Privacy Policy
Last updated: May 2026
This is a plain-language summary of how ProofFlow handles your data. It is provided as a starting point and is not legal advice — have a professional review your final policy before launch.
1. What we collect
We collect the information you give us when you sign up (your name, email, and organization), the customer data needed to send review requests (buyer email and purchase details from Stripe), and the reviews your customers submit.
2. How we use it
We use your data to operate ProofFlow: to email your customers for reviews on your behalf, to display the reviews you approve, and to bill you for the service. We do not sell your data or your customers' data.
3. Email & unsubscribes
Every review-request email includes a one-click unsubscribe link. Customers who opt out are suppressed and never contacted again unless they re-subscribe with consent. This keeps you compliant with CAN-SPAM and CASL.
4. Third-party services
We rely on trusted providers to run ProofFlow: Stripe for payments, Supabase for data storage, Resend for email delivery, and Netlify for hosting. Each processes data only as needed to provide their service.
5. Data security
Your data is protected with row-level security so each organization can only access its own records. Secrets and service credentials are kept server-side and never exposed to the browser.
6. Your rights
You can access, export, or delete your data at any time. Closing your account removes your data within a reasonable period. Customers can request removal of their reviews by contacting you directly.
7. Changes
We may update this policy as the service evolves. Material changes will be communicated through the app or by email.
Questions about your privacy? Email apexsniperdev@gmail.com.