Home Features The Method Pricing About FAQ

Privacy Policy

How Flows handles your data.

Effective date: April 30, 2026

Introduction

Flows ("we", "our", "us") is a productivity app created by Hunter Bolton. This Privacy Policy explains what information we collect, how we use it, and the choices you have. We are committed to protecting your privacy and keeping your data secure.

Information We Collect

When you create an account, we collect your email address and, if you sign in with Google or Apple, your name and profile information provided by those services. We use this information solely for authentication and to identify your account.

The content you create in Flows — tasks, notes, timer sessions, streaks, and settings — is stored in Firebase Cloud Firestore and encrypted end-to-end. We cannot read your encrypted content. Only you, through your authenticated devices, can decrypt and access it.

If you connect third-party services like Notion, Slack, or Google Calendar, we store OAuth tokens securely in Firestore so the app can access those services on your behalf. We never store your passwords for third-party services.

Information We Do Not Collect

We do not collect analytics or usage tracking data. Analytics is disabled in our Firebase configuration. We do not use advertising SDKs or tracking pixels. We do not collect your location, contacts, health data, browsing history, or any information beyond what is described above.

How We Use Your Information

Your email address is used for account authentication, password reset, and essential service communications. Your encrypted app data is synced across your devices. Third-party OAuth tokens are used solely to connect the services you explicitly authorize.

Data Storage and Security

All user data is stored in Google Firebase (Cloud Firestore) and protected by Firebase security rules. Your tasks, notes, and settings are encrypted using AES-256 with per-user encryption keys derived server-side. Data is transmitted over HTTPS/TLS. We follow industry-standard practices to protect your data.

Third-Party Services

Flows uses the following third-party services: Firebase Authentication and Cloud Firestore (Google) for account management and data storage, RevenueCat for subscription management, and Apple's In-App Purchase system for payments. Each of these services has its own privacy policy.

When you connect optional integrations (Notion, Slack, Google Calendar), those services' privacy policies apply to the data you share with them.

Subscriptions and Payments

Premium subscriptions are processed entirely through Apple's In-App Purchase system. We do not collect, store, or have access to your payment information, credit card numbers, or billing details. RevenueCat manages subscription status on our behalf.

Data Retention and Deletion

Your data is retained as long as you maintain an active account. If you wish to delete your account and all associated data, contact us at support@flowspomo.com and we will delete your data within 30 days. You can also delete individual tasks, notes, and integrations at any time within the app.

Children's Privacy

Flows is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a new effective date.

Contact

If you have questions about this Privacy Policy or your data, contact us at support@flowspomo.com.