Privacy Policy

1. Introduction

Welcome to MetaFlow.

FlowApp, LLC operates the website https://metaflowapp.xyz and the MetaFlow software application and related services (collectively, the "Service"). In this Privacy Policy, "we," "us," and "our" mean FlowApp, LLC. The MetaFlow name and branding refer to our product; unless the context refers only to the software or brand as such, references to "MetaFlow" that describe who collects, uses, or discloses information also mean FlowApp, LLC.

This Privacy Policy should be read together with the MetaFlow Terms of Service and Refund Policy, End User License Agreement.

This Privacy Policy explains how we collect, use, safeguard, and disclose information when you use the MetaFlow software and the Service.

MetaFlow is an AI-powered software platform designed to analyze images and videos and to generate metadata and recommendations for stock, media, and commercial usage.

By using the MetaFlow software or Service, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Definitions

For the purposes of this Privacy Policy:

SERVICE

means the MetaFlow software application (including desktop and/or web-based versions), the website https://metaflowapp.xyz, and all related online services, features, and functionalities operated by us.

PERSONAL DATA

means any information relating to an identified or identifiable natural person ("data subject"), directly or indirectly, including data that can be reasonably linked to an individual.

USAGE DATA

means data collected automatically through the use of the Service or generated by the Service infrastructure, including but not limited to application usage statistics, feature interactions, session duration, and diagnostic data.

COOKIES

means small data files stored on a user's device (computer, mobile device, or other supported device) that help improve functionality, performance, and user experience of the Service.

DATA CONTROLLER

means the natural or legal person who determines the purposes and means of the processing of Personal Data. For the purposes of this Privacy Policy, we act as the Data Controller.

DATA PROCESSORS (OR SERVICE PROVIDERS)

means third-party natural or legal persons who process data on behalf of the Data Controller. We may use such providers to support software functionality, analytics, AI processing, infrastructure, and payment services.

DATA SUBJECT

means any living individual whose Personal Data is processed through the Service.

USER

means any individual who accesses or uses the MetaFlow software application or related services. The User may be a Data Subject where Personal Data is involved.

3. Information Collection and Use

We collect and process certain types of information in order to operate, maintain, and improve the MetaFlow software application and related online services.

This information is used to provide core functionality, perform image and video analysis, generate metadata and recommendations, ensure service security, and improve overall user experience.

The types of information collected and the purposes of their use are described in the sections below.

4. Types of Data Collected

Personal Data

While using the MetaFlow software or related online services, we may ask you to provide limited personally identifiable information ("Personal Data") that is necessary to operate the Service, manage your account, or communicate with you.

Such information may include, but is not limited to:

- Email address

- First name and last name (if provided by the user)

We do not require users to provide physical address details such as street address, ZIP/postal code, or city unless explicitly needed for a specific feature or legal requirement.

Personal Data may be used to:

- Provide access to the software and its features

- Communicate important service-related information (account notices, updates, security messages)

- Respond to user inquiries and support requests

We do not send marketing emails by default. If promotional or informational emails are sent in the future, users will always have the option to opt out.

Usage Data

We may automatically collect certain technical and usage-related information when you use the MetaFlow application or visit our website ("Usage Data").

This Usage Data may include:

- IP address

- Device and operating system type

- Browser type and version (for web access)

- Pages or features accessed

- Date and time of access

- Diagnostic and performance data

This information is used in aggregated form to:

- Improve application performance and stability

- Diagnose technical issues

- Enhance user experience

5. Use of Data

We use collected data solely to operate, maintain, and improve the MetaFlow software and related services.

Collected data may be used to:

- Provide access to application features and AI-powered analysis

- Deliver essential service and account-related communications

- Provide user support and respond to inquiries

- Monitor and improve application performance, stability, and usability

- Detect, prevent, and resolve technical or security issues

- Manage subscriptions, usage limits, and billing where applicable

- Comply with legal obligations and enforce applicable terms

We do not use collected data for advertising profiling or sell personal data to third parties.

AI-generated outputs and recommendations provided through the Service are informational and advisory only. Users remain fully responsible for reviewing and deciding how to use generated results, including submissions to stock platforms or third-party services.

6. Retention of Data

We retain Personal Data only for as long as necessary to operate the application, provide requested services, and fulfill the purposes described in this Privacy Policy.

Personal Data may be retained where required to:

- Comply with legal or regulatory obligations

- Resolve disputes or enforce agreements

- Maintain account, subscription, or usage records

Usage Data is retained for internal analytical and technical purposes, such as improving performance, security, and stability of the software. Usage Data is generally stored for a limited period unless a longer retention is required for security, abuse prevention, or legal compliance.

When data is no longer required, it is securely deleted or anonymized.

7. Transfer of Data

Your information, including Personal Data, may be transferred to and processed on servers located outside of your country, state, or jurisdiction, where data protection laws may differ.

We use cloud infrastructure and third-party service providers to operate the application and perform AI-based analysis. As a result, data may be processed in multiple jurisdictions where our service providers operate.

We take reasonable technical and organizational measures to ensure that your data is handled securely and in accordance with this Privacy Policy and applicable data protection laws. Data transfers are performed only where appropriate safeguards are in place.

By using the Service and providing your information, you acknowledge and agree to such data transfers.

8. Disclosure of Data

We may disclose your Personal Data only in the following limited circumstances.

Legal Requirements

We may disclose your Personal Data if required to do so by law, regulation, or in response to valid requests by public authorities (e.g. courts or government agencies).

Service Providers

We may share your data with trusted contractors, service providers, and partners who assist us in operating the Service, processing payments, performing analytics, or providing AI-based functionality. These parties are obligated to protect your data and use it only for the specified purposes.

Business Purposes

We may disclose information where necessary to:

- operate, maintain, and improve the Service

- fulfill the purpose for which you provided the data

- enforce our agreements and policies

With Your Consent

We may disclose your information in other cases only with your explicit consent.

We do not sell, rent, or trade your Personal Data to third parties.

9. Security of Data

The security of your data is important to us. We implement commercially reasonable technical and organizational measures designed to protect Personal Data against unauthorized access, alteration, disclosure, or destruction.

These measures may include access controls, data minimization, secure communication channels, and restricted internal access to user data.

However, please note that no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your Personal Data, we cannot guarantee absolute security.

Users are responsible for maintaining the confidentiality of their account credentials and for any activity that occurs under their account.

10. Your Data Protection Rights Under General Data Protection Regulation (GDPR)

If you are a resident of the European Union (EU) and European Economic Area (EEA), you have certain data protection rights, covered by GDPR. - See more at: https://eur-lex.europa.eu/eli/reg/2016/679/oj

We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please email us at contact@metaflowapp.xyz.

In certain circumstances, you have the following data protection rights:

- the right to access, update or to delete the information we have on you

- the right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete

- the right to object. You have the right to object to our processing of your Personal Data

- the right of restriction. You have the right to request that we restrict the processing of your personal information

- the right to data portability. You have the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format

- the right to withdraw consent. You also have the right to withdraw your consent at any time where we rely on your consent to process your personal information

Please note that we may ask you to verify your identity before responding to such requests. If you do not provide certain necessary data, we may not be able to provide the Service.

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

11. Your Data Protection Rights under the California Consumer Privacy Act (CCPA)

If you are a California resident, you are entitled to learn what data we collect about you, ask to delete your data and not to sell (share) it. To exercise your data protection rights, you can make certain requests and ask us:

a) What personal information we have about you

If you make this request, we will return to you

- The categories of personal information we have collected about you

- The categories of sources from which we collect your personal information

- The business or commercial purpose for collecting or selling your personal information

- The categories of third parties with whom we share personal information

- The specific pieces of personal information we have collected about you

- A list of categories of personal information that we have sold, along with the category of any other company we sold it to. If we have not sold your personal information, we will inform you of that fact

