Flowpark Privacy Policy

Effective Date: June 7, 2025
Last Updated: June 7, 2025

Introduction
This Privacy Policy explains how Flowpark LLC ("Flowpark," "we," "us," or "our") collects, uses, and shares information in connection with our website (www.getflowpark.com), the Flowpark Validation Portal, and our related services (collectively, the "Service").
By using our Service, you agree to the collection and use of information in accordance with this policy. For our business clients, this Privacy Policy is incorporated by reference into the Master Services Agreement ("MSA") or other primary contract governing the use of the Service. The terms used here have the same meanings as in our Terms of Use or MSA, unless defined otherwise.


1. Information We Collect
To provide and improve our Service, we collect the following types of information.

• A. Information You Provide to Us
• Account Information: When your organization creates an account, we collect information associated with your users, such as name, email address, phone number, and company name.
• Validation Portal Data: When you use our Validation Portal, you or your company provide information needed to create and manage parking validations. This may include vehicle information (such as license plate number, make, and model) and specific validation details (such as duration and location).
• Communications: If you contact us for support or other inquiries, we will collect the information you provide in your communications.
• B. Information We Collect Automatically
• Log and Usage Data: When you use our Service, our servers automatically collect information your browser or device sends. This data may include your Internet Protocol (IP) address, browser type, device information, the pages of our Service you visit, the time and date of your visit, and other usage statistics. This data is used for security, analytics, and service improvement, often in an aggregated and anonymized form.
• Cookies: We use "cookies" and similar tracking technologies to collect information and improve our Service. Cookies are small data files sent to your browser. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

2. How We Use Your Information
We use the information we collect for the following purposes:

• To Provide and Maintain our Service: To manage user accounts, provide access to the Validation Portal, process parking validations as instructed by our clients, and fulfill our contractual obligations.
• To Communicate with You: To respond to your requests and support needs, and to send you important service-related announcements and administrative messages.
• To Improve Our Service: To understand how users interact with our platform so we can enhance functionality, usability, and performance.
• For Security and Fraud Prevention: To protect the integrity of our Service, prevent fraudulent activity, and enforce our terms and policies.

3. How We Share Your Information
We do not sell your personal information. We only share information in the following limited circumstances:

• With Sub-processors and Service Providers: We engage third-party companies and individuals to help us operate our Service (e.g., cloud hosting, data analytics, customer support tools). We conduct due diligence on these sub-processors and require them to adhere to confidentiality and data protection obligations consistent with this Privacy Policy and our contractual commitments. A list of our major sub-processors is available to business clients upon request.
• With Our Business Clients: If you use our Service as an authorized user of one of our business clients, we share information about your use of the Service with that client as necessary to fulfill our service agreement. In this relationship, the business client is the "Data Controller" and Flowpark acts as the "Data Processor" on their behalf.
• With Third-Party Payment Processors: We do not directly collect or store your credit card information. All payment transactions are processed by a third-party payment processor. Your payment information is provided directly to them, and its use is governed by their privacy policy.
• For Legal Reasons: We may disclose information if we believe in good faith that it is necessary to (a) comply with a law, regulation, or legal process; (b) protect the safety of any person; (c) address fraud, security, or technical issues; or (d) protect Flowpark’s rights or property. Where legally permissible, we will notify the relevant business client of such a request for disclosure.
• In a Business Transfer: If Flowpark is involved in a merger, acquisition, or asset sale, your information may be transferred as a business asset. We will ensure that the acquiring entity is bound by data protection commitments at least as protective as those in this policy.

4. Your Privacy Rights and Our Role

• Our Role as a Data Processor for Business Clients: For much of the personal information we process through the Service, we act as a Data Processor on behalf of our business clients. This means the client (e.g., your employer) is the Data Controller and is responsible for managing data privacy rights.
• Exercising Your Rights: If you are an individual whose data we process because you use the Service through one of our business clients, you should direct any requests to access, correct, or delete your personal information to that business client. We will provide reasonable assistance to our clients to help them respond to such requests in accordance with our service agreements.

5. Data Security
We are committed to protecting the security of your information. We implement and maintain a robust security program with appropriate technical, administrative, and physical measures designed to protect your information from unauthorized access, use, or disclosure. These measures include:

• Encryption: We encrypt data in transit using Transport Layer Security (TLS) and encrypt data at rest using industry-standard encryption protocols.
• Access Control: We adhere to the principle of least privilege, limiting access to personal information to authorized personnel who require it to perform their job functions.
• Security Assessments: We regularly conduct security risk assessments and vulnerability scans to identify and remediate potential threats.
• Data Breach Notification: In the event of a security breach that results in the unauthorized disclosure of your personal information, we will notify affected business clients without undue delay after confirming the incident. Our notification will include a description of the nature of the breach, the types of data involved, and the steps we are taking to mitigate its effects.

6. Links to Other Sites
Our Service may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that site. We strongly advise you to review the privacy policy of every site you visit. We have no control over and assume no responsibility for the content or practices of any third-party sites or services.

7. Children’s Privacy
Our Service is not directed to or intended for use by anyone under the age of 18. We do not knowingly collect personally identifiable information from children under 18. If we become aware that a child has provided us with personal information, we will take steps to delete it.

8. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. For our business clients, we will provide at least thirty (30) days' prior written notice (via email to the designated account administrator) of any material changes to this Privacy Policy. You are advised to review this Privacy Policy periodically for any changes.

9. Contact Us
If you have any questions about this Privacy Policy, please contact us:

Flowpark LLC.
Email: notices@getflowpark.com
Website: www.getflowpark.com