Last updated: April 6, 2026

Privacy policy

At flowiqa, we respect the privacy of everyone who visits our site and reaches out to us. This policy explains what data we collect, why we collect it, and how we protect it. We operate in compliance with KVKK and GDPR.

Data we collect

When you contact us or book a call, we only collect basic contact information: name, email, company name, and any details you share during the conversation. We do not use cookies or third-party trackers on our site. The embedded scheduling widget (Zcal) is governed by its own privacy policy.

How we use this data

We use it solely to get back to you, schedule a call, and deliver the service you've requested. We do not send marketing emails and we do not sell your data to third parties.

Customer data

Customer data we may access during a project (order history, customer records, API keys, etc.) is never stored on our servers. All credentials remain in the customer's own vault (1Password, AWS Secrets Manager, or similar). Code we write runs on your infrastructure; we only get temporary access for development and maintenance.

Encryption and security

All communication is encrypted with TLS 1.2+ (encryption in transit). Wherever data is stored, server-side encryption is enabled (encryption at rest). Access permissions follow the principle of least privilege.

Your rights

Under KVKK and GDPR, you have the right to access, correct, delete, and object to the processing of your data. To exercise these rights, contact us at hello@flowiqa.com. We will respond within 30 days.

Data retention

We retain your contact data only for the duration of an active conversation. After the conversation ends (and no project starts), it is deleted within 90 days. Active customer data is retained for the duration of the contract plus any legally required retention periods.