Privacy Policy

Last updated: March 1, 2026

Expeed Software ("we", "us", or "our") operates the apptor Flow platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, company name, and role. If you sign in via SSO or SAML, we receive the identity attributes your provider shares.

Usage Data

We collect data about how you interact with the platform, including workflow execution logs, feature usage patterns, and performance metrics. This helps us improve reliability and user experience.

Workflow Data

Your workflow definitions, execution data, and any data processed through workflow nodes are stored to provide the service. For on-premise deployments, this data remains entirely within your infrastructure.

2. How We Use Your Information

  • To provide, maintain, and improve the apptor Flow platform
  • To execute workflows and process AI agent requests on your behalf
  • To send service-related communications and support responses
  • To monitor platform health, security, and performance
  • To comply with legal obligations and enforce our terms

We do not sell your personal information. We do not use your workflow data to train AI models.

3. Information Sharing

We may share your information with:

  • AI Providers: When your workflows use AI agent nodes, prompts and context are sent to the configured provider (OpenAI, Anthropic, Google, etc.) according to their respective privacy policies.
  • Integration Partners: When you connect third-party services via integrations, data is shared as required to execute those integrations.
  • Service Providers: We use infrastructure providers (cloud hosting, email delivery) who process data on our behalf under strict contractual obligations.
  • Legal Requirements: We may disclose information when required by law, regulation, or legal process.

4. Data Security

We implement industry-standard security measures including encryption at rest and in transit, role-based access controls, tenant isolation in multi-tenant deployments, and regular security assessments. Secrets and API keys are encrypted using AES-256 encryption.

For organizations with strict security requirements, our Enterprise plan offers on-premise deployment where all data remains within your own infrastructure.

5. Data Retention

We retain your account information for as long as your account is active. Workflow execution logs are retained according to your plan's retention policy. You may request deletion of your data at any time by contacting us.

On-premise customers manage their own data retention according to their internal policies.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal information
  • Export your workflow definitions and data
  • Object to or restrict certain processing activities
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with your local data protection authority

We support DPDP (India) and GDPR (EU) compliance requirements. Enterprise customers receive dedicated compliance support.

7. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at: