Privacy Policy

1. Introduction

Flobase Inc. ("Flobase," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered email management service.

This policy applies to information we collect through our website, application, and services (collectively, the "Service"). By using our Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

When you use our Service, we collect information that you provide directly:

• Account Information: Name, email address, and profile information from your Google or Microsoft account
• Payment Information: Billing details processed securely through Stripe (we do not store full credit card numbers)
• Profile Settings: Preferences, settings, and customization choices
• Support Communications: Information you provide when contacting customer support

2.2 Email Data

When you connect your email account, we access and process:

• Email content, metadata, attachments, and headers
• Sender and recipient information
• Email labels, tags, and folder structures
• Calendar events and meeting information
• Contact information from your email provider

2.3 Automatically Collected Information

We automatically collect certain information:

• Usage Data: Features used, time spent, click patterns, and interaction data
• Device Information: IP address, browser type, operating system, device identifiers
• Log Data: Access times, pages viewed, error logs, and system activity
• Cookies and Similar Technologies: Session data and preferences

3. How We Use Your Information

We use the collected information for:

3.1 Service Delivery

• Providing AI-powered email management and organization
• Generating email responses and summaries
• Scheduling meetings and managing calendar events
• Creating custom email tags and labels
• Enabling team collaboration features

3.2 Service Improvement

• Analyzing usage patterns to improve our Service
• Training and improving our AI models
• Developing new features and functionality
• Troubleshooting technical issues

3.3 Communication

• Sending service updates and notifications
• Responding to your inquiries and support requests
• Providing important account information
• Sending marketing communications (with your consent)

3.4 Security and Compliance

• Protecting against fraud and unauthorized access
• Ensuring compliance with legal obligations
• Enforcing our Terms of Service
• Conducting security audits

4. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who help us operate our Service:

• Cloud Infrastructure: Supabase for database and authentication
• Payment Processing: Stripe for payment and billing services
• AI Services: OpenAI for AI-powered features
• Email Services: Google and Microsoft for email integration
• Analytics: Service providers for usage analytics

4.2 Business Transfers

If Flobase is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal processes (subpoenas, court orders)
• Law enforcement requests
• Compliance with legal obligations
• Protection of our rights and safety

4.4 With Your Consent

We may share information with third parties when you explicitly consent to such sharing.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: Data is encrypted in transit (TLS/SSL) and at rest
• Access Controls: Strict authentication and authorization protocols
• Regular Audits: Security assessments and vulnerability testing
• Employee Training: Staff trained on data protection practices
• OAuth 2.0: Secure authentication through Google and Microsoft

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Active Accounts: Data retained while your account is active
• Deleted Accounts: Most data deleted within 30 days of account closure
• Backup Data: May persist in backups for up to 90 days
• Legal Requirements: Some data retained longer if required by law
• Aggregated Data: Anonymous, aggregated data may be retained indefinitely

7. Your Privacy Rights

You have the following rights regarding your personal information:

7.1 Access and Portability

You can access and download your data through your account dashboard.

7.2 Correction

You can update your profile information and preferences at any time.

7.3 Deletion

You can delete your account and associated data through your account settings.

7.4 Opt-Out

You can opt out of marketing communications by clicking "unsubscribe" in any marketing email.

7.5 State-Specific Rights

If you are a resident of California, Virginia, Colorado, Connecticut, or Utah, you may have additional rights under state privacy laws, including the right to:

• Know what personal information is collected and how it's used
• Request deletion of your personal information
• Opt out of the sale of personal information (we don't sell data)
• Non-discrimination for exercising your rights

8. International Data Transfers

Your information may be transferred to and processed in the United States and other countries where our service providers operate. These countries may have data protection laws different from your country. By using our Service, you consent to such transfers.

9. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to read their privacy policies.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on our Service. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: