MarkFlow

Privacy Policy

Last updated: October 7, 2025 · Effective date: October 7, 2025

1. Introduction

MarkFlow (“we,” “our,” or “us”) is an AI-powered marketing and analytics platform that helps businesses manage their marketing campaigns, analyze performance across Google, Meta, and other social networks, and create data-driven insights.

This Privacy Policy explains how MarkFlow collects, uses, stores, and protects your personal information, including Google and Meta user data obtained through their APIs.

By using MarkFlow, you agree to this Privacy Policy and our Terms of Service.

2. Data We Access

MarkFlow may access the following types of user data when you connect your Google or Meta accounts:

Google APIs

  • Google Analytics data: traffic, engagement, and conversion metrics.
  • Google Ads data: campaign names, performance metrics, and budget information.
  • Google My Business data: profile details, posts, and insights.
  • User profile (OAuth scope limited): email address and name for account identification only.

Meta APIs

  • Facebook and Instagram insights: followers, reach, engagement, post metrics.
  • Ad Account data: campaign names, impressions, clicks, and spend.
  • Page or Business Manager information: page name, ID, and permissions for analytics integration.

MarkFlow does not access, collect, or store user passwords or any sensitive personal data (e.g., financial, biometric, or location data).

3. How We Use the Data

We use the data obtained via Google and Meta APIs exclusively to:

  • Display aggregated analytics dashboards within MarkFlow.
  • Provide AI-generated insights, marketing recommendations, and campaign optimization tips.
  • Help users manage, analyze, and report their marketing performance across platforms.

Your data is never sold, rented, or shared with third parties for marketing or advertising purposes.

4. Data Sharing

MarkFlow does not share Google or Meta user data with any external parties, except:

  • Service providers who help us operate the platform (e.g., secure hosting, analytics). These partners act under confidentiality and data protection agreements.
  • Legal obligations, if required by law, subpoena, or regulatory authorities.

All shared data is encrypted and anonymized wherever possible.

5. Data Storage and Protection

All data is stored on secure servers located in the European Union (EU) using AES-256 encryption and TLS 1.3 transmission security.

Access to user data is limited to authorized personnel and protected with multi-factor authentication.

We regularly audit our systems and follow GDPR, Google Cloud Security, and Meta Platform Security Standards.

6. Data Retention and Deletion

We retain user data only as long as it is necessary to provide our services or as required by law. Users can at any time:

  • Disconnect their Google or Meta accounts within the MarkFlow dashboard.
  • Request deletion of all stored data by emailing: privacy@markflow.eu.

Upon deletion request, all associated Google and Meta data is permanently erased within 30 days.

7. User Rights under GDPR

If you are located in the European Economic Area (EEA), you have the following rights:

  • Right to access, correct, or delete your personal data.
  • Right to restrict or object to data processing.
  • Right to data portability.
  • Right to lodge a complaint with your local data protection authority.

8. Third-Party Services

MarkFlow integrates only with verified third-party APIs and services that comply with GDPR and platform policies (Google, Meta, LinkedIn, etc.).

Each third-party integration follows its own privacy and security standards.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in technology, regulation, or our services.

The latest version will always be available at: https://markflow.eu/privacy-policy/

10. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us at: