Privacy Policy

Introduction

WorkLens ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered workflow automation platform and related services (collectively, the "Service"). This policy applies to all users of WorkLens, including individuals and organizations.

By using WorkLens, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our Service.

Information We Collect

Personal Information

We collect personal information that you voluntarily provide to us:

• Account Information: Name, email address, password, company name, job title
• Profile Data: Profile picture, bio, preferences, notification settings
• Billing Information: Credit card details, billing address, tax information (processed securely through third-party payment processors)
• Communication Data: Messages, support tickets, feedback, survey responses

Workflow and Automation Data

• Workflow Configurations: Automation rules, triggers, actions, and custom workflows you create
• Task Data: Tasks, projects, deadlines, assignments, and status updates
• Integration Data: Data from connected third-party services (Slack, GitHub, Jira, Google Workspace, etc.)
• AI Training Data: Anonymized workflow patterns used to improve our AI algorithms
• Performance Metrics: Workflow efficiency, completion rates, bottleneck analysis

Technical Information

• Usage Data: Features used, time spent, click patterns, navigation paths
• Device Information: IP address, browser type, operating system, device identifiers
• Log Data: Server logs, error reports, performance data, security events
• Cookies and Tracking: Session cookies, preference cookies, analytics cookies

Third-Party Integration Data

When you connect third-party services to WorkLens, we may access and store:

• Data from your connected accounts (with your explicit permission)
• API tokens and authentication credentials (encrypted)
• Synchronized data necessary for workflow automation
• Integration usage patterns and performance metrics

How We Use Your Information

Service Provision

• Provide and operate the WorkLens platform and AI-powered features
• Execute automated workflows and integrations
• Process and analyze data to optimize workflow performance
• Maintain and improve our AI algorithms and machine learning models
• Provide customer support and technical assistance

AI and Machine Learning

• Train and improve our AI models using anonymized, aggregated data
• Provide intelligent workflow suggestions and optimizations
• Detect patterns and bottlenecks in your workflows
• Generate predictive analytics and insights
• Automate routine tasks and decision-making processes

Communication and Marketing

• Send service-related notifications and updates
• Provide product announcements and feature updates
• Send marketing communications (with your consent)
• Conduct surveys and gather feedback

Legal and Security

• Comply with legal obligations and regulatory requirements
• Protect against fraud, abuse, and security threats
• Enforce our Terms of Service and other policies
• Resolve disputes and investigate violations

Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

With Your Consent

• When you explicitly authorize us to share information
• Through integrations you configure with third-party services
• When sharing data with team members within your organization

Service Providers

• Cloud Infrastructure: AWS, Google Cloud Platform for hosting and storage
• Payment Processing: Stripe, PayPal for billing and payments
• Analytics: Google Analytics, Mixpanel for usage analytics
• Communication: SendGrid, Twilio for email and SMS services
• Support: Intercom, Zendesk for customer support

Legal Requirements

• To comply with applicable laws, regulations, or legal processes
• To respond to lawful requests from public authorities
• To protect our rights, property, or safety, or that of our users
• In connection with a merger, acquisition, or sale of assets

Aggregated and Anonymized Data

We may share aggregated, anonymized data that cannot identify you personally for:

• Industry research and benchmarking
• Product development and improvement
• Marketing and promotional purposes

Data Security and Protection

We implement comprehensive security measures to protect your information:

Technical Safeguards

• Encryption: AES-256 encryption for data at rest, TLS 1.3 for data in transit
• Access Controls: Role-based access control (RBAC) and multi-factor authentication
• Network Security: Firewalls, intrusion detection, and DDoS protection
• Regular Audits: Security assessments, penetration testing, and vulnerability scans
• Data Backup: Automated backups with encryption and geographic redundancy

Organizational Measures

• Employee background checks and security training
• Confidentiality agreements and data handling policies
• Incident response procedures and breach notification protocols
• Regular security awareness training and updates

Compliance Certifications

• SOC 2 Type II: Annual compliance audits for security and availability
• GDPR: Full compliance with European data protection regulations
• CCPA: Compliance with California Consumer Privacy Act
• ISO 27001: Information security management system certification

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

Universal Rights

• Access: Request a copy of your personal information
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal information
• Portability: Export your data in a machine-readable format
• Opt-out: Unsubscribe from marketing communications

GDPR Rights (EU Residents)

• Restriction: Limit how we process your information
• Objection: Object to processing based on legitimate interests
• Automated Decision-Making: Opt-out of automated profiling
• Data Protection Officer: Contact our DPO for privacy concerns

CCPA Rights (California Residents)

• Know: Right to know what personal information is collected
• Delete: Right to delete personal information
• Opt-out: Right to opt-out of sale (we don't sell data)
• Non-discrimination: Equal service regardless of privacy choices

To exercise your rights, contact us at privacy@worklens.com or use the privacy controls in your account settings.

Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active, plus 90 days after deletion
• Workflow Data: Retained for the duration of your subscription, plus 1 year for backup purposes
• Billing Records: Retained for 7 years for tax and accounting purposes
• Support Communications: Retained for 3 years for quality assurance
• Log Data: Retained for 1 year for security and performance monitoring
• Anonymized Analytics: May be retained indefinitely for product improvement

International Data Transfers

WorkLens operates globally, and your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses: EU-approved data transfer mechanisms
• Adequacy Decisions: Transfers to countries with adequate protection levels
• Privacy Shield: Compliance with applicable international frameworks
• Data Localization: Option to store data in specific regions upon request

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Types of Cookies

• Essential Cookies: Required for basic site functionality and security
• Performance Cookies: Help us understand how you use our service
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used for targeted advertising (with consent)

Cookie Management

You can control cookies through:

• Browser settings and preferences
• Our cookie consent banner and preference center
• Third-party opt-out tools and industry initiatives
• Account settings for functional preferences

Children's Privacy

WorkLens is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@worklens.com.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Displaying prominent notices in our application
• Providing at least 30 days' notice for material changes

Your continued use of WorkLens after the effective date of any changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: