Privacy Policy
Your privacy is important to us. Last updated: September 18, 2025.
Information We Collect
We collect both personal information and usage data to provide our services and improve your experience.
Personal Information
This includes details you provide directly, such as:
- Name and email address
- Billing and shipping addresses
- Payment information (processed securely)
- Account preferences and settings
- Communication history with support
Usage Data
This information is collected automatically as you use our website, including:
- Website browsing patterns
- Download and purchase history
- Device and browser information
- IP address and location data
- Cookies and tracking preferences
How We Use Your Information
We use the information we collect for several key purposes.
Order Processing & Fulfillment
We use your personal and payment information to process orders, deliver digital products, and provide customer support for your purchases.
Account Management
Your information helps us maintain your account, track your purchases, and provide personalized recommendations based on your preferences.
Communications
We send transactional emails about your orders and account updates. We also send optional marketing communications about new layouts and promotions, from which you can opt out at any time.
Analytics & Improvement
Usage data helps us understand how customers interact with our website. This allows us to improve the user experience and develop better Divi layouts.
Data Sharing & Third Parties
We do not sell, trade, or rent your personal information to third parties. We only share data in these limited circumstances:
Service Providers
We share data with trusted third-party services that help us operate our business, such as:
- Payment processors (Stripe, PayPal)
- Email service providers
- Analytics services (Google Analytics)
- Cloud hosting providers
Legal Requirements
We may disclose your information if required by law or in good faith to:
- Comply with legal obligations
- Respond to court orders or subpoenas
- Assist with fraud prevention and security
- Protect our legal rights and property
Data Security
We take your data security seriously and employ a range of measures to protect your information, including:
- SSL/TLS encryption for data transmission
- Secure server infrastructure and firewalls
- Regular security audits and monitoring
- PCI DSS compliant payment processing
- Strong password requirements
- Limited employee access to personal data
- Regular software updates and patches
- Backup and disaster recovery procedures
Your Privacy Rights
As a user, you have several rights regarding your data:
- Access & Review: Request a copy of the personal information we have about you and review how it's being used.
- Update & Correct: Update your account information or correct any inaccuracies in your personal data.
- Opt-Out: Unsubscribe from marketing emails or opt out of certain data collection practices.
- Delete Account: Request deletion of your account and associated personal data (subject to legal retention requirements).
- Data Portability: Export your data in a commonly used format to transfer it to another service provider.
- Restrict Processing: Limit how we process your personal information while maintaining your account.
Cookies & Tracking
We use cookies for various purposes:
- Essential website functionality
- User authentication and sessions
- Shopping cart and preferences
- Security and fraud prevention
- Website analytics and performance
- Marketing and advertising
- Social media integrations
- Personalized content delivery
You can manage your cookie preferences in your browser settings or through our website's cookie banner.
Data Retention
We retain your personal information for as long as necessary to provide our services and comply with legal obligations.
- Account Information: Retained for 3 years after account closure for customer service and legal purposes.
- Transaction Records: Financial records kept for 7 years to comply with tax and accounting regulations.
- Analytics Data: Aggregated usage data retained for 2 years for business insights and improvements.
- Marketing Data: Email marketing data is deleted within 30 days of unsubscribing.
International Data Transfers
Divi Flow operates globally, and your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses
- GDPR Compliance
- Privacy Shield Frameworks
Children's Privacy
Divi Flow is not intended for children under 13 years old. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will take steps to delete it immediately.
Changes to Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.
