Floowed
Legal

Privacy Policy

Version v1.1 · Last updated: 20 April 2026

This Privacy Policy explains how Floowed Pte. Ltd. ("Floowed", "we", "us", or "our") collects, uses, discloses, stores, and otherwise processes personal data in connection with our website, hosted software platform, workflows, integrations, and related services (together, the "Services").

This Privacy Policy is intended for:

  • visitors to our website;
  • individuals who create or use an account with Floowed;
  • representatives of our customers, vendors, and partners; and
  • individuals whose personal data may be submitted to the Services by our customers.

Where our customers use the Services to process personal data for their own purposes, they are generally responsible for determining how and why that personal data is processed through their workflows. In those cases, we may process personal data on the customer's behalf, subject to our agreement with that customer.

1. Personal Data We Collect

We may collect the following categories of personal data.

1.1 Information you provide directly

This may include:

  • name;
  • business email address;
  • telephone number;
  • company name;
  • job title;
  • billing information;
  • account credentials;
  • communications you send to us; and
  • any personal data you choose to submit through forms, support requests, workflows, or account settings.

1.2 Account and usage information

When you use the Services, we may collect:

  • account registration details;
  • subscription and billing records;
  • user activity logs;
  • workflow configurations and settings;
  • prompts, inputs, outputs, and files submitted through the Services;
  • device, browser, IP address, and session information; and
  • diagnostics, telemetry, and performance data.

1.3 Information from integrations and third parties

Where you connect third-party services to Floowed, we may receive data from those services in accordance with your configuration and authorization, including content, metadata, and account identifiers required to operate the integration.

1.4 Website and cookie data

When you visit our website, we may collect technical and usage data through cookies and similar technologies, including browser type, pages visited, timestamps, referral URLs, and analytics data.

2. How We Use Personal Data

We may collect, use, disclose, or otherwise process personal data for the following purposes:

  • to provide, operate, maintain, and improve the Services;
  • to create and manage accounts;
  • to authenticate users and protect account security;
  • to run workflows, automations, integrations, and connected service functions;
  • to provide onboarding, customer support, and technical assistance;
  • to process payments, invoices, renewals, overages, and account administration;
  • to monitor usage, enforce limits, prevent abuse, and maintain platform integrity;
  • to investigate suspicious activity, fraud, security incidents, or violations of our terms;
  • to communicate with users about service updates, billing matters, support matters, product changes, and legal notices;
  • to conduct analytics, troubleshooting, debugging, service optimisation, and product development;
  • to comply with legal or regulatory obligations;
  • to establish, exercise, or defend legal claims; and
  • for any other purpose notified to you at or before the time of collection, or otherwise permitted or required by law.

3. How We Disclose Personal Data

We may disclose personal data to:

  • our affiliates;
  • cloud hosting, infrastructure, storage, and security providers;
  • payment processors and billing providers;
  • email, messaging, and communication service providers;
  • analytics, logging, monitoring, and support providers;
  • subprocessors and contractors who help us provide the Services;
  • third-party services that you connect or direct us to use in your workflows;
  • professional advisers, auditors, insurers, and financiers;
  • regulators, courts, law enforcement, or government authorities where required or appropriate; and
  • a buyer, investor, successor, or transaction counterparty in connection with a merger, acquisition, financing, restructuring, or sale of business assets.

If you configure a workflow to send data to a third-party service, you authorize us to transmit the relevant data as part of providing the Services.

4. When We Process Data on Behalf of Customers

Where an organisation uses Floowed to process personal data in its own workflows, that organisation may act as the party determining the purposes and means of processing. In those situations, Floowed may act as a service provider or data intermediary processing personal data on that customer's behalf under contract.

If you believe your personal data has been submitted to Floowed by one of our customers and you would like to exercise rights relating to that data, you should first contact the relevant customer directly. We may assist that customer as appropriate.

5. Cookies and Similar Technologies

We may use cookies, pixels, tags, and similar technologies on our website and platform to enable core functionality, maintain secure sessions, remember preferences, analyse website and product usage, and improve the functionality and performance of the Services.

Some cookies are necessary for the operation, security, and performance of the Services. Others may be used for analytics and related performance or user experience improvements.

You can control cookies through your browser settings. However, disabling or blocking certain cookies may affect the availability or functionality of parts of the Services.

We may also use third-party analytics tools to help us understand website and product usage patterns and improve the Services.

6. Data Retention

We retain personal data only for as long as it is reasonably needed for business or legal purposes, including to:

  • provide the Services;
  • maintain records;
  • comply with legal, tax, accounting, or regulatory obligations;
  • resolve disputes;
  • enforce our agreements; and
  • detect or prevent fraud or security incidents.

7. Data Security

We implement reasonable administrative, organisational, physical, and technical safeguards designed to protect personal data against unauthorized access, collection, use, disclosure, copying, modification, disposal, or similar risks.

No system is completely secure, and we cannot guarantee absolute security.

8. International Transfers

Our Services may involve processing personal data in Singapore and other countries where we or our service providers operate.

Where personal data is transferred outside Singapore, we will take steps intended to ensure that the transferred data is accorded a standard of protection comparable to that required under applicable law, where required.

9. Accuracy

We generally rely on the personal data provided to us or through our customers' workflows. You should ensure that information submitted to us is accurate, complete, and up to date, especially where it may be used to make decisions affecting an individual or disclosed to another organisation.

10. Access and Correction

Subject to applicable law, you may request access to personal data we hold about you and information about how that personal data has been used or disclosed within the period required by applicable law, as well as correction of personal data that is inaccurate or incomplete.

We may need to verify your identity before responding, and we may decline a request where a lawful exception applies.

If your request relates to personal data processed by us on behalf of a customer, we may direct you to contact that customer.

11. Withdrawal of Consent

Where we rely on consent under applicable law, you may withdraw your consent by contacting us using the details below. Withdrawal will not affect processing already carried out before the withdrawal and may affect our ability to provide some Services.

12. Marketing Communications

We may send administrative or service-related communications where necessary for the Services. Where we send promotional communications, you may opt out using the unsubscribe mechanism in the communication or by contacting us.

13. Third-Party Sites and Services

The Services may contain links to or integrations with third-party websites, applications, and services. We are not responsible for their privacy practices or content. You should review their own privacy notices and terms.

14. Children

The Services are intended for business use and are not directed to children.

15. Data Breach Notification

Where required by applicable law, we may notify affected individuals and/or relevant authorities of a data breach involving personal data.

16. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated version on our website or otherwise notify you where appropriate. The updated version will take effect from the stated "Last Updated" date.

17. Contact Us

For questions, access or correction requests, or privacy-related concerns, please contact:

Floowed Pte. Ltd.
Email: dpo@floowed.com
Attention: Data Protection Officer / Privacy Team