- A list of categories of personal information that we have disclosed for a business purpose, along with the category of any other company we shared it with

Please note, you are entitled to ask us to provide you with this information up to two times in a rolling twelve-month period. When you make this request, the information provided may be limited to the personal information we collected about you in the previous 12 months

b) To delete your personal information

If you make this request, we will delete the personal information we hold about you as of the date of your request from our records and direct any service providers to do the same. In some cases, deletion may be accomplished through de-identification of the information. If you choose to delete your personal information, you may not be able to use certain functions that require your personal information to operate

c) To stop selling your personal information

We don't sell or rent your personal information to any third parties for any purpose. You are the only owner of your Personal Data and can request disclosure or deletion at any time

Please note, if you ask us to delete or stop selling your data, it may impact your experience with us, and you may not be able to participate in certain programs or membership services which require the usage of your personal information to function. But in no circumstances, we will discriminate against you for exercising your rights

To exercise your California data protection rights described above, please send your request(s) by one of the following means:

By email: contact@metaflowapp.xyz

Your data protection rights, described above, are covered by the CCPA, short for the California Consumer Privacy Act. To find out more, visit the official California Legislative Information website. The CCPA took effect on 01/01/2020.

12. Service Providers

We may use third-party companies and individuals ("Service Providers") to operate, maintain, and improve the Service, including infrastructure services, artificial intelligence-based analysis, analytics, and payment processing.

Service Providers may access Personal Data only to perform specific tasks on our behalf and are contractually obligated to protect such data and not use it for any other purpose.

Some Service Providers, including artificial intelligence providers such as OpenAI, may process data outside of your country of residence. Any such data transfers are carried out in accordance with applicable data protection laws and appropriate safeguards.

13. AI Processing and Media Analysis

We use artificial intelligence technologies to analyze images and videos uploaded or referenced by users.

Media files may be processed temporarily for analysis purposes, including but not limited to visual recognition, metadata generation, quality assessment, and content classification.

AI analysis is advisory only and does not guarantee acceptance by any stock platform or third-party service.

We use third-party AI providers, including OpenAI, to perform automated analysis and generation tasks.

Only the data necessary to perform these tasks is transmitted, and we do not sell user media or analysis results.

14. Payments

We may offer paid digital services, subscriptions, or usage-based credits within the application or related services.

All payments are processed by third-party payment providers (such as Stripe for card payments and NOWPayments for cryptocurrency or other methods we may enable). We do not store, process, or have access to users' payment card details, wallet credentials, or other sensitive payment information.

Each provider processes payments in accordance with its own Privacy Policy, Terms of Service, and applicable laws and regulations. We are not responsible for the processing of payments performed by third-party providers.

Prices shown in the Website or Software do not include payment processor fees, surcharges, or commissions; the final amount charged depends on the payment method and provider you choose at checkout.

Users are solely responsible for any applicable fees, taxes, exchange rate differences, blockchain network fees, or other costs imposed by the payment provider or underlying payment network.

15. Links to Other Sites

Our Service may contain links to third-party websites or services that are not operated or controlled by us.

If you click on a third-party link, you will be directed to that third party's website. We strongly recommend that you review the Privacy Policy and Terms of Service of every website you visit.

We have no control over and assume no responsibility for the content, privacy policies, practices, or availability of any third-party websites or services.

16. Children's Privacy

Our Services are not intended for use by children under the age of 16.

We do not knowingly collect or process personal data from individuals under the age of 16. If you believe that a child has provided us with Personal Data without parental consent, please contact us immediately.

If we become aware that Personal Data has been collected from a child under the age of 16 without verified parental consent, we will take reasonable steps to remove such information from our systems.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Any changes will be posted on this page with an updated effective date. If the changes are significant, we may notify you via email or by a prominent notice within the MetaFlow application or website.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Changes to this Privacy Policy become effective when they are published on this page.

18. Contact Us

If you have any questions about this Privacy Policy, please contact us.

By email: contact@metaflowapp.xyz.

Last update: 05 April 2026