Privacy Policy

How Flowstate Industries handles your data across our website and products.

Last updated: March 24, 2026

Your Privacy Matters

We collect minimal data to operate our services. We use privacy-focused analytics, never sell your data, and design our products with privacy in mind.

1 Introduction

This Privacy Policy explains how Flowstate Industries LLC ("we", "our", or "us") collects, uses, and protects your information when you use our website (flowstateindustries.com) and our products, including Worldly, Checkout, and ShipLocal.

By using our website or products, you agree to the collection and use of information in accordance with this policy. We are committed to protecting your privacy and being transparent about our data practices.

2 Website

When you visit flowstateindustries.com, we collect limited information:

Contact Form Submissions

When you contact us through our website, we collect the information you provide, such as your name, email address, and message content.

Anonymous Analytics Data

We use Umami Analytics, a privacy-focused platform, to collect anonymized usage data such as page views, referring websites, and general geographic region. This data cannot identify you personally.

What we don't collect: We do not use cookies for tracking, do not collect personal browsing history, and do not build profiles of our visitors.

3 Worldly

Worldly is a privacy-first travel tracking app. Everything you add to Worldly stays on your device.

Local-First Design

No cloud servers, no user accounts, no data transmission. Your travel data is 100% private and stored only on your device.

Data You Enter

Worldly collects only the travel information you manually enter:

  • Visited locations (continents, countries, states, and cities)
  • Travel dates and trip information
  • Optional notes and photos you choose to add

Important: Worldly does not perform automatic location tracking. You choose what to log and when.

Analytics

Worldly uses Firebase Analytics to collect anonymized usage metrics to help us improve the app:

  • Screen views and navigation patterns
  • Session duration and crash reports

Your travel history and location data are NEVER sent to Firebase or any analytics service. Only anonymized app usage data is collected.

Purchase Information

For in-app purchases (Worldly Pro) and grandfathering eligibility:

  • All purchases are processed by Apple through the App Store—we never receive or store your payment information
  • Your original download date is queried locally from the App Store to determine grandfathering eligibility
  • Purchase status is cached locally on your device only—it is not transmitted to any server

No payment data is ever collected by Flowstate Industries. Apple handles all transaction processing securely.

4 ShipLocal

ShipLocal is an AI-powered App Store metadata translation service at shiplocal.app. As a cloud-based service, it requires account creation and processes certain data to function.

Information You Provide

Account Information

Email address and password (encrypted) when you register, or your email and basic profile info (name, profile picture) if you sign in with Google.

Profile Information

Name (optional) and account preferences.

App Metadata

App names, descriptions, keywords, and other content you submit for translation.

App Store Connect Credentials

If you connect your App Store Connect account: Issuer ID, Key ID, and Private Key. These are encrypted at rest using industry-standard encryption.

Payment Information

Plan purchases are processed by our payment provider, Polar—we do not store your credit card information. We store your plan type and purchase history.

Information Collected Automatically

Usage Data

Features used, translations performed, apps created, and timestamps.

Device Information

Browser type, operating system, and IP address.

Analytics Data

Page views and interactions collected via Umami (privacy-focused, no personal data tracking).

How We Use Your Data

  • Provide the service: Process your translations using AI
  • Manage your account: Process plan purchases and manage your subscription through Polar
  • Send transactional emails: Account confirmations, password resets, billing receipts
  • Respond to support: Handle your inquiries and requests
  • Improve the service: Analyze usage patterns to optimize features
  • Detect and prevent: Identify fraud or abuse of the service

We do not sell your personal information. We do not send marketing emails without your explicit consent.

5 Checkout

Checkout is a tip and shift tracking app for servers and bartenders. Your data is stored locally on your device, and we collect anonymous usage analytics to improve the app.

Local-First Design

No cloud servers, no user accounts. Your financial data is stored locally on your device using SwiftData. Anonymous usage analytics are collected to help improve the app.

Data You Enter

Checkout collects only the shift and earnings information you manually enter:

  • Shift details (date, hours worked, employer)
  • Tips (cash and credit amounts)
  • Employer information (name, hourly wage)
  • Weekly earning goals and preferences

Analytics

Checkout uses PostHog to collect usage data to help us improve the app:

  • Shift details (earnings, tips, hours worked, hourly rate)
  • Goal progress and weekly earnings targets
  • Screen views and navigation patterns
  • App settings and preferences

Note: Analytics data is associated with an anonymous device identifier, not your personal identity.

