Privacy Policy

1. Introduction

BankStatementFlow Inc. ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered document processing service.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you voluntarily provide to us when registering for an account, including:

• Name and email address
• Company information
• Billing and payment information
• Contact preferences

2.2 Document Data

When you use our service, you may upload financial documents such as bank statements, invoices, and receipts. We process this data to extract and structure the information according to your requirements.

2.3 Usage Information

We automatically collect certain information about your use of our service, including:

• Log data and access times
• IP addresses and device information
• Browser type and version
• Usage patterns and preferences

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service Provision: To provide, maintain, and improve our document processing services
• Account Management: To create and manage your account, process payments, and provide customer support
• Communication: To send you service-related notifications, updates, and marketing communications (with your consent)
• Security: To detect, prevent, and address technical issues and security threats
• Analytics: To understand how our service is used and to improve user experience

4. Data Processing and AI

4.1 Document Processing

Your uploaded documents are processed using advanced AI and machine learning algorithms to extract structured data. This processing occurs on secure, encrypted servers.

4.2 Data Retention

Document data is automatically deleted from our servers immediately after processing is complete, unless you specifically request longer retention. Processed data (extracted information) is retained according to your account settings.

4.3 Model Training

We do not use your personal documents to train our AI models. Our models are trained on anonymized, publicly available datasets and synthetic data.

5. Data Security

We implement comprehensive security measures to protect your information:

• Encryption: All data is encrypted in transit and at rest using industry-standard encryption (AES-256)
• Access Controls: Strict access controls and authentication mechanisms
• Infrastructure: Secure cloud infrastructure with regular security audits
• Compliance: SOC 2 Type II compliance and adherence to financial industry standards

6. Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except in the following circumstances:

• Service Providers: We may share information with trusted third-party service providers who assist in operating our service
• Legal Requirements: We may disclose information when required by law or to protect our rights and safety
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred

7. Your Rights and Choices

7.1 Access and Control

You have the right to:

• Access your personal information
• Correct inaccurate information
• Delete your account and associated data
• Export your processed data
• Opt-out of marketing communications

7.2 Data Portability

You can export your processed data at any time through your account dashboard in various formats including CSV, JSON, and Excel.

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience and analyze usage patterns. You can control cookie settings through your browser preferences.

9. International Data Transfers

Your information may be processed and stored in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information during international transfers.

10. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

11. Compliance

We comply with applicable data protection laws, including:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• Financial industry regulations and standards

12. Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Through our contact page
• By email at: [email protected]