Flowlog Logo

Privacy Policy

Your privacy is important to us. Learn how we collect, use, and protect your information.

Policy Details

Effective: October 12, 2025
GDPR Compliant
v1 - October 12, 2025
Version

Introduction

This Privacy Policy describes how Flowlog ("we", "our", or "us") collects, uses, stores, and protects your personal information when you use our mobile application Flowlog (the "App"). Flowlog is operated as a business registered in Australia under the business name Flowlog, located at 8 Leydin Court, Darwin City, Northern Territory, Australia.

We are committed to protecting your privacy and ensuring the security of your personal information. By using our App, you agree to the collection and use of information in accordance with this policy.

Information We Collect

1. Account Information

When you create an account, we collect:

  • Email address: Used for account verification, password reset, and essential system communications
  • Name: Used for display purposes within the app
  • Profile picture/Avatar: Used for display purposes within the app

Authentication Methods:

  • OAuth login (Google Sign-In) - Not available in Mainland China
  • OAuth login (Apple Sign-In) - Available globally including Mainland China
  • Email and password login - Available globally

2. Sensitive Personal Information

The following information is considered sensitive personal information and requires your explicit consent:

  • Financial Account Information: Bank account details, balances, and transaction data
  • Employment and Income Data: Salary information, tax details, and work records

By using features that require this information, you provide explicit consent for their collection and processing.

3. Financial and Employment Information

The App allows you to voluntarily input and manage various financial and employment data, including but not limited to:

Account Information:

  • Account names and numbers (last 4 digits recommended)
  • Account balances in multiple currencies
  • Bank and financial institution details
  • Cash holdings
  • Sub-accounts (Transaction/Savings)

Payout Records:

  • Employer name and employment details
  • Payment dates and amounts
  • Gross income, net income
  • Tax withholding amounts
  • GST amounts (for ABN contractors)
  • Superannuation contributions
  • Payment breakdowns
  • Linked worklogs
  • Payment account details
  • Payslip photos (optional)
  • Notes and descriptions

Work Logs:

  • Employment and role information
  • Work dates and times
  • Clock in/out events
  • Time zone information
  • Deductions (breaks, leave)
  • Work hours/days/pieces
  • Rate types (weekday, weekend, holiday, night)
  • Expected earnings calculations
  • Notes

Employment Details:

  • Company name and location
  • Employment type (PAYG/ABN/Other)
  • Pay cycles and calculation methods
  • Multiple roles and rates
  • Special rates (weekend, holiday, night)
  • Default deductions
  • Default payout accounts
  • Currency settings

4. App Settings and Preferences

  • Company and role presets/templates
  • Base/default currency preferences
  • Theme preferences
  • Export settings
  • Face ID/biometric settings (stored locally only)

5. Technical Information

We collect minimal technical information for app functionality:

  • IP address (for OAuth authentication services and security purposes)
  • Device type and iOS version
  • App version and build number
  • Time zone settings

6. Third-Party Service Data

Exchange Rate Data:

  • Currency exchange rates are provided by fawazahmed0's free exchange rate API
  • This data is for reference only and not professional financial advice
  • We do not control or guarantee the accuracy of exchange rate data

Information We Do NOT Collect

  • Third-party analytics data (we do not use any analytics tools)
  • User behavior tracking
  • GPS location data
  • Camera access (beyond user-initiated photo selection)
  • Photo library browsing (only user-selected photos)
  • Push notification tokens
  • Crash reports
  • Contact lists
  • Calendar data
  • Cookies or tracking pixels
  • Advertising identifiers

How We Use Your Information

We use the collected information to:

  1. Provide Core Services:

    • Enable account creation and management
    • Store and organize your financial and employment records
    • Calculate work hours, expected earnings, and payment tracking
    • Manage multiple employments and roles
    • Track account balances and net worth
    • Enable data synchronization when logged in
    • Generate analytics and reports
  2. System Communications:

    • Send account verification emails
    • Process password reset requests
    • Notify about critical security issues
    • Send essential service updates
  3. Security and Authentication:

    • Verify your identity through OAuth or email
    • Protect against unauthorized access
    • Enable biometric authentication (Face ID/Touch ID)
    • Monitor for suspicious activity
    • Provide single-device login security
  4. Customer Support:

    • Respond to support requests
    • Troubleshoot technical issues
    • Provide assistance with app features

Data Storage and Security

Storage Location

  • All data is stored on secure PostgreSQL databases on servers located in Australia
  • Data is backed up regularly for disaster recovery

Security Measures

  • All data transmission uses HTTPS encryption
  • Database encryption at rest
  • Biometric data (Face ID/Touch ID) never leaves your device
  • Single device login limitation for enhanced security
  • Regular security audits and updates
  • Access controls and authentication mechanisms

