FounderFlow
Privacy Policy

Your Privacy is Our Top Priority

We believe in transparency. This policy explains how we collect, use, and protect your information when you use FounderFlow.

Last updated: July 27, 2025
Effective: July 27, 2025

Privacy at a Glance

Data Encryption

All your data is encrypted both in transit and at rest using industry-standard AES-256 encryption.

No Data Selling

We never sell, rent, or share your personal information with third parties for marketing purposes.

Your Control

You own your data and can request access, correction, or deletion at any time.

1. Introduction

FounderFlow, Inc. ("we," "our," or "us") operates the FounderFlow platform at founderflow.tech (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, do not use our Service.

Contact Information:
FounderFlow, Inc.
Email: [email protected]
Address: Warsaw, Poland

2. Information We Collect

2.1 Personal Information

We collect information you provide directly to us, including:

  • Account information (name, email address, password)
  • Profile information (company, role, bio)
  • Business ideas and validation data you submit
  • Communication preferences
  • Payment information (processed securely by third-party providers)

2.2 Usage Information

We automatically collect certain information about your use of our Service:

  • Device information (IP address, browser type, operating system)
  • Usage patterns (pages visited, time spent, features used)
  • Log data (access times, error logs, performance metrics)
  • Cookies and similar tracking technologies

2.3 Third-Party Information

We may receive information from third parties, including:

  • Authentication providers (Google, GitHub, etc.)
  • Payment processors (Stripe, PayPal)
  • Analytics services (Google Analytics)
  • Public databases for market research
3. How We Use Your Information

We use the information we collect for the following purposes:

Service Provision

  • Provide and maintain our Service
  • Process your business idea validations
  • Generate AI-powered insights
  • Manage your account and preferences

Communication

  • Send service-related notifications
  • Respond to your inquiries
  • Provide customer support
  • Send marketing communications (with consent)

Improvement

  • Analyze usage patterns
  • Improve our algorithms
  • Develop new features
  • Conduct research and analytics

Legal & Security

  • Comply with legal obligations
  • Protect against fraud
  • Enforce our Terms of Service
  • Ensure platform security
4. Information Sharing and Disclosure

We DO NOT sell your personal information.

We never sell, rent, or trade your personal information to third parties for marketing purposes.

We may share your information only in the following limited circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who help us operate our Service:

  • Cloud hosting providers (AWS, Google Cloud)
  • Payment processors (Stripe)
  • Email service providers (SendGrid)
  • Analytics providers (Google Analytics)
  • AI/ML service providers (OpenAI)

4.2 Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights, property, or safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4.4 Aggregated Data

We may share aggregated, non-personally identifiable information for research, marketing, or other business purposes.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information:

Technical Measures

  • AES-256 encryption at rest
  • TLS 1.3 encryption in transit
  • Regular security audits
  • Secure cloud infrastructure
  • Multi-factor authentication

Organizational Measures

  • Access controls and permissions
  • Employee training programs
  • Incident response procedures
  • Regular compliance reviews
  • Data minimization practices

Important: While we implement strong security measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access

Request a copy of your personal information

Correction

Update or correct inaccurate information

Deletion

Request deletion of your personal information

Portability

Export your data in a machine-readable format

Opt-out

Unsubscribe from marketing communications

Restriction

Limit how we process your information

To exercise your rights: Contact us at [email protected] or use the privacy controls in your account settings. We will respond within 30 days.

7. Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Required for the Service to function properly (authentication, security, preferences)

Analytics Cookies

Help us understand how you use our Service to improve performance and features

Marketing Cookies

Used to deliver relevant advertisements and measure campaign effectiveness (with consent)

You can control cookies through your browser settings. Note that disabling certain cookies may affect Service functionality.

8. International Data Transfers

FounderFlow is based in Poland (European Union). If you are accessing our Service from outside the European Union, your information may be transferred to, stored, and processed in Poland and other countries within the EU.

We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses and adequacy decisions where applicable. Being based in the EU, we comply with GDPR requirements for data protection.

9. Data Retention

We retain your information for as long as necessary to provide our Service and fulfill legal obligations:

  • Account data: Until you delete your account, plus 30 days
  • Usage data: Up to 2 years for analytics and improvement
  • Financial records: Up to 7 years for tax and legal compliance
  • Support communications: Up to 3 years

You can request deletion of your data at any time, subject to legal retention requirements.

10. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

For significant changes, we will provide additional notice (such as email notification) at least 30 days before the changes take effect.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us:

Mail

FounderFlow, Inc.
Privacy Department
Warsaw, Poland

Contact Privacy Team