EngineFluxEngineering Delivery Control Room

Privacy Policy

Last updated: February 2025

1. Introduction

EngineFlux.io ("we," "our," or "us") operates the EngineFlux.io delivery control room application. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. By using EngineFlux.io, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We may collect information that you provide directly to us, as well as information that is automatically collected when you use our service:

  • Account information: Name, email address, and other details you provide when creating an account.
  • Usage data: Information about how you interact with our application, including features used and actions taken.
  • Device and log data: IP address, browser type, operating system, and similar technical information.
  • Integration data: If you connect third-party tools (e.g., Jira, Slack), we may receive data necessary to provide those integrations.

3. How We Use Your Information

We use the information we collect to provide, maintain, and improve our service; to process transactions; to communicate with you; to enforce our terms; and to comply with legal obligations. We do not sell your personal information to third parties.

4. Cookies and Similar Technologies

We use cookies and similar technologies to maintain your session, remember your preferences, and analyze usage. You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of our service.

5. Third-Party Services

We use third-party services to operate our application, including authentication (Clerk), billing and payment processing, and hosting. These providers have their own privacy policies governing how they handle your data. We encourage you to review their policies.

6. Guidelines for Sub-processors

Where we engage sub-processors (third parties that process personal data on our behalf to deliver the Service), we apply the following guidelines:

  • Selection: We engage sub-processors only where necessary for the provision of the Service and where we have assessed that they provide sufficient guarantees to implement appropriate technical and organizational measures.
  • Contractual terms: Where required by applicable law, we put in place written agreements that impose on sub-processors obligations that are no less protective than those we have toward you, including with respect to confidentiality, security, and lawful processing.
  • Transparency: We maintain a list of current sub-processors and the purposes for which they process data. You may view this list at EngineFlux.io/sub-processors.
  • Changes: We may add or replace sub-processors from time to time. We will update the sub-processors page and, where required by law or our agreements, we will inform you of changes and provide you with an opportunity to object where applicable.

These guidelines do not create additional contractual obligations beyond what is set out in our Terms of Service and this Privacy Policy. If you have questions about our use of sub-processors, contact us at privacy@engineflux.io.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. We may retain certain information as required by law or for legitimate business purposes such as resolving disputes and enforcing our agreements.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is completely secure.

9. Your Rights

Depending on your location, you may have the right to:

  • Access, correct, or delete your personal information
  • Object to or restrict certain processing
  • Data portability
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with a supervisory authority

To exercise these rights, please contact us using the information below.

10. Procedure for handling requests for data deletion

If you request deletion of your personal data, we handle it as follows, subject to applicable law:

  • Submitting a request: You may request deletion by contacting us at privacy@engineflux.io. You may also delete your account and associated data through your account or authentication provider settings where we make that option available.
  • Verification: We may need to verify your identity before processing a deletion request to protect your data from unauthorized deletion.
  • Scope and processing: We will delete or anonymize the personal data we hold about you that is within the scope of your request and not subject to an exception below. Deletion is carried out in our primary systems without undue delay, and we use reasonable efforts to remove your data from sub-processors (e.g. authentication or billing providers) where we control the relationship and they support such requests. Those providers may have their own retention and deletion policies.
  • Response and timing: We will respond to your request within the timeframe required by applicable law (for example, within 30 days where the GDPR or similar law applies). Completion of deletion may take additional time where technically necessary or where we must coordinate with sub-processors.
  • Exceptions: We may retain data where we are under a legal obligation to retain it, where retention is necessary for the establishment, exercise, or defense of legal claims, for legitimate business purposes such as fraud prevention or enforcing our agreements, or where deletion is not reasonably feasible (for example, in backup systems until overwritten in the normal course). Where we retain data under an exception, we will limit access and use to the purpose for which it is retained.

This procedure is subject to applicable data protection laws. If you are in a jurisdiction that affords different or additional rights, we will comply with those requirements to the extent they apply to our processing of your data.

11. Children's Privacy

Our service is not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us.

12. International Transfers

Your information may be transferred to and processed in countries other than your country of residence. We take steps to ensure that such transfers comply with applicable law and that your information receives an adequate level of protection.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the service after such changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at: privacy@engineflux.io

← Back to sign inTerms of ServiceSub-processors