Data Retention

  • Active account data is retained as long as your account is active
  • Deleted account data is retained for 30 days for recovery purposes, then permanently deleted
  • You may request immediate permanent deletion at any time
  • Exported data in your possession is your responsibility

Your Rights and Controls

You have the right to:

  1. Access Your Data: View all information we have about you through the app
  2. Export Your Data: Download your data in CSV format (Premium feature)
  3. Update Information: Modify or correct your personal information at any time
  4. Delete Your Account: Permanently remove your account and all associated data
  5. Data Portability: Export and transfer your data to other services
  6. Limit Processing: Disable certain features that process your data
  7. Correction: Request correction of inaccurate data

To exercise these rights, please contact us at [email protected]

Data Sharing and Third Parties

We do NOT sell, trade, or rent your personal information to third parties.

We may share your information only in these circumstances:

  1. OAuth Providers:

    • Google (outside Mainland China) for authentication only
    • Apple (globally) for Sign in with Apple authentication
    • Only basic profile information is shared
  2. Service Providers:

    • Cloud infrastructure providers (for data storage)
    • Email service providers (for system communications)
    • Payment processors (Apple App Store for subscriptions)
  3. Legal Requirements:

    • When required by law, court order, or governmental request
    • To protect our rights, privacy, safety, or property
    • To enforce our Terms of Service
  4. Business Transfers:

    • In the event of merger, acquisition, or sale of assets
    • Users will be notified before personal information is transferred
  5. With Your Consent:

    • When you explicitly agree to specific sharing
    • For features that require third-party integration

International Data Transfers

While our servers are located in Australia, you may access the App from other countries. By using the App, you consent to the transfer of your information to Australia, which may have different data protection laws than your country of residence.

For Users in China

  • Your personal information will be transferred to and stored on servers in Australia
  • By using our App, you explicitly consent to this cross-border transfer
  • We ensure appropriate safeguards are in place for data protection
  • We comply with the Personal Information Protection Law (PIPL) requirements
  • You have the right to request information about overseas recipients of your data

For EU Users (GDPR)

  • We comply with GDPR requirements for data processing
  • Appropriate safeguards are in place for international transfers
  • You have additional rights under GDPR including right to erasure and data portability

Subscription and Payment

Subscription payments are processed through Apple's App Store:

  • Monthly: AUD $5.99 (or equivalent in local currency)
  • Annual: AUD $59.99 (or equivalent in local currency)
  • 14-day free trial for new users

Apple handles all payment processing. We do not store credit card or payment information.

Children's Privacy

Our App is not intended for children under 14 years of age. We do not knowingly collect personal information from children under 14. If we discover that we have collected information from a child under 14, we will delete that information immediately.

For users aged 14-16, parental consent may be required depending on your jurisdiction.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy in the App
  • Updating the "Last Updated" date
  • Sending an email notification for material changes
  • Requiring acceptance for significant changes

Your continued use of the App after changes constitutes acceptance of the updated policy.

Third-Party Services and Disclaimers

Exchange Rate Service

  • Exchange rates provided by fawazahmed0's free API
  • Data is for reference only, not professional financial advice
  • We are not responsible for the accuracy of exchange rate data
  • Always verify rates with official sources for important transactions

OAuth Providers

  • Google and Apple handle their own data according to their privacy policies
  • We only receive basic profile information necessary for authentication
  • Review their privacy policies for details on their data practices

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:

Privacy Inquiries: [email protected]
General Support: [email protected]
WhatsApp Support: Available through in-app link
Business Address: 8 Leydin Court, Darwin City, Northern Territory, Australia

Response Times:

  • General inquiries: 24-48 hours on business days
  • WhatsApp: 24-48 hours on business days
  • Privacy concerns: 24-48 hours on business days
  • Urgent security issues: Within 24 hours
  • Legal matters: 5-7 business days

Compliance

This Privacy Policy is designed to comply with:

  • Australian Privacy Act 1988 and Australian Privacy Principles (APPs)
  • General Data Protection Regulation (GDPR) for EU users
  • Personal Information Protection Law (PIPL) for Chinese users
  • California Consumer Privacy Act (CCPA) for California users
  • Apple App Store Guidelines

Consent

By using Flowlog, you consent to this Privacy Policy and agree to its terms. For sensitive personal information processing, your explicit consent is obtained through specific opt-in actions within the App.

Specific consents required:

  • Face ID/Touch ID: Explicit opt-in when enabling
  • Financial data: Consent by voluntary data entry
  • Photo uploads: Permission requested when uploading payslips

© 2025 Flowlog. All rights reserved.

Last updated: October 12, 2025 | Version v1