Flen AI

Flen Inc. — Privacy Policy

Effective date: November 10, 2025

This Privacy Policy explains how Flen Inc. ("Flen", "we", "us", "our") collects, uses, discloses and protects personal data when businesses ("Customers") and their authorized users ("Users") access or use our products, services, website, platform and related tools (collectively, the "Service").

1. Who We Are

Flen Inc. is a U.S.-registered company that provides AI-powered digital tools including website builders and business profile analysis software. We act primarily as a service provider / processor for Customer data.

2. Scope of this Privacy Policy

This Policy applies to:

  • Visitors to our website (https://www.flen.in/)
  • Customers who sign up for our platform
  • Users who access the Service under a Customer account

This Policy does not apply to the personal data of our Customers’ end-users (such as consumers that interact with your business). Customers are responsible for providing their own privacy notices to their end-users.

3. Information We Collect

We collect the following categories of information:

A. Information You Provide

  • Account information: Name, business name, email address, phone number, role, business profile details.
  • Support information: Messages you send us via email, phone, chat or WhatsApp.
  • Form submissions: Information you provide when scheduling demos or requesting support.
  • Customer Content: Data (including text, business information, website content) uploaded or generated while using the Service.

B. Information Collected Automatically

When you access the Service, we automatically collect:

  • Usage data and analytics: Access times, feature usage, clicks, device information.
  • Log information: IP address, browser type, operating system.
  • Error and session data: Through third-party tools like PostHog, Sentry and similar providers.

C. Information from Third-Party Integrations

If you connect third-party accounts (such as Google Analytics via OAuth), we may receive:

  • Authorization tokens
  • Analytics account identifiers
  • Basic profile metadata

We do not access or collect data from third-party integrations beyond what is necessary to provide the requested functionality.

4. How We Use Information

We use personal data to:

  • Provide, maintain and improve the Service
  • Personalize the Customer experience
  • Debug, analyze performance and fix issues
  • Communicate with Customers (onboarding, service updates, support)
  • Schedule demos and manage Customer requests
  • Secure our systems and detect misuse

We may use aggregated or anonymized data (which cannot identify individuals) for analytics, product improvement and internal business purposes.

We do not sell personal data.

5. How We Process Customer Content

Customers own all Customer Content they upload or create. We process Customer Content only:

  • On Customer instructions
  • To operate, maintain and improve the Service
  • To comply with applicable law

We are not the controller of Customer Content. Customers are responsible for ensuring their collection and use of data complies with applicable laws.

6. Legal Bases for Processing (for applicable regions)

Where required (such as in the EEA, UK or similar regions), we process personal data based on:

  • Contract necessity: To deliver the Service.
  • Legitimate interests: To improve our Service, secure systems, analyze usage and communicate with Customers.
  • Consent: When Customers explicitly consent (e.g., demo signup forms).
  • Legal obligations: Where processing is required by law.

7. Sharing of Information

We may share personal data with:

A. Service Providers (Processors)

We use reputable third-party providers to operate the Service, including:

  • AWS (infrastructure)
  • LangGraph (AI components)
  • Calendly (demo scheduling)
  • Third-party LLM providers (AI processing)
  • Google Workspace (emails)
  • SendGrid (transactional emails)
  • PostHog (analytics)
  • Sentry (error tracking)

These providers may process data on our behalf and only under strict contractual obligations.

B. Legal and Safety Obligations

We may disclose data when required to:

  • Comply with legal obligations
  • Respond to lawful requests from authorities
  • Prevent fraud, misuse or security threats

C. Business Transfers

If Flen undergoes a merger, acquisition, financing or asset sale, data may be transferred to the new owners.

We do not share Customer Content with third parties other than as needed to provide the Service.

8. Data Retention

  • We retain Customer Content and personal data for as long as the Customer account is active.
  • Upon Customer request, we will delete Customer Content (subject to verification).
  • After account termination, Customer Content will be available for 30 days for export and then deleted permanently unless required by law.
  • Logs and analytics data may be retained for a longer period in aggregated or anonymized form.

9. Data Security

We use administrative, technical and physical safeguards to protect personal data, including:

  • Encrypted data transfer
  • Secure cloud infrastructure
  • Access controls and authentication
  • Monitoring and auditing tools

While we work to secure data, no system is perfectly secure. Customers should maintain strong passwords and proper access controls.

10. International Data Transfers

Because Flen is a U.S. company, personal data may be processed in the United States or other countries where our service providers operate.

We use reasonable legal mechanisms (such as standard contractual clauses) for cross-border transfers when required by law.

11. Customer Responsibilities

Customers are responsible for:

  • Complying with privacy and data protection laws applicable to their own customers
  • Providing notices and collecting any required consents from their end-users
  • Ensuring the legality of Customer Content uploaded to the Service

12. Children’s Privacy

Flen does not knowingly collect or process information of children under the age required by applicable law. Customers may not use the Service to target or collect information from minors without lawful basis.

13. Your Choices

You may:

  • Access and update your account information
  • Request deletion of your data
  • Disable third-party integrations
  • Opt out of non-essential communications

To make a request, contact us using the information below.

14. Changes to this Policy

We may update this Privacy Policy occasionally. For significant changes, we will provide 30 days’ notice by email or by posting an update on our website.

Continued use of the Service after changes become effective means you accept the updated Policy.

15. Contact Us

For privacy inquiries, requests or feedback, contact us at:

Flen Inc.

Email: hi@flen.in