Privacy Policy

1. Who we are

GrapeFlow is a vineyard and winery management platform operated by the GrapeFlow team. We are the data controller for personal data processed in connection with the service.

2. Data we collect

• Account data: name, email, password hash, company affiliation.
• Company data: vineyard, harvest, production, costing and compliance records you enter.
• Technical data: IP address (geo-detected country), browser, device, pages visited.
• Billing data: handled by our payment processor; we never see card numbers.

3. How we use it

• To provide and improve the service.
• To enforce subscription tier and regional pricing.
• To send transactional emails (welcome, billing, alerts).
• To meet legal and tax obligations.

We do not sell your personal information.

4. Cookies

We use essential cookies to keep you logged in and remember preferences (language, region). We may also use analytics cookies to understand how the product is used. You can accept or reject non-essential cookies via the banner on first visit and change your mind anytime by clearing your browser cookies.

5. Your rights

You can access, rectify or delete your personal data by writing to privacy@grapeflow.app. EU/EEA residents may lodge complaints with their national data protection authority; California residents see our US privacy notice.

6. Data location and retention

Customer data is stored with Supabase. Retention follows the active subscription plus any statutory minimum (e.g. tax records). You can request account deletion at any time.

7. Contact

Questions? Email privacy@grapeflow.app.