Legal · Privacy Policy

Privacy Policy

This policy explains what personal data Flowy, LLC collects when you use ChatterSift, how we use it, who we share it with, and the choices you have. We try to keep the operation honest: the less data we need, the less we collect.

Effective Last updated Controller: Flowy, LLC

1. Who we are

ChatterSift (“ChatterSift,” the “Service”) is operated by Flowy, LLC (“Flowy,” “we,” “us” or “our”). Flowy, LLC is the controller of personal data described in this Privacy Policy. You can reach us at [email protected].

2. Scope

This policy covers personal data we process when you visit our marketing site, create or use a ChatterSift account, communicate with us, or otherwise interact with the Service. It does not cover third-party sites or services that link to or integrate with ChatterSift; those are governed by their own policies.

3. Data we collect

3.1 Data you provide

  • Account data: name, email address, password (hashed), workspace name, and similar identifiers.
  • Billing data: plan selection, billing email, and limited payment metadata. Card numbers and bank details are handled directly by our payment processor (Stripe) and are not stored on our servers.
  • Configuration data: the keywords, subreddits, alert destinations, integrations, and other settings you configure in the Service.
  • Communications: messages you send to support, feedback you submit, and your replies to our emails.

3.2 Data we collect automatically

  • Usage data: pages viewed, features used, timestamps, referring URLs, and similar product analytics.
  • Device data: IP address, user agent, browser type, operating system, and approximate location derived from IP.
  • Logs: server logs, error traces, and security events used to operate and protect the Service.
  • Cookies & similar technologies: see Section 8.

3.3 Data we derive or ingest

  • Reddit content: we ingest publicly available Reddit posts and comments and evaluate them against your configurations to produce matches. We do not collect Reddit account credentials.
  • Match results: the matches surfaced by the Service, the alerts we sent on your behalf, and your in-product actions on those matches.

4. How we use data

We use personal data to:

  • Provide, operate, and secure the Service, including monitoring Reddit for your configured keywords and delivering alerts;
  • Authenticate users, manage accounts, and process payments;
  • Provide customer support and respond to your requests;
  • Send transactional messages, service announcements, and, where permitted, product updates;
  • Detect, prevent, and respond to fraud, abuse, security incidents, and violations of our Terms of Service;
  • Measure and improve the Service, including by analyzing usage trends and debugging issues;
  • Comply with legal obligations and enforce our agreements.

If you are in the European Economic Area or the United Kingdom, we process personal data on one or more of the following legal bases:

  • Contract: to provide the Service you have signed up for;
  • Legitimate interests: to secure the Service, prevent abuse, improve features, and run our business in a way that does not override your rights;
  • Consent: for optional cookies, marketing emails where required, and other activities for which we ask your consent;
  • Legal obligation: to comply with applicable laws, including tax and accounting requirements.

6. How we share data

We do not sell personal data. We share it only as described here:

  • Service providers (processors): infrastructure (e.g., cloud hosting), email delivery, customer support, analytics, error monitoring, and payment processing vendors who handle data on our behalf under written agreements.
  • Within your workspace: if you join a team workspace, other members may see your name, email, and activity within that workspace.
  • Alert destinations you configure: when you set up email delivery, match data is transmitted to the email addresses you specify.
  • Compliance & safety: to comply with law, valid legal process, or government requests; to enforce our Terms; or to protect the rights, property, or safety of Flowy, our users, or others.
  • Corporate transactions: in connection with a merger, acquisition, financing, or sale of assets, subject to customary confidentiality protections.

7. Data retention

We retain personal data for as long as your account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. Match history and operational logs are retained according to plan-specific limits and our internal retention schedules. When personal data is no longer needed, we delete or anonymize it.

You can request deletion of your account at any time (see Section 9).

8. Cookies & similar technologies

We use a small number of cookies and similar technologies to keep you signed in, remember preferences, secure the Service, and understand how it is used. Where required by law, we ask for consent to non-essential cookies through a banner or settings panel. You can control cookies through your browser settings; disabling them may break parts of the Service.

9. Your rights & choices

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you;
  • Correct inaccurate or incomplete data;
  • Delete your data, subject to legal and operational exceptions;
  • Restrict or object to certain processing;
  • Withdraw consent where processing is based on consent;
  • Receive a portable copy of certain data;
  • Lodge a complaint with your local data protection authority.

To exercise these rights, email [email protected] from the address associated with your account, or use the controls in your account settings. We will respond within the time required by applicable law.

10. US state privacy rights

If you are a resident of California, Colorado, Connecticut, Virginia, or another US state with a comprehensive privacy law, you may have similar rights of access, correction, deletion, and portability, and the right to opt out of certain types of processing. We do not “sell” personal information or use it for cross-context behavioral advertising as those terms are defined under California law.

11. International transfers

We operate primarily in the United States. When we transfer personal data from the EEA, UK, or other jurisdictions to the United States or other countries, we rely on appropriate safeguards, such as the European Commission’s Standard Contractual Clauses, where required by law.

12. Security

We use administrative, technical, and physical safeguards designed to protect personal data, including encryption in transit, access controls, secret management, and regular monitoring. No system is perfectly secure; you are responsible for using strong, unique passwords and keeping your account credentials confidential.

13. Children

The Service is not directed to children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us personal data, please contact us so we can delete it.

14. Reddit content & public posts

ChatterSift processes content that has been posted publicly to Reddit. While such content is publicly available, it may include personal data of Reddit users, including handles and free-form text they have written. You agree to use match data responsibly, in accordance with Reddit’s terms and applicable privacy laws, and not to use it to harass, dox, or otherwise harm individuals.

15. Changes to this policy

We may update this policy from time to time. If we make material changes, we will provide reasonable notice, for example by email or in-product notice, before the changes take effect. The “Last updated” date at the top reflects when this policy was most recently revised.

16. Contact

For questions about this policy or our privacy practices, email [email protected], attention: Flowy, LLC.