Effective Date: March 4, 2024
When you visit our website or use Stitchflow services, you trust us with information and data. We are committed to keeping that trust, and that starts with helping you to understand our privacy practices.
Stitchflow, Inc. (“Stitchflow”, “we”, or “our”) operates the website www.stitchflow.io (the “Site”) to provide information about our services (the “Services”), which include without limitation offering no-code cross-tool dashboards for Corporate IT via a license. We provide Services via an interactive portion of the Site as well as through external applications.
This privacy policy (“Privacy Policy”) informs you of our policies regarding the collection, use and disclosure of Personal Data (as defined) and other data when you use our Site or Services and the choices you have associated with that data.
We use your data to provide and improve the Site and Services and to collect data to market our Services. By using the Site or Services, you agree to the collection and use of data in accordance with this policy.
We collect several different types of data for various purposes to provide and improve our Site and Services to you.
Stitchflow’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
PLEASE NOTE THAT WE WILL NEVER SELL YOUR PERSONAL INFORMATION OR DATA TO ANY THIRD PARTY.
When you browse or visit our Site, contact us, or set up a user account with us, we might collect information that you voluntarily provide to us, such as through a web form, in an email or other message (including in the “envelope” of the message, such as the From: or Subject: lines), or during the account creation process . The information we or our vendors collect directly from you may include:
We may use your Personal Data to contact you with marketing or promotional materials, such as newsletters, and other data that may be of interest to you. You may opt out of receiving any or all of these communications from us by following an unsubscribe link or instructions provided in any email we send.
In connection with the use of the Services, Stitchflow will collect data from third-party systems that are integrated with the Services. These integrations are authorized and enabled by the Administrators of a Stitchflow account. The information we collect directly from third-party systems will vary based on the system and may include:
We may disclose updates and modifications to the above information back to the originating third-party system as part of the Services. Stitchflow will never use or transfer data obtained through Google’s APIs to serve users advertisements and will comply with Google API Services User Data Policy.
We may collect data on how the Site is accessed and used (“Usage Data”). This Usage Data may include data such as your computer’s Internet Protocol address, browser type, browser version, the pages of our Site that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers, and other diagnostic data.
We may use and store data about your location if you give us permission to do so (“Location Data”). We may use this data to provide additional Site features or to improve and customize our Site. You can enable or disable location services when you use our Site at any time by way of your device settings.
We may use Cookies (a small amount of data, which often includes an anonymous unique identifier, that is sent to your browser from a web site’s computers and stored on your computer’s hard drive) and similar tracking technologies to track the activity on our Site, and these Cookies and technologies hold certain data. We may also use other tracking technologies such as beacons, tags, and scripts to collect and track data and to improve and analyze our Site and Services. You can instruct your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if you do not accept Cookies, you may not be able to use some portions of our Site and Services.
Stitchflow may use the data it collects for various purposes:
Stitchflow will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
Typically, we retain Personal Data about you for as long as you have an open user account with us and for twelve (12) months after you close your user account. Thereafter, we retain some data in a depersonalized or aggregated form but not in a way that would identify you personally
Stitchflow will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Site, or we are legally obligated to retain this data for longer periods.
Your data, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside the United States and choose to provide data to us, please note that we transfer the data, including Personal Data, to the United States and process it there.
Your consent to this Privacy Policy followed by your submission of such data represents your agreement to that transfer.
Stitchflow will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and that no transfer of your Personal Data take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal data.
If Stitchflow is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred. We will provide notice before your Personal Data is transferred and becomes subject to a different Privacy Policy.
Under certain circumstances, Stitchflow may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
Stitchflow may disclose your Personal Data in the good faith belief that such action is necessary to:
For all categories of information that we collect, Stitchflow may disclose Personal Data to our service providers for various business purposes, including, but not limited to, auditing interactions with users, debugging our websites, products and services, security purposes, internal research, short-term uses such as payment processing, IT services, as well as to perform other services on our behalf. For example, Stitchflow may use service providers to help us derive application analytics from the use of our Services, or enable features within the Services. Stitchflow will never share user information with third-party AI model service providers. For a current list of Service Providers that process Personal Data, please contact us by email at subprocessors@stitchflow.io.
The security of your data is important to us, but no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
Stitchflow practices are that Personal Data transmitted over public networks is encrypted with the latest recommended secure cipher suites, including use of TLS 1.2 protocols, and SHA2 signatures, which also applies to Personal Data transmitted between you and Stitchflow and through the Services.
Personal Data is hosted in Stitchflow’s shared infrastructure and segregated logically by user ID. Stitchflow uses industry standard methods for data encryption and key management. Furthermore, we authorize select employees to access Personal Data only as needed to fulfill their job responsibilities.
