Privacy Policy & Security
Last updated: May 2026 · Effective immediately
Useflow ("we", "our", "us") is a sound-visual studio for creative artists. This policy explains what data we collect, how we use it, and the security measures we take to protect it. We believe in transparency — if you have questions, email us at support@useflow.art.
1. Data we collect
We collect the minimum data necessary to run the service:
- Account data: Name, email address, and profile picture from Google Sign-In. We never see your Google password.
- Project data: Project names, design parameters (particle mode, symmetry, brush settings), beat positions, and thumbnail snapshots of your canvas art.
- Audio files: Audio you upload is stored locally in your browser only (IndexedDB) and is never uploaded to our servers.
- Payment data: We store a payment reference ID and the tier/duration granted. Full card or bank details are handled exclusively by Razorpay — we never see them.
- Usage data: Standard server logs (IP address, request path, timestamp). Logs are retained for 30 days.
2. How we use your data
- To provide and improve the Useflow studio.
- To authenticate you and persist your projects across sessions.
- To verify and grant premium access after a successful payment.
- To respond to support or security inquiries you send us.
We do not sell your data. We do not use it for advertising.
3. Data retention & deletion
Your account and projects are retained until you delete them. You can delete a project directly in the studio. To delete your entire account and all associated data, email support@useflow.art with the subject "Delete my account" and we will process your request within 72 hours.
Security practices
Security is a core part of how Useflow is built, not an afterthought.
We take security seriously and welcome responsible disclosure. If you discover a vulnerability in Useflow, please report it to us before disclosing it publicly.
Email your report to support@useflow.art with subject line "Security Disclosure". Please include:
- A clear description of the vulnerability and its potential impact.
- Steps to reproduce or a proof-of-concept (no destructive testing).
- Your contact details so we can follow up.
As a thank-you for responsible disclosure of a valid, previously-unknown security vulnerability, we will grant you 1 month of Premium access free once the issue is confirmed and fixed. We aim to respond within 48 hours.
Out of scope: Social engineering, physical attacks, DoS attacks, vulnerabilities in third-party services.
Contact
For privacy questions, data deletion requests, or general support: support@useflow.art
For security disclosures: support@useflow.art with subject "Security Disclosure"
Useflow Sound Studio · © 2026 · Home