GDPR Compliance
How fluss.ai complies with the General Data Protection Regulation and protects your data.
Last updated: 2026-01-22
fluss.ai is fully GDPR compliant. We take the protection of your data and your leads' data very seriously.
Technical Measures
- SSL Encryption: All data is transmitted encrypted
- Secure Servers: Hosting in the EU (Vercel, Supabase)
- Access Control: Role-based permissions
- Audit Logs: Traceability of all actions
Privacy Practices
- Data Minimization: Only necessary data is collected
- Purpose Limitation: Data only for the stated purpose
- Retention Periods: Automatic data deletion possible
- Transparency: Clear privacy policies
Collected Data
Lead Data
| Data Category | Examples | Purpose |
|---|---|---|
| Contact Data | Name, email, phone | Contact |
| Address Data | Street, ZIP, city | Property valuation |
| Property Data | Type, size, year built | Valuation |
| Usage Data | Flow responses | Qualification |
Technical Data
| Data Category | Examples | Purpose |
|---|---|---|
| Device Data | Browser, OS | Optimization |
| Connection Data | IP address (anonymized) | Security |
| Analytics | Click paths | Improvement |
Data Subject Rights
Users have the following rights:
- Access: What data is stored
- Rectification: Correction of incorrect data
- Erasure: Removal of data
- Restriction: Blocking of processing
- Objection: Against certain processing
- Data Portability: Export in machine-readable format
Unsubscribe
Leads can unsubscribe from communication at any time:
- Unsubscribe Link: Included in every email
- Immediate Effect: No further follow-ups
- Confirmation: Feedback to the lead
For privacy questions, please contact the address provided in the imprint.
Data Processors
| Service | Location | Purpose |
|---|---|---|
| Vercel | USA (EU servers) | Hosting |
| Supabase | EU | Database |
| Clerk | USA | Authentication |
| UploadThing | USA | File storage |
| Paddle | UK | Payment processing |