Privacy Policy

Last updated: 2026-04-21 Effective: 2026-05-01

This Privacy Policy describes how Aron Brown d/b/a FlowLibs ("FlowLibs," "we," "us," or "our") collects, uses, and shares information when you visit or use flowlibs.com (the "Site") and the FlowLibs service (together, the "Service"). By using the Service, you agree to the practices described here. If you do not agree, do not use the Service.

1. Who we are

FlowLibs is operated by Aron Brown, a sole proprietor based in Tulsa, Oklahoma, United States. You can reach us at hello@flowlibs.com.

2. Information we collect

We only collect what we need to run the Service.

Information you provide directly

  • Account information. When you sign in with Google, we receive your name, email address, Google account ID, and profile image from Google. We do not receive your Google password.
  • Profile and preferences. Anything you choose to add to your profile (display name, role, preferences).
  • Pattern interactions. Patterns you copy, favorite, or customize; inputs you enter into the Pattern Customizer; feedback you send us.
  • AI tool inputs. Prompts you submit to the AI Script Generator and scripts you paste into the AI Code Review tool. See §3 for how those inputs are processed.
  • Payment information (Pro and Team subscribers). Processed by Stripe. FlowLibs never sees or stores your full card number, CVC, or bank details. We receive a Stripe customer ID, subscription status, the last four digits of your card, card brand, and billing country.
  • Communications. If you email us or submit a form, we receive your message and contact details.

Information collected automatically

  • Usage data. Pages viewed, referrers, approximate device type, and similar analytics via Vercel Analytics (privacy-friendly, no cross-site tracking).
  • Log data. IP address, user agent, and timestamps, retained briefly for security and debugging by our hosting providers (Vercel, Supabase).
  • Cookies. See our Cookie Policy.

Information from third parties

  • Google (via OAuth, described above).
  • Stripe (billing status and limited card metadata).

We do not buy personal information from data brokers, and we do not use advertising networks that track you across sites.

3. How we use your information

We use your information to:

  1. Provide and operate the Service (authenticate you, show you patterns, run the Customizer and AI tools).
  2. Enforce Free-tier usage limits and process Pro and Team subscriptions.
  3. Improve the Service — fix bugs, understand which patterns and AI features are useful, prioritize the backlog.
  4. Communicate with you about account notices, policy changes, and, if you opt in, product updates.
  5. Protect the Service — detect abuse, enforce our Terms, and meet legal obligations.

AI-powered features. The AI Script Generator, AI Code Review, and Pattern Customizer use large-language-model providers (including the Anthropic Claude API) to generate responses. When you use those features, the prompts, scripts, or inputs you provide are sent to the provider to generate a response. Providers process these inputs as service providers to us under their commercial terms and do not train their models on your inputs. We do not send your email, Google profile, or billing details to AI providers as part of these requests.

Please do not paste secrets (credentials, tokens, production connection strings) into the AI tools. If you do, rotate them immediately — transient copies may appear in provider logs for up to 30 days.

We do not sell your personal information, and we do not "share" it for cross-context behavioral advertising (as those terms are defined under the CCPA/CPRA).

4. When we share information

We share information only in the limited cases below:

  • Service providers who run the Service on our behalf, each bound by a data-processing or equivalent agreement:
    • Supabase — authentication, database, file storage.
    • Vercel — hosting, edge delivery, analytics.
    • Google — OAuth sign-in.
    • Stripe — payment processing and subscription management.
    • Anthropic and other AI providers — completions for the Customizer, Script Generator, and Code Review tools (inputs only; see §3).
  • Legal and safety. To comply with law, respond to lawful requests, or protect our rights, users, or the public.
  • Business transfer. If we reorganize, sell, or transfer the business, your information may be transferred as part of that transaction. We will notify you and any successor will be bound by this Policy or a materially similar one.

We do not share your information with advertisers.

5. Cookies and similar technologies

We use cookies for session management (to keep you signed in), CSRF protection, and privacy-friendly analytics. For details, see our Cookie Policy.

6. Data retention

  • Account data is kept while your account is active and for up to 90 days after deletion, unless a longer period is required by law.
  • Billing records are retained for at least 7 years to satisfy US tax and accounting requirements.
  • Analytics and logs are retained for up to 12 months.
  • AI-tool inputs are not stored server-side by default; transient copies may appear in provider logs for up to 30 days.

7. Your choices and rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information.
  • Delete your account and associated information.
  • Export a copy of your data in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent where we rely on consent.

California residents. The CCPA/CPRA gives you additional rights, including the right to know, delete, correct, and limit the use of sensitive personal information, and the right not to be discriminated against for exercising your rights. We do not sell or share personal information as defined by the CCPA. To exercise a right, email us at hello@flowlibs.com.

EU/UK/EEA residents. If you are in the EEA or UK, we rely on one of the following legal bases: (i) your consent, (ii) performance of a contract with you, (iii) our legitimate interests in operating and improving the Service, and (iv) compliance with law. You have the right to lodge a complaint with your supervisory authority.

To make a request, email hello@flowlibs.com from the address associated with your account. We will respond within the timeframe required by applicable law (typically 30–45 days).

8. Security

We protect your information using industry-standard measures: HTTPS across the Site, encrypted database storage via Supabase, OAuth-only authentication (no passwords stored by us), least-privilege access, and Stripe-managed payment handling. No system is perfectly secure — if we ever discover a material breach involving your personal information, we will notify you as required by law.

9. International transfers

FlowLibs is operated from the United States. If you access the Service from outside the US, your information will be transferred to and processed in the US by us and our service providers. Where required, we use Standard Contractual Clauses or equivalent safeguards with our providers.

10. Children

The Service is not directed to children under 16, and we do not knowingly collect personal information from children under 16. If you believe a child has provided us information, email hello@flowlibs.com and we will delete it.

11. Third-party links

The Service may link to third-party sites (e.g., Microsoft Learn, Power Platform docs, GitHub). We are not responsible for the privacy practices of those sites.

12. Changes to this Policy

We may update this Policy as the Service evolves. If we make material changes, we will post the updated Policy here and update the "Last updated" date. For significant changes, we will also notify you by email or in-app notice before the changes take effect.

13. Contact us

Questions, requests, or complaints:

Aron Brown d/b/a FlowLibs Tulsa, Oklahoma, United States Email: hello@flowlibs.com