1. Who is responsible
OptiFlowz LLC is responsible for the OptiFlowz platform. Contact us at office@optiflowz.com or 30 N Gould St Ste R, Sheridan, WY 82801, USA.
2. Information we handle
- Account data: email address, verification status, account status, and authentication records.
- Device and security data: product and browser identifiers, device public keys, session records, and security/audit events.
- Purchase data: selected product and plan, amount, currency, Stripe customer and transaction references, subscription status, entitlement status, and refund history.
- Support data: messages, refund reasons, and information you choose to provide.
- Technical data: request metadata needed for security, reliability, and abuse prevention, which may include IP address, user agent, timestamps, and error logs.
OptiFlowz extensions must not send card numbers or bank credentials to the OptiFlowz API.
3. Why we use it
We use information to create and secure accounts, authenticate devices, provide and restore purchased access, create Stripe checkout and billing sessions, process eligible refunds, prevent fraud and abuse, troubleshoot failures, meet legal obligations, and improve service reliability.
4. Payment processing
Stripe processes checkout, card details, billing, tax-related payment information, and refunds under its own privacy terms. OptiFlowz receives identifiers and payment status needed to provide access; it does not receive the full card number from Stripe-hosted Checkout.
5. Service providers and disclosure
We share data only as needed with service providers such as Stripe for payments and Cloudflare for hosting, database, networking, and security. We may also disclose information when required by law, to protect users or the service, or in connection with a business reorganization subject to appropriate safeguards. We do not sell personal information.
6. Storage, retention, and security
We keep account, transaction, entitlement, refund, and audit data for as long as needed to provide the service, maintain security and financial records, resolve disputes, and meet legal obligations. We use access controls, encrypted transport, signed tokens, hashed refresh credentials, and separated test and production systems. No system can guarantee absolute security.
7. Cookies and local storage
The website uses security and account session mechanisms needed to sign you in and protect requests. Browser tools may store preferences, device credentials, and entitlement state locally. We do not use these necessary mechanisms to claim a payment completed before the backend confirms it.
8. International use
OptiFlowz and its providers may process data in the United States and other locations. Where required, transfers are handled using applicable contractual or legal safeguards.
9. Your choices and rights
Depending on your location, you may have rights to access, correct, delete, restrict, object to, or obtain a copy of personal information, and to complain to a regulator. Email office@optiflowz.com. We may need to verify the request and may retain information required for security, payment records, disputes, or law.
10. Children and changes
The platform is not directed to children under 16, and we do not knowingly collect their personal information. We may update this policy as the platform or law changes; the posted effective date identifies the current version.