Privacy Policy

Last updated: February 18, 2026

1. Introduction

We6 Oy, operating as Flowdock AI ("we," "our," or "us"), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI back-office automation platform.

We are registered in Finland (Business ID: 3372389-7) and comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Information We Collect

2.1 Information You Provide

Flowdock AI is a B2B service designed for business use. The data we process primarily relates to business operations.

  • Account Information: Name, email address, company name, and password when you create an account.
  • Business Documents: Invoices, contracts, receipts, and other business documents you upload to our platform. Some documents (such as employment contracts) may contain personal data of individuals; you are responsible for ensuring you have the right to process such data.
  • Communication Data: Messages you send us through our contact form or support channels.

2.2 Information from Connected Services (Optional)

These integrations are optional. You can use Flowdock AI without connecting any external accounts.

  • Email Connections: If you choose to connect your business email account, we access email metadata and content related to business transactions (invoices, receipts, subscriptions) to automate your back-office operations.
  • Bank Connections: If you choose to connect your business bank account, we access transaction data and account balances through our banking partner Enable Banking. This is read-only access; we cannot make payments or transactions on your behalf.
  • Stripe Integration: If you choose to connect your business Stripe account, we access your revenue and transaction data to provide analytics and reporting features.

2.3 Automatically Collected Information

  • Usage Data: Information about how you use our platform, including features accessed and actions taken.
  • Device Information: Browser type, operating system, IP address, and device identifiers.
  • Cookies: We use cookies and similar technologies as described in our cookie banner.

3. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our AI back-office automation services.
  • AI Processing: To analyze your documents, emails, and financial data using artificial intelligence to automate tasks and provide insights.
  • Communication: To send you service updates, security alerts, and respond to your inquiries.
  • Security: To protect against fraud, unauthorized access, and other security threats.
  • Legal Compliance: To comply with applicable laws and regulations.

4. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide our services to you.
  • Legitimate Interests: Processing for our legitimate business interests, such as improving our services and ensuring security.
  • Consent: Where you have given explicit consent for specific processing activities.
  • Legal Obligation: Processing required to comply with legal requirements.

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party vendors who assist us in providing our services, including:
    • Cloud hosting providers
    • Auth0 for secure user authentication
    • Payment processor (Stripe) for billing your subscription, if you subscribe to a paid plan
    • Enable Banking for bank account integration (read-only access), if you choose to connect your bank
    • Stripe, if you choose to connect your business Stripe account for revenue analytics
    • Analytics services (Google Analytics)
  • Legal Requirements: When required by law, court order, or governmental authority.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.

We do not sell your personal data to third parties.

6. Data Retention and Deletion

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

You can delete your organization and all associated data at any time through the application settings. When you delete your organization, all your data (including documents, connected accounts, and business records) will be permanently deleted within 30 days, unless we are required to retain it for legal purposes.

7. Your Rights (GDPR)

Under the GDPR, you have the following rights:

  • Access: Request a copy of your personal data.
  • Rectification: Request correction of inaccurate data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request restriction of processing of your data.
  • Portability: Request transfer of your data to another service.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, please contact us at support@flowdock.ai.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication mechanisms
  • Employee training on data protection

9. International Data Transfers

Your data may be transferred to and processed in countries outside the EEA. When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

10. Cookies and Tracking

We use cookies and similar tracking technologies. You can manage your cookie preferences through the cookie consent banner on our website. For more information, please see our cookie settings.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

We6 Oy
Business ID: 3372389-7
Finland

Contact: flowdock.ai/contact

You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman (Tietosuojavaltuutetun toimisto) or your local data protection authority if you believe we have not complied with applicable data protection laws.

Sign up for Flowdock AI

Get started with your 7-day free trial

* You will receive a verification email