responsible for obtaining necessary consents, providing adequate privacy notices, responding to data subject requests, complying with applicable privacy laws (GDPR, CCPA, etc.), and using the data only for disclosed purposes.
AI and Automated Processing
Our Services use artificial intelligence and machine learning to generate chatbot responses, understand customer inquiries, improve response accuracy over time, and categorize and route leads. AI decisions may not always be accurate. You are responsible for reviewing AI configurations and outputs.
Marketing Communications
We may send you marketing communications about our Services. You can opt-out at any time by clicking "unsubscribe" in emails, contacting us at info@autoflow.llc, or updating your account preferences.
Regulatory Compliance
We take steps to comply with applicable data protection laws including GDPR for EU users, CCPA for California residents, and other applicable state and federal privacy laws. For privacy-related inquiries, contact us at info@autoflow.llc.
Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via email or website notice. Your continued use after changes constitutes acceptance of the updated policy.