Privacy Policy

Last updated: 27 May 2026

Who this covers

This policy applies to the hosted Hazy Flow service we operate. If you run your own self-managed Hazy Flow deployment, you are the data controller for that deployment — this policy does not apply, because your data never reaches us.

What we collect

• Account data — the email address and credentials you sign up with.
• Your flows and runs — the workflows you build and the data they process, which we store so the service can run them.
• Operational logs — request and run metadata we need to operate the service, debug failures and bill usage.

What we don't do

We do not sell your data, and we do not use the contents of your flows or runs to train models or for advertising. Secrets you store are encrypted at rest.

Sub-processors

We rely on infrastructure providers (hosting, managed databases, email delivery, payments) to run the service. A current list is available on request.

Your rights

You can export or delete your data at any time. To make a request, or to ask anything about this policy, write to hazy-flow@r8.rs.

Changes

We'll post any changes to this policy on this page and update the date above.