flowkr

Overview

flowkr is committed to protecting your data. This policy explains what data we collect, how we use it, and your rights as a user.

Infrastructure

All data is stored and processed exclusively on European infrastructure. Our servers are hosted by Hetzner Online GmbH in Germany. No data is transferred to servers outside the European Economic Area (EEA).

Data We Collect

• Account data: Email address, display name, and hashed password (bcrypt)
• OKR data: Objectives, key results, and their completion status
• Session data: Secure session tokens for authentication (stored server-side)

What We Don't Collect

• No tracking cookies or analytics scripts
• No third-party advertising or marketing tools
• No data shared with external services

Data Retention

Your data is retained as long as your account exists. Tenant administrators can manage user accounts within their organization. If you wish to delete your account or data, contact the platform operator.

Security

• All connections are encrypted via TLS (HTTPS)
• Passwords are hashed using bcrypt with salt rounds
• Multi-tenant data isolation through PostgreSQL schemas
• Session tokens are cryptographically random and expire after inactivity

Your Rights

Under applicable data protection regulations, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request deletion of your data
• Export your data (available via the Export feature)

Contact

For privacy-related inquiries, contact the platform operator.