We do not support Do Not Track (“DNT”). DNT is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable DNT by visiting the Preferences or Settings page of your web browser.
If you are a resident of the European Economic Area, you have certain data protection rights. Stitchflow aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data. If you wish to be informed about what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.
In certain circumstances, you have the following data protection rights:
The right to access, update, or delete Personal Data: Whenever possible, you can access, update, or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
The right of rectification: You have the right to have your Personal Data rectified if that data is inaccurate or incomplete.
The right to object: You have the right to object to our processing of your Personal Data.
The right of restriction: You have the right to request that we restrict the processing of your Personal Data.
The right to data portability: You have the right to be provided with a copy of Personal Data in a structured, machine-readable, and commonly used format.
The right to withdraw consent: You also have the right to withdraw your consent at any time Stitchflow relied on your consent to process your Personal Data.
Please note that we may ask you to verify your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more data, please contact your local data protection authority in the European Economic Area.
For this section, we use the terms “Personal Data” and “processing” as they are defined in the GDPR, but “Personal Data” generally means data that can be used to individually identify a person, and “processing” generally covers actions that can be performed in connection with data such as collection, use, storage and disclosure. Stitchflow may act as either a Data Processor or Data Controller (as defined by the GDPR). In general, Stitchflow will be the controller of your Personal Data processed in connection with the Services. Note that we may also process Personal Data of our customers’ end users or employees in connection with our provision of the Services to customers, in which cases we are the processor of Personal Data. If we are acting as the Data Processor of your Personal Data rather than the Data Controller, please contact the Data Controller first to address your rights with respect to such data.
If there are any conflicts between this section and any other provision of this Privacy Policy, the policy or portion that is more protective of Personal Data shall control to the extent of such conflict. If you have any questions about this section or whether any of the following applies to you, please contact us at legal@stitchflow.io.
If you are from the European Economic Area (“EEA”), Stitchflow’s legal basis for collecting and using the personal data described in this Privacy Policy depends on the Personal Data (as defined by the GDPR) we collect and the specific context in which we collect it.
Stitchflow may process your Personal Data because:
Contractual Necessity: We process the following categories of Personal Data as a matter of “contractual necessity”, meaning that we need to process the data to perform under our Terms of Service or other contract with you, which enables us to provide you with the Services. When we process data due to contractual necessity, failure to provide such Personal Data will result in your inability to use some or all portions of the Services that require such data.
Consent: In some cases, we may process Personal Data based on the consent you expressly grant to us at the time we collect such data. When we process Personal Data based on your consent, it will be expressly indicated to you at the point and time of collection.
Other Processing Grounds: From time to time we may also need to process Personal Data to comply with a legal obligation, if it is necessary to protect the vital interests of you or other data subjects, or if it is necessary for a task carried out in the public interest.
Legitimate Interest: We process the following categories of Personal Data when we believe it furthers the legitimate interest of us or third parties.
First and last name
Email address
Telephone number
IP address
Web browser data
Page view statistics
Browsing history
Usage data
Transaction data (e.g. transaction amount, date and time such transaction occurred)
Log data (e.g. access times, and software data)
Examples of these legitimate interests include:
Operation and improvement of our business, products and services
Marketing of our products and services
Provision of customer support
Protection from fraud or security threats
Compliance with legal obligations
We may use third-party services (“Site Providers”) to monitor and analyze the use of our Site and Services and perform tasks on our behalf. These Site Providers have access to your Personal Data only to perform these tasks and are obligated not to disclose or use it for any other purpose. Here are some examples of Site Providers:
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Site. These data are shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.
You can opt out of having made your activity on the Site available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing data with Google Analytics about visit activity.
For more data on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy?hl=en
Google AdWords remarketing service is provided by Google Inc.
You can opt out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads
Google also recommends installing the Google Analytics Opt-out Browser Add-on—https://tools.google.com/dlpage/gaoptout—for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics.
For more data on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy?hl=en
Stitchflow may also use remarketing services to advertise on third-party websites to you after you visited our Site (via Google AdWords or other providers), and such remarketing vendors use cookies to inform, optimize, and serve ads based on your past visits to our Site.
Our Site may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit.
We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.
Our Site is not intended for people under the age of 18 (each a “Child”).
We do not knowingly collect personally identifiable data from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from a Child without verification of parental consent, we take steps to remove that data from our servers.
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and by updating the “effective date” at the top of this Privacy Policy. Please review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when posted.
If you have any questions about this Privacy Policy, please contact us at legal@stitchflow.io.