Textflow

Privacy Policy

Last updated: March 2025

1. Introduction

Textflow (“we”, “our”, or “us”) operates the website textflows.com (the “Site”). This Privacy Policy explains how we collect, use, disclose, and protect information when you visit or use our Site. We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), as amended.

Our Site provides free, browser-based text tools (e.g. removing duplicate lines, line breaks, or numbers from text). These tools process your text locally in your browser. We do not require you to create an account or register to use our core features. By using the Site, you agree to the practices described in this policy.

2. Information We Collect

We collect limited information, mainly to run the Site and understand how it is used. We do not collect the text you paste or type into our tools; that content is processed only in your browser and is not sent to our servers.

2.1 Information collected automatically

When you visit the Site, we and our service providers may automatically collect:

  • Device and browser information (e.g. type, version, language)
  • IP address and approximate geographic location
  • Pages visited, referring URL, and date and time of access
  • Other usage data (e.g. interactions with the Site) collected via cookies and similar technologies

2.2 Information you provide

We do not require you to create an account. If you contact us (e.g. by email or a contact form), we may collect the information you provide, such as your name, email address, and the content of your message.

2.3 What we do not collect

We do not collect the text you enter into our text tools. We do not collect payment information, account credentials, or other sensitive personal data unless you voluntarily provide it when contacting us.

3. How We Use Your Information

We use the information we collect to:

  • Operate, maintain, and improve the Site
  • Understand how visitors use the Site (e.g. via analytics) and improve content and functionality
  • Respond to your inquiries or requests when you contact us
  • Comply with legal obligations and protect our rights and the security of the Site

Under the GDPR, we rely on our legitimate interests (running and improving the Site, analytics) for the processing described above, except where we are required to obtain your consent (e.g. for non-essential cookies where applicable). You may have the right to object to processing based on legitimate interests (see Section 7).

4. Cookies and Similar Technologies

We use cookies and similar technologies (e.g. pixels, local storage) to support the operation of the Site and to collect usage data through our analytics provider.

4.1 Analytics cookies

We use Google Analytics to understand how visitors use the Site. Google Analytics may set cookies and collect data such as your IP address, device and browser information, pages visited, and time on site. Google’s ability to use and share this data is governed by the Google Privacy Policy.

4.2 Your choices

You can control or disable cookies through your browser settings. You can also opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on. Disabling cookies may affect how the Site works or how we can improve it.

In jurisdictions that require consent for non-essential cookies (e.g. certain EU countries), we will obtain your consent where required before placing such cookies.

5. Sharing and Disclosure of Information

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service providers: With vendors who help us operate the Site (e.g. hosting, analytics such as Google Analytics), under contracts that limit their use of your data.
  • Legal requirements: When required by law, court order, or government request, or to protect our rights, safety, or property.
  • Business transfers: In connection with a merger, sale, or other transfer of our assets, subject to the same privacy commitments.

We do not share your personal information with third parties for their own marketing purposes.

6. Data Retention

We retain your information only for as long as necessary to fulfil the purposes described in this policy or as required by law. Analytics data is typically retained according to our analytics provider’s settings (e.g. Google Analytics retention periods). If you contact us, we may retain your correspondence and related data for a reasonable period to handle your request and for legitimate business or legal purposes.

7. Your Rights

Depending on where you live, you may have the following rights. To exercise them, please contact us using the details in Section 12.

7.1 Rights under the GDPR (EEA/UK and similar)

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data in certain circumstances.
  • Restriction: Request that we limit how we use your data in certain cases.
  • Data portability: Request a copy of your data in a structured, machine-readable format where applicable.
  • Object: Object to processing based on legitimate interests.
  • Withdraw consent: Where we rely on consent, you may withdraw it at any time.
  • Lodge a complaint: You have the right to lodge a complaint with a supervisory authority in your country of residence.

7.2 Rights under the CCPA/CPRA (California residents)

If you are a California resident, you may have the right to:

  • Know: Request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the purposes, and the categories of third parties we share with.
  • Delete: Request deletion of your personal information, subject to certain exceptions.
  • Non-discrimination: Not receive discriminatory treatment for exercising your privacy rights.
  • Opt-out of sale or sharing: We do not sell or “share” personal information for cross-context behavioral advertising as defined under the CCPA; if our practices change, we will update this policy and provide an opt-out where required.

We will verify your identity before fulfilling requests. You may designate an authorized agent to submit requests on your behalf in accordance with applicable law.

8. Security Measures

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These include secure hosting, limited access to data, and careful selection of service providers. No method of transmission over the Internet or electronic storage is completely secure; we cannot guarantee absolute security but we take your privacy seriously.

9. International Data Transfers

Your information may be processed in and transferred to countries outside your country of residence, including the United States, where our or our service providers’ servers may be located. When we transfer data from the European Economic Area, the United Kingdom, or other jurisdictions with restricted transfer rules, we rely on appropriate safeguards such as adequacy decisions, Standard Contractual Clauses, or other mechanisms permitted by applicable law. For example, Google may process analytics data in the United States under appropriate safeguards.

10. Children’s Privacy

The Site is not directed at children under 16 (or under 13 in certain jurisdictions). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and change the “Last updated” date. If we make material changes that affect how we use your personal information, we will provide additional notice (e.g. a notice on the Site or an email if we have your contact details). We encourage you to review this policy periodically.

12. Contact Us

If you have questions about this Privacy Policy, want to exercise your rights, or have a complaint, please contact us:

  • By email: at the contact address published on the Site (e.g. on the About or homepage), or
  • By mail: at the business address indicated on the Site for Textflow.

We will respond to your request within the timeframes required by applicable law (e.g. generally within 30 days for CCPA requests, and within one month for GDPR requests, subject to extension where permitted).