CellFlowCellFlow
Sign inStart free
Back to home

Privacy Policy

Last updated: 31/05/2026

This is a courtesy translation. In case of any discrepancy, the Portuguese version prevails.

1. Introduction

CellFlow respects the privacy of its users. This policy describes how we collect, use, store and protect your personal data, in line with applicable data protection law (including the EU/UK GDPR for customers in those regions and Brazil's LGPD — Law No. 13.709/2018).

2. Data We Collect

We collect the following data:

  • Registration data: name, email, phone, tax ID, business address
  • Usage data: access logs, features used, system logs
  • Business data: information on products, services, sales, repair jobs and customers you register
  • Payment data: processed exclusively by the Stripe platform; we do not store credit card details

3. Purpose of Processing

Your data is used to:

  • Provide the management service (system features)
  • Process payments and billing
  • Communicate about the service (updates, maintenance, alerts)
  • Continuously improve the system
  • Comply with legal obligations

4. Data Isolation

Each business has its data completely isolated. We use database security policies to ensure each business accesses only its own data. No business can view, edit or access another business's data.

5. Storage and Security

Data is stored on secure cloud infrastructure with the following security measures:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest
  • Automatic daily backups
  • Per-business data isolation
  • Secure authentication
  • Passwords stored with cryptographic hashing

6. Data Sharing

Your data may be shared only with:

  • Payment processor: for billing and financial management (name, email, tax ID)
  • Database provider: cloud storage infrastructure
  • Hosting provider: web application delivery infrastructure

We do not sell, rent or share your data with third parties for marketing purposes.

7. Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Confirm whether your data is being processed
  • Access your personal data
  • Correct incomplete or out-of-date data
  • Request erasure of unnecessary data
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at the email available in the system's support section.

8. Data Retention

Your data is kept while your account is active. After cancelling the subscription, data is kept for up to 90 days to allow reactivation. After that period, data may be permanently removed.

Data required to comply with legal obligations (such as accounting records) may be kept for longer periods as required by law.

9. Cookies

We use essential cookies for the system to work, including authentication cookies (user session) and the language preference cookie. We do not use third-party tracking or marketing cookies.

10. Changes to This Policy

This policy may be updated periodically. Significant changes will be communicated by email. We recommend reviewing this page periodically.

11. Contact

If you have any questions about this privacy policy or about the processing of your data, contact us through the support available in the system.