Privacy Policy
How GateFlow collects, uses, and protects your personal information.
1. Information We Collect
We collect information you provide directly to us, such as when you create an account, use our services, or contact us for support.
- Account data: name, email address, organization name, role
- Usage data: scan logs, QR code metadata, gate activity
- Technical data: IP address, browser type, device identifiers
- Payment data: processed by Stripe — we never store card details
2. How We Use Your Information
We use the information we collect to provide, maintain, and improve our services.
- Authenticate users and enforce access control
- Process and log QR scan events for audit purposes
- Send transactional emails (QR codes, invitations, receipts)
- Detect and prevent fraud, abuse, and security incidents
- Comply with legal obligations
3. Data Retention
We retain your data for as long as your account is active or as needed to provide services. Scan logs are retained for the period selected in your plan settings (default 12 months). You may request deletion of your account and associated data at any time.
4. Data Sharing
We do not sell, trade, or rent your personal information to third parties. We may share data with service providers who assist in operating our platform (hosting, email delivery, analytics) under strict data processing agreements.
5. Security
We implement industry-standard security measures including AES-256 encryption for data at rest, TLS 1.3 for data in transit, Argon2id password hashing, and regular security audits. However, no method of transmission over the internet is 100% secure.
6. Your Rights
Depending on your location, you may have the right to access, correct, or delete your personal data. To exercise these rights, contact us at privacy@gateflow.io.
7. Contact
For privacy-related questions, contact our Data Protection Officer at privacy@gateflow.io or write to GateFlow Technologies, Cairo, Egypt.