Purchase Information

For in-app purchases (Checkout Pro):

  • All purchases are processed by Apple through the App Store—we never receive or store your payment information
  • Purchase status is verified and cached locally on your device only

No payment data is ever collected by Flowstate Industries. Apple handles all transaction processing securely.

6 Third-Party Services

Our website and products use the following third-party services:

Supabase

Database storage and authentication. Handles user accounts, data storage, email/password authentication, and Google OAuth sign-in. Privacy Policy (ShipLocal)

Vercel Analytics

Privacy-focused web analytics built into Vercel hosting. Collects anonymous usage data without cookies. Privacy Policy (ShipLocal)

Google Sign-In

OAuth authentication via Supabase. If you choose to sign in with Google, we receive your email address, name, and profile picture. We do not access your Google Drive, Gmail, or any other Google services. Privacy Policy (ShipLocal)

AI Providers (Anthropic Claude & OpenAI ChatGPT)

AI translation processing. We share app metadata (descriptions, keywords) for translation—no personally identifiable information is sent. Anthropic Privacy · OpenAI Privacy (ShipLocal)

Polar

Payment processing (merchant of record). We share email and name for billing—payment card information is handled entirely by Polar. Privacy Policy (ShipLocal)

Apple App Store Connect

If you connect your account, we use your API credentials to authenticate on your behalf. We act as your agent and do not store Apple's data long-term. (ShipLocal)

Vercel

Cloud hosting and deployment. Privacy Policy (ShipLocal)

Firebase Analytics

Anonymized app usage analytics and crash reporting. (Worldly)

PostHog

Anonymized app usage analytics. Privacy Policy (Checkout)

Apple MapKit

Location searches and map display. Only search queries are processed. (Worldly)

Render

Cloud hosting for company website. All service data is stored encrypted. Privacy Policy (Website)

Umami Analytics

Privacy-focused website analytics. Collects anonymized page views without cookies or personal data tracking. Privacy Policy (Website)

Summary: Your App Store metadata is sent to AI services (Anthropic Claude or OpenAI ChatGPT) for localization. Your payment information is processed by Polar. We encrypt stored credentials using industry-standard encryption.

Important Note About AI Processing: When you submit app metadata for translation, that content is sent to your chosen AI provider (Anthropic Claude or OpenAI ChatGPT) for processing. Each provider processes this data according to their respective privacy policies and API terms. We recommend reviewing their policies if you have concerns about AI data processing.

International Data Transfers: Your data may be transferred to and processed in the United States and other countries where our service providers operate. By using ShipLocal, you consent to this transfer. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable data protection laws.

7 Data Security

We implement appropriate technical and organizational measures to protect your data:

Encryption

App Store Connect credentials are encrypted using AES-256-GCM encryption. All data is transmitted over HTTPS/TLS.

Access Controls

Row-level security ensures users can only access their own data. We implement rate limiting to protect against abuse.

Infrastructure

Our services are hosted on secure cloud infrastructure with regular security updates and monitoring.

No Guarantees: While we take security seriously, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

8 Data Retention

We retain information only as long as necessary:

  • Contact form submissions: Retained for as long as needed to respond to and resolve your inquiry
  • Analytics data: Aggregated and anonymized data is retained indefinitely for trend analysis
  • Worldly data: Stored locally on your device; you control retention through the app
  • ShipLocal active accounts: We retain your data for as long as your account is active
  • ShipLocal deleted accounts: When you delete your account, your data is removed from our systems immediately
  • Payment records: Billing history is retained by Polar according to their policies and legal requirements
  • Backups: Data may persist in encrypted backups for up to 30 days after deletion

9 Your Rights

You have the following rights regarding your data:

Access

Request a copy of data we have about you

Deletion

Request deletion of your personal data

Correction

Request correction of inaccurate data

Export

Request a portable copy of your data

Opt-out

Our analytics already respect Do Not Track

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act including the right to know what personal information we collect, the right to delete, and the right to opt-out of the sale of personal information. We do not sell personal information.

European Residents (GDPR)

If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us using the information below.

10 Cookies

ShipLocal uses minimal cookies necessary to operate the service:

Session Cookies

Required to keep you logged in during your session.

Preference Cookies

Remember your settings (e.g., language preferences).

We do not use third-party tracking cookies. We do not track you across other websites.

11 Children's Privacy

ShipLocal is a business service not intended for users under 18. We do not knowingly collect information from children. If you believe a child has provided us with personal information, please contact us immediately.

12 Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this document.

We encourage you to review this Privacy Policy periodically for any changes. Changes are effective when posted on this page.

13 Contact Us

If you have any questions about this Privacy Policy, please contact us:

support@flowstateindustries.com
Back to Home