How Flowlu Comply with GDPR

Flowlu takes cyber security and data protection very seriously. We’re currently taking steps to ensure we maintain secure and compliant systems for our European customers under GDPR.

Flowlu will continue to:

  • Work with third-party vendors to ensure we have the appropriate contractual terms in place;
  • Maintain our Privacy Shield self-certifications to support international data transfers;
  • Create product features with new tools for data portability and data management; We receive the latest GDPR compliance guidance from proper regulatory bodies and will make adjustments as needed. We will keep you up to date on any changes we make.

Our Security and Privacy including automatic backups, file encryption at rest, and other comprehensive security features and practices.

Flowlu’s Data Management Tools and Portability Solutions for Customers

In an effort to help our customers be self-compliant with GDPR, here are a few tools that will help in your data requests related to accessing, rectifying, and forgetting personal data:

  • Remove user tool. Account admins can delete a user’s personal information upon request.
  • Account management. Flowlu allows account admins to access and update your team’s plan, settings, and billing information. Other non-admin users also have the ability to update their profile, change linked email addresses, and customize notifications.

Data Protection Is an Ongoing Priority

We invest in a privacy and security program. We believe building a robust privacy and security program is the first step to reinforcing customers’ confidence in how we value, treat, and protect their data.

In October 2017, Flowlu moved EU users data to a new data center to provide European businesses an option to manage work in the cloud. As more businesses adopt collaboration and cloud tools across Europe, we will continue to invest in our European market as we expand our initiatives internationally.

Our Security Infrastructure and Certifications

Flowlu is independently certified with AT 101 SOC 2 (Type II) for Security and Confidentiality principles, confirming Flowlu takes appropriate steps to protect its systems’ and customers’ data.

Flowlu hosts our servers in locked cages within data centers. All server and network components are constantly monitored by internal Flowlu staff and our colocation providers.

Flowlu's Accident Recovery infrastructure resides in Google Cloud Platform, having great scalability and security with SSAE16 / ISAE 3402 Type II, ISO 27001, FedRAMP, PCI DSS, HIPAA, and other certifications.

Protecting the privacy and security of our customers’ information is a top priority, and compliance is essential to this mission. We’ll continue to notify you as we evolve our procedures and policies to fit within the changing regulatory landscape.

Have a question that we didn’t address? Feel free to email us at

Automatic Server Backups
Automatic Server Backups
Automatic Server Backups
Automatic Server Backups
Automatic Server Backups