Privacy Statement for DeepFlow
Introduction
AI8 Ltd. t/a DeepFlow is committed to safeguarding your privacy and ensuring your personal data's security and compliance with applicable legal frameworks. This Privacy Policy outlines our approach to managing and processing the personal data of our users concerning the provision of our SaaS tools globally.
DeepFlow processes information we receive directly from you, automatically collected when you use DeepFlow or visit one of our websites, and collected by DeepFlow from third parties. However, please note that this Privacy Statement does not apply to the processing of your information by third parties through your use of any third-party integrations available via our services. Please visit those third-party websites directly for more information on their privacy and data protection practices.
Key Principles
1. Transparency and User Consent
Data Collection: We collect only the necessary personal data to deliver our services effectively, including identity data, contact information, and usage details.
Purpose of Processing: The data is processed to enhance user experience, personalise content, and ensure service optimisation.
Unless otherwise prohibited by law, we may combine the information that we collect through your use of our products and services with information that we receive from other sources, both online and offline, and use that combined information as set out above.
We may aggregate and/or de-identify information related to your use of DeepFlow (for example, how many tasks or Workflows you created) so that such information can no longer be linked to you or your device. We may use such aggregated and de-identified data for any purpose, including but not limited to, research and marketing purposes and may also disclose such data to any third parties, including advertisers, promotional partners, sponsors, event promoters, and/or others.
Consent: By using our services, you consent to the collection and use of your data as described herein. For special categories of data, explicit consent will be sought.
2. User Rights
Access: You have the right to access your data and request a copy.
Rectification: If your data is incorrect, please request a correction.
Deletion: You can request data deletion of your private identifiable information under certain conditions.
Restriction: You may restrict processing in specific scenarios.
Portability: Transferring your data to another provider is your right.
Withdraw Consent: At any time, you can withdraw your consent.
Please note, however, that certain information may be exempt from such requests in some circumstances (for example, if we need to keep processing your information for our legitimate interests or to comply with a legal obligation). Depending on applicable law, you may have the right to appeal our decision to deny your request. If we deny your request, we will provide you with information on how to appeal the decision, if applicable, in our communications with you.
3. Accountability and Governance
DPIAs: Regular Data Protection Impact Assessments are conducted to identify and mitigate risks.
Record Keeping: We maintain comprehensive records of our processing activities.
4. Data Breach Notification
In compliance with the UK GDPR, any data breach will be promptly assessed and reported to the Information Commissioner’s Office within 72 hours if necessary.
5. International Data Transfers
Standard Contractual Clauses and BCRs: Transfers outside the UK and EEA are conducted following UK GDPR standards.
Local Compliance: We adhere to local data laws, including the CCPA and PIPL, as applicable to our operations.
6. Security Measures
Technical and Organisational Safeguards: We implement industry-standard encryption, access controls, and regular audits to protect your data.
Data Minimisation and Retention: We ensure only necessary data is retained and securely delete data once it is no longer required.
7. User Accessibility and Language
Our Privacy Policy is drafted in plain English, easily understandable to users. Furthermore, we provide multilingual support to cater to our diverse user base.
8. Data Processing Agreements
DeepFlow enters Data Processing Agreements with partners that define the processing's scope, security measures, and sub-processing provisions.
Conclusion
DeepFlow is committed to maintaining the highest standards of data protection and privacy. We review and update this policy regularly to align with evolving regulations and industry standards, fostering trust and safeguarding user data. For any queries or concerns regarding your data, please contact our Data Protection Officer.
This policy was last updated on 27 March 2025 and may be subject to amendments following new regulatory requirements or internal practices.
Contact Information: privacy@deepflow.com; AI8 Ltd. 107 Cheapside, London, United Kingdom, EC2V 6DN