granoflow-docs

Granoflow Privacy Policy

Last Updated: April 01, 2026

This Privacy Policy applies to the Granoflow application, the account-hub login, account, subscription, and billing redirection pages, and the related online services we operate for account management, synchronization, cloud attachments, recovery, subscriptions, and support (collectively, the “Services”).

Granoflow is operated by A New Zero Innovations Limited (Hong Kong). Unless this policy says otherwise for a specific feature or third party, A New Zero Innovations Limited (Hong Kong) is the controller of the personal information described in this policy.

Granoflow is local-first by design. By default, your tasks and most of your personal productivity data stay on your device. We process information online only when you choose to sign in, enable cloud features, use cross-device functions, use paid features, contact us, or use features designed to work with third-party AI services.

1. Scope and Local-First Model

This policy explains what information we process, why we process it, when we share it, how long we keep it, and what choices you may have.

This policy does not control the independent practices of third parties that you interact with directly, such as app stores, payment processors, identity providers, or third-party AI services. Those parties process information under their own terms and privacy policies.

Some features require certain information to work. If you do not provide information that is necessary for a requested feature, we may be unable to provide that feature.

2. Information We Process

2.1 Account, Authentication, and Device Information

When you create an account, sign in, register a device, manage sessions, or request account deletion, we may process:

• Email address and basic account profile information, such as display name or avatar
• Authentication identifiers returned by identity providers
• Session, login, security, device registration, and anti-abuse metadata
• Account deletion request status, scheduled deletion date, and cancellation status

2.2 Content, Attachments, and Cloud Data

Granoflow is used to manage tasks, projects, notes, reviews, preferences, attachments, and related productivity content.

By default, this content stays on your device. If you choose to enable online features such as cloud sync, cloud attachments, recovery, or backup, we may process:

• Synced records, encrypted payloads, metadata, and key-management materials needed for synchronization and recovery
• Attachment metadata and, where applicable, uploaded attachment blobs
• Account-linked settings and long-term data needed to provide cross-device continuity

We aim to limit server-side processing to what is necessary to provide the feature you chose to use.

2.3 Subscription, Billing, and Entitlement Information

When you buy, restore, or manage paid features, we may process:

• Subscription status, entitlement state, storage quota, and purchase restoration status
• Order or transaction reference information received from app stores, subscription platforms, payment processors, or our billing workflows
• Records related to refunds, disputes, abuse prevention, and service eligibility

We