Trust

Privacy Policy

This explains what information MaintainFlow collects, how we use it, and the choices you have. We've kept it plain rather than dense.

Last updated · June 28, 2026

Who we are

MaintainFlow (“we”, “us”) provides a web-based CMMS for small and mid-sized maintenance teams. This policy covers maintainflow.pro and the MaintainFlow web application.

Information we collect

  • Account information — your name, email, company name, and role, so we can create and run your workspace.
  • Maintenance data you enter — work orders, assets, parts, PM schedules, and related history. This is your operational data; see Data Ownership.
  • Billing information — handled by Stripe. We receive your subscription status and the last digits of your card from Stripe, but never your full card number.
  • Messages you send us — for example via the contact form or email.
  • Basic technical data — standard server logs and minimal cookies needed to keep you signed in and to keep the service secure.

How we use it

  • Provide and operate the service for your team.
  • Process your subscription and send billing-related notices.
  • Respond to support requests and questions.
  • Keep the service secure and prevent abuse.
  • Improve the product, using aggregated, non-identifying usage where possible.

We do not sell your personal information, and we never sell or share your maintenance data.

Who processes data for us

We use a small set of trusted providers to run the service:

  • Netlify — website and application hosting.
  • Supabase — managed PostgreSQL database and authentication.
  • Stripe — subscription payments.
  • Resend — transactional email (e.g. invitations, billing notices).

Each processes data only as needed to provide its part of the service.

Retention & deletion

We keep your data while your account is active. You can export it anytime, and you can ask us to delete your workspace — see Data Ownership. Some records (e.g. invoices) may be retained where required for legal or accounting reasons.

Your rights

You can access, correct, export, or request deletion of your information. To exercise any of these, email info@maintainflow.pro.

Cookies

We use the minimum cookies needed to keep you signed in and to keep the service secure. We don't use advertising or cross-site tracking cookies.

Where your data is processed

MaintainFlow is operated from Canada, and your data is stored and processed in Canada and the United States by the providers listed above. If you access the service from outside these countries, you understand your information is transferred to and processed there.

EU / UK visitors (GDPR)

If you're in the European Economic Area or the UK, we process your personal data on these lawful bases: to perform our contract with you (running your account and the service), our legitimate interests (keeping the service secure and improving it), your consent where we ask for it, and to meet legal obligations (e.g. tax records).

You have the right to access, correct, export (portability), delete, or restrict processing of your personal data, and to object to processing based on legitimate interests. To exercise any of these, email info@maintainflow.pro. You may also lodge a complaint with your local data-protection authority.

California visitors (CCPA / CPRA)

If you're a California resident, you have the right to know what personal information we collect and why, to request access or deletion, and to not be discriminated against for exercising those rights. We do not sell or share your personal information, and we don't use it for cross-context behavioral advertising. To make a request, email info@maintainflow.pro.

Changes & contact

We'll update this page if our practices change, and revise the date above. Questions? Email info@maintainflow.pro.