ProposalFlow
Legal · Privacy

Privacy Policy

Last updated · April 2026

Placeholder content. This is a stub page for development. Replace this content with your actual Privacy Policy before launch — required by GDPR (UK/EU), CCPA (California), and the UAE PDPL.
01

Information we collect

We collect account information you provide directly (name, email, organization), proposal content you create, and usage data such as IP address, browser, and device information.

02

How we use information

We use your information to provide the service, process payments, send transactional emails, improve the product, and comply with legal obligations.

03

Sharing & sub-processors

We share data only with sub-processors strictly necessary to operate the service. We do not sell your data, and we do not use your proposal content to train AI models.

  • Microsoft AzureCloud hosting & database
  • StripePayments & checkout
  • GroqAI proposal drafting
  • ResendTransactional email
04

Data retention

We retain account and proposal data for as long as your account is active. Deleted proposals are soft-deleted for 30 days before permanent removal, after which they cannot be recovered.

05

Your rights

You have the right to access, correct, export, or delete your personal data. Email us at privacy@proposalflow.dev to exercise these rights — we respond within 30 days.

06

Security

We use industry-standard security measures including encryption in transit (TLS) and at rest (AES-256), multi-factor authentication, and regular security audits. Document signatures are fingerprinted with SHA-256 and stored with an immutable audit trail.

07

Contact

For privacy questions, email us at privacy@proposalflow.dev.

Questions? hello@proposalflow.dev
Terms of ServiceBack to home