Privacy Policy

ProductFlow AI ("we," "our," or "us") is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and purchase our digital products and services. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site.

1. Information We Collect

Personal Information You Provide

We collect personal information that you voluntarily provide when you register, make a purchase, subscribe to our newsletter, or contact us. This may include your name, email address, billing address, and payment information. Payment data is processed securely by Stripe, Inc. — we do not store full credit card numbers on our servers.

Information Automatically Collected

When you visit our site, we automatically collect certain device and usage information including your IP address, browser type, operating system, referring URLs, and pages viewed. We may use cookies and similar tracking technologies to collect this data.

Information from Third Parties

We may receive information about you from Stripe (payment processing) and Manus OAuth (authentication). This information is used solely to provide and improve our services.

2. How We Use Your Information

We use the information we collect to:

• Create and manage your account and process your purchases
• Deliver digital products and send download links after purchase
• Send transactional emails (order confirmations, receipts, download links)
• Send marketing and promotional communications, if you have opted in
• Respond to your inquiries and provide customer support
• Improve our website, products, and services based on usage patterns
• Comply with legal obligations and enforce our Terms of Service
• Detect and prevent fraud and unauthorized access

3. Sharing Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information only in these limited circumstances:

• Service Providers: Stripe for payment processing and Resend for email delivery. These providers are contractually obligated to protect your information.
• Legal Requirements: If required by law, court order, or governmental authority.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
• With Your Consent: For any other purpose with your explicit consent.

4. Cookies and Tracking Technologies

We use cookies to enhance your experience on our site. Session cookies expire when you close your browser; persistent cookies remain until deleted. We use them for authentication, preferences, and analytics. You can control cookies through your browser settings, though disabling them may affect login and checkout functionality. We do not currently respond to Do Not Track signals.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide services. If you request deletion of your account, we will delete your personal data within 30 days, except where retention is required by law or to resolve disputes.

6. Your Privacy Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data ("right to be forgotten")
• Portability: Request your data in a structured, machine-readable format
• Opt-Out: Unsubscribe from marketing emails at any time via the unsubscribe link in any email
• Restriction: Request that we restrict processing of your data in certain circumstances

To exercise any of these rights, please contact us. We will respond within 30 days.

California Residents (CCPA): You have the right to know what personal information is collected, to opt out of the sale of personal information (we do not sell personal information), and to non-discrimination for exercising your privacy rights.

EU/UK Residents (GDPR): Our legal basis for processing your data is your consent (for marketing), contract performance (for purchases), and legitimate interests (for site security and improvement). You have the right to lodge a complaint with your local data protection authority.

7. Security of Your Information

We implement appropriate technical and organizational security measures including SSL/TLS encryption for data in transit, secure password hashing, and access controls. However, no method of transmission over the internet is 100% secure. We encourage you to use a strong password and keep your credentials confidential.

8. Children's Privacy

Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately and we will delete such information.

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide a more prominent notice such as an email notification. Your continued use of our services after changes are posted constitutes your acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: