Claryflow

Privacy Policy

1. Our mission and responsibility

Claryflow was created to help digital product creators, co-producers and traffic managers automate their pre- and post-checkout communications — with a focus on efficiency, personalization and results.

Throughout this process, we handle information about leads, messages and integrations that involve personal data. Therefore, our priority is to ensure that such processing takes place within the limits of Brazil's General Data Protection Law (LGPD – Law no. 13.709/2018).

2. What data we collect and why

When you use our platform, some data is inevitably collected so that we can deliver the service with quality and security. This data can come from three sources:

a) Data you provide to us This is the information you send us when creating an account, purchasing a plan or setting up integrations. It includes your name, email, WhatsApp number, payment information and, where applicable, details about your company.

This information allows us to create your account, issue invoices and ensure your messages are sent correctly.

b) Automatically collected data When you use Claryflow, we collect technical data such as IP address, browser type, access logs and usage behavior within the platform.

This data is important for optimizing system performance, identifying errors, preventing fraud and delivering an increasingly stable experience.

c) Data received from integrations When you connect accounts from platforms such as Kiwify, Hotmart, Hubla, Kirvano and others, we receive information necessary to automate your follow-up flows. This may include names, emails and purchase status of your leads. We use this data solely for automation purposes and never for our own marketing.

3. How we use your information

We use your personal data exclusively to:

  • Provide and maintain the contracted service.
  • Operate WhatsApp follow-up automations based on your configured flows.
  • Issue charges, invoices and manage your subscription plan.
  • Provide technical support and administrative communications.
  • Continuously improve our products and reports.
  • Comply with legal obligations and ensure platform security.

We never use your information for purposes unrelated to the service, nor do we sell customer data.

4. Legal bases for data processing

All data processing carried out by Claryflow is based on legal grounds provided for in the LGPD, such as:

  • Contract performance, when we need to process information to provide the service;
  • Legitimate interest, to improve features and ensure platform security;
  • Compliance with legal obligations, especially relating to invoicing and fraud prevention;
  • Consent, in cases where the user opts in to receive marketing communications or updates.

5. Security and data storage

Claryflow employs rigorous digital security practices. All data is stored on protected and encrypted servers.

We continuously monitor for unauthorized access attempts and maintain detailed activity logs for auditing and traceability.

In the event of a security incident that could affect your data, we will communicate transparently and within the timeframes required by law.

6. Sharing with partners and third parties

Using Claryflow depends on integrations with external services, such as payment providers (Stripe, Abacate Pay), automation services (n8n) and sending APIs (Meta's Official WhatsApp API).

We share with these partners only the information necessary to carry out contracted functions. All partners are selected based on their reputation and compliance with data protection legislation. No data is shared for advertising, remarketing or sale purposes.

7. Data retention and deletion

We retain your personal data only for as long as necessary to fulfill the purposes described in this Policy — typically while your account is active or while there are related legal obligations (such as tax records).

When you close your account or request deletion, your data is securely removed, except for data that the law requires to be retained for a specific period.

8. Your rights as a data subject

Under the LGPD, you have the right to:

  • Confirm whether we process your data and request access to it;
  • Correct incomplete, inaccurate or outdated information;
  • Request the deletion or anonymization of unnecessary data;
  • Revoke previously given consents;
  • Request portability to another provider;
  • Be informed about sharing with third parties.

These requests can be made by sending an email to [email protected]. We will respond within a reasonable timeframe, in accordance with applicable law.

9. Cookies and analytics tools

Claryflow uses cookies only for functional and performance purposes. These small files help keep you logged in, remember your preferences and measure usage metrics, without collecting sensitive information.

You can disable cookies in your browser at any time, although some parts of the platform may not function correctly as a result.

10. Communications and marketing

We may periodically send emails about new features, improvements or plans. You can unsubscribe from these at any time by clicking "Unsubscribe" or contacting us.

We will continue to send only messages related to your account, such as payment notices or security updates.

11. International data transfers

As we use cloud infrastructure (for example, AWS and Google Cloud), some data may be processed outside Brazil. Even in these cases, we ensure that providers follow international protection standards and we enter into contracts that guarantee compliance with the LGPD.

12. Updates to this policy

Technology and laws change, and so our Privacy Policy may be updated from time to time. Whenever there are significant changes, you will be notified by email or within the platform itself.

The most recent version will always be available on this page, with the update date clearly indicated.

Contact: [email protected] · © Claryflow - 2026