Legal

Privacy Policy

Last updated: May 26, 2026

1. Information We Collect

Account information. When you create a workspace, we collect your email address and an encrypted password. If you authenticate via Google OAuth, we receive your name and email from Google — no other profile data.

Workspace data. Content you create through the platform — campaigns, brand memory, session history — is stored in your isolated workspace. We do not access, read, or analyze your workspace content except when required to provide the service or comply with legal obligations.

Usage data. We collect anonymized usage metrics including session duration, feature usage frequency, and error logs for the purpose of improving the service. These metrics are not tied to your workspace content.

Payment information. If you subscribe to a paid plan, payment is processed by Stripe. We do not store credit card numbers or bank account details on our servers.

Website analytics and advertising data. On nxflo.io, analytics and advertising tags are optional. They do not load until you choose to allow analytics. If you choose essential-only browsing, those tags remain off.

2. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the nxflo platform
  • Authenticate your identity and secure your workspace
  • Send transactional communications (account confirmations, security alerts)
  • Monitor for abuse, fraud, and security threats
  • Comply with legal obligations

We do not sell your data. We do not use your workspace content to train AI models.

3. Data Storage and Security

Your data is stored on Google Cloud Platform infrastructure in the United States. Workspaces are fully isolated — each client operates in a separate environment with no shared tenancy.

Security measures include:

  • HMAC-signed session tokens with automatic rotation
  • Bcrypt-hashed credentials (cost factor 12)
  • TLS encryption for all data in transit
  • Rate limiting across REST, WebSocket, and authentication endpoints
  • Secrets managed via GCP Secret Manager (never stored on disk)

4. Ad Platform Integrations

When you connect advertising accounts (Meta, Google, TikTok, LinkedIn, Pinterest, Snapchat), nxflo accesses your ad account data through official platform APIs to provide campaign management, reporting, and optimization services. Specifically:

  • Data accessed: Campaign performance metrics, ad account settings, audience definitions, billing information, and conversion events
  • Data use: Exclusively to provide the services you request — campaign creation, performance analysis, budget optimization, and reporting within your workspace
  • Data storage: Ad platform data is stored in your isolated workspace on Google Cloud Platform infrastructure. We do not share your ad account data with other users or third parties
  • Data deletion: When you disconnect an integration or delete your account, all associated ad platform data is permanently removed within 30 days
  • Server-side tracking: If you enable Conversions API (CAPI) integrations, conversion event data is transmitted directly to the ad platform on your behalf. Personally identifiable information (PII) is hashed with SHA-256 before transmission and is not stored in plaintext

We do not sell, rent, or share your ad platform data. We do not use your ad account data to train AI models or for any purpose other than providing the Service to you.

5. Google Workspace and Google API Access

When you connect your Google account to nxflo, you grant the platform permission to access specific Google APIs on your behalf. nxflo uses these APIs exclusively to perform the marketing operations you request inside your workspace.

nxflo's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In particular:

  • We do not transfer Google user data to third parties except as necessary to provide or improve user-facing features that are prominent in the application's user interface.
  • We do not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising.
  • We do not sell Google user data, transfer it to data brokers, or use it to determine creditworthiness or lending eligibility.
  • Humans do not read your Google user data except (a) with your explicit consent for specific data, (b) for security investigations or to comply with applicable law, or (c) when the data has been aggregated and de-identified for internal operations such as debugging.
  • We do not use Google user data to train AI or machine learning models that generalize beyond your individual workspace.

The specific Google APIs nxflo may request access to, and how each is used inside your workspace:

Workspace productivity APIs

  • Google Calendar (calendar) — Create campaign launch events, review meetings, and check availability when scheduling marketing work.
  • Gmail (gmail.modify, gmail.send) — Send outreach emails, follow-ups, and notifications. Read message metadata when you ask the agent to triage or respond to a thread.
  • Google Drive (drive.file) — Create and access files the agent generates on your behalf, such as proposals, reports, and campaign assets. Limited to files nxflo itself creates or that you explicitly open with nxflo.
  • Google Sheets (spreadsheets) — Read and write spreadsheet data for performance reports, lead lists, and budget tracking.
  • Google Docs (documents) — Write LLM-generated marketing content (blog drafts, email copy, briefs) directly into your Docs and read existing Docs when you reference them in a prompt.
  • Google Slides (presentations) — Generate decks (campaign briefs, pitch outlines, performance summaries) and read existing Slides you reference.
  • Google Forms (forms.body) — Create lead-capture forms during onboarding and read submitted responses to route them into your CRM.
  • Google Tasks (tasks) — Populate marketing task lists with action items generated by the agent.
  • Google People / Contacts (contacts.readonly) — Read your contact list when you ask the agent to compose outreach for specific people. Read-only. Contact data is never stored outside your workspace or used for any purpose other than the immediate request.
  • Google Drive Activity (drive.activity.readonly) — Surface recent Drive activity (recent edits, new shares) in your dashboard so the agent can act on the latest version of a file.

Marketing and analytics APIs

  • Google Tag Manager (tagmanager.edit.containers, tagmanager.publish) — Create, update, and publish tags, triggers, and variables inside your GTM container on your behalf. Used to deploy GA4, Meta Pixel, Google Ads conversion, and custom tracking tags without manual GTM work.
  • Google Analytics (analytics.readonly) — Read GA4 reports for performance analysis and dashboards. Read-only.
  • Google Search Console (webmasters.readonly) — Read search performance, indexing status, and coverage data for SEO insights. Read-only.
  • Google Ads (adwords) — Create, manage, pause, and analyze Google Ads campaigns. Reads conversion data, keyword performance, and account settings.
  • Google AdSense (adsense.readonly) — Read AdSense earnings and performance for publishers managing display revenue. Read-only.
  • Google Business Profile (business.manage) — Update business listings (location info, hours, posts, and reviews) as part of managed local-marketing services.
  • YouTube (youtube.readonly) — Read channel insights, video performance, and subscriber trends for the analytics dashboard. Read-only.

Data handling. Data accessed via Google APIs is stored in your isolated workspace on Google Cloud Platform. We do not share it with other nxflo customers or sell it to any third party. Personally identifiable information that we transmit to conversion APIs is hashed with SHA-256 before transmission. When you disconnect a Google integration or delete your account, all associated Google API data is purged from our systems within 30 days. OAuth refresh tokens are encrypted at rest in Google Cloud Secret Manager and rotated automatically.

Revoking access. You can revoke nxflo's access to your Google account at any time at myaccount.google.com/permissions, or by disconnecting the integration from inside your workspace settings.

6. Third-Party Services

We use the following third-party services:

  • Anthropic — AI model provider for campaign generation and analysis
  • Google Cloud Platform — infrastructure hosting and data storage
  • Stripe — payment processing
  • Google Analytics / Google Tag Manager — website analytics and conversion measurement on nxflo.io when you allow analytics. Separate from the Google API access described in Section 5, which operates on your connected Google account.
  • Meta Platform — advertising API, Conversions API, Messenger integrations, and optional website conversion measurement when allowed
  • Google Ads, Google Workspace, Google Search Console, Google Business Profile, YouTube — see Section 5 for the full Google API surface and how each is used
  • Resend — transactional email delivery (welcome, security alerts, billing notices)
  • ElevenLabs — voiceover generation for video assets you produce inside the platform

Each provider is bound by their own privacy policies and data processing agreements. Your use of third-party ad platforms through nxflo remains subject to those platforms' terms of service.

7. Cookie and Tracking Choices

You can choose whether nxflo loads analytics and advertising technologies on the website. Essential browsing does not require analytics or advertising tags. If you allow analytics, your choice is saved in your browser so the site can remember it. You can reopen privacy choices from the footer at any time.

8. Data Retention

Your workspace data is retained for the duration of your account. If you delete your account, all associated workspace data, session history, brand memory, and connected-integration data (including data fetched from Google APIs) is permanently deleted within 30 days.

9. Your Rights

You may request access to, correction of, or deletion of your personal data at any time by contacting us at privacy@nxflo.io. For data sourced from Google APIs specifically, you can also revoke nxflo's access directly at myaccount.google.com/permissions.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or an in-app notification. Continued use of the platform after changes constitutes acceptance.

11. Contact

For privacy-related inquiries, contact privacy@nxflo.io.