Privacy Policy
Last updated 21 October 2025This Privacy Policy sets out the procedure, purposes, and conditions under which Flawlee (the “Operator”) processes personal data in connection with providing access to the Flawlee service.
1. General provisions
- This Policy is designed to comply with applicable personal data protection laws.
- It applies to the processing of data of the Service’s customers (with the Operator acting as data controller) and of visitors to customers’ websites (with the Operator acting as data processor).
- The Operator is not responsible for third-party websites.
2. Categories of data processed
2.1. Data of Service customers
- Registration data: name, email, phone, tax ID or company name.
- Payment data: account number, payment history.
- Technical data: IP address, cookies, UTM tags, browser parameters.
- Usage data: settings, texts, personalization parameters.
2.2. Data of visitors to customers’ websites
- IP address, cookies, browser and device parameters.
- UTM tags and URL parameters.
- On-site behavioral data in anonymized form.
3. Purposes of processing
- Registration and authentication of customers in the Service.
- Providing access to functionality and fulfilling contractual obligations.
- Issuing invoices and processing settlements.
- Customer feedback and support.
- Ensuring security and preventing fraud.
- Analyzing usage and improving the quality of the Service.
4. Principles of processing
- Lawfulness — data is processed on lawful grounds.
- Data minimization — only necessary data is collected.
- Storage limitation — personal data is retained in line with the purposes of processing.
- No transfer of identifying data — customers must not submit visitors’ personal data to the Service.
5. Sharing data with third parties
- The Operator may share data with contractors (payment systems, hosting) provided they maintain confidentiality.
- The Operator does not sell personal data to third parties.
6. Storage and deletion of data
- Customer data is stored for the duration of the account and for no more than 30 days after the customer stops using the Service.
- Once the purposes of processing are achieved, data is deleted or anonymized.
7. Rights of data subjects
- Obtain information about the purposes and methods of processing their data.
- Request the correction, blocking, or deletion of their data.
- Withdraw consent to processing.
- Send requests to [email protected].
8. Data protection measures
- Secure connections (HTTPS) for data transfer.
- Restricted employee access to personal data.
- Encryption and backup of data.
- Regular updates of software and security systems.
See also: Terms of Service