Flare CRM Logo
Start Free Trial

Privacy Policy

Effective Date: April 28, 2025

Introduction

This Privacy Policy (“Policy”) describes how Qatana Technologies GmbH, headquartered at Hofzeile 10–12/10/9, 1190 Vienna, Austria, operating under the name FlareCRM (“FlareCRM”, “we”, “us”, or “our”), collects, processes, stores, and protects personal data when you access our website flarecrm.io and related services (collectively referred to as the “Services”). Please note that this Policy does not apply to personal data we process on behalf of our business customers (“Customers”) under a separate agreement; in such cases, FlareCRM acts as a processor in accordance with the Customer’s instructions.

1. Controller Under GDPR

Qatana Technologies GmbH
Hofzeile 10–12/10/9
1190 Vienna, Austria

2. Collected Data

a) Data You Provide

We collect personal data when you:

  • Register or create an account
  • Complete forms on our website
  • Communicate with our support team
  • Actively use our Services

This may include first and last name, email address, company name, payment information (processed via third-party providers such as Stripe) and optional data (e.g., phone number, job title).

b) Data Collected Automatically

We automatically collect technical data when you access or use our Services, including:

  • IP address, device information, browser type and version, operating system
  • Access times and visited pages
  • Interaction data within the CRM application
  • Cookies and tracking technologies

c) Data from Third-Party Services

When you integrate FlareCRM with third-party tools (e.g., Google Workspace), we may access certain data (e.g., email metadata, contacts) strictly under the respective API permissions and Google’s API Services policies.

d) Disclosure of Information to Outside Parties

We do not sell or trade your personal data. We only disclose data to trusted service providers supporting our operations, to comply with legal obligations, to enforce policies, or to protect rights and safety.

3. Purposes of Processing

  • Provide and operate the CRM platform
  • Personalize your user experience
  • Offer customer service and support
  • Analyze usage, detect bugs, and improve Services
  • Comply with legal obligations and ensure security
  • Conduct marketing (only with your explicit consent)

4. Data Sharing

We do not sell your personal data. We share data only with:

  • Payment processors (e.g., Stripe)
  • Infrastructure providers (e.g., AWS)
  • Analytics services (e.g., Google Analytics, Matomo)
  • When required by law or to protect rights
  • In corporate transactions (e.g., mergers)
  • Only with your explicit consent

5. Cookies and Tracking Technologies

We use cookies and similar technologies to ensure site functionality, analyze user behavior, and serve personalized content and marketing (only with consent). Manage preferences via our cookie banner or refer to our Cookie Policy.

6. Data Retention

  • For as long as your account/subscription is active
  • As required by legal obligations (e.g., accounting)
  • Until you withdraw consent or object to processing

7. Your Rights Under the GDPR

  • Access your data (Art. 15 GDPR)
  • Rectify inaccurate or incomplete data (Art. 16 GDPR)
  • Erase data (“right to be forgotten”, Art. 17 GDPR)
  • Restrict processing (Art. 18 GDPR)
  • Object to processing (Art. 21 GDPR)
  • Receive data in machine-readable format (Art. 20 GDPR)
  • Withdraw consent at any time (Art. 7 GDPR)

8. Data Security

  • SSL encryption
  • Access control and monitoring
  • Regular security audits and reviews

No transmission over the Internet is 100% secure. We strive to protect your data but cannot guarantee absolute security.

9. International Data Transfers

We store and process data primarily within the EEA. When transferring outside, we use EU Standard Contractual Clauses or equivalent safeguards under GDPR.

10. Changes to This Policy

We may update this Policy periodically. For significant changes, we will notify you via email or notices on our website. The latest version is always available at Privacy Policy.

11. Google Integrations and Third-Party Data

Google Workspace Integration

FlareCRM integrates with Google Workspace (Gmail, Calendar, etc.) to enable CRM features. We access only data you authorize (metadata, events, contacts) under Google’s API policies and do not use it to train AI models.

Other Third-Party Data Sources

We may receive additional data (statistical, technical, demographic) from reputable sources to enhance your experience and improve our Services.

12. Contact Information

For questions about this Policy or your data, please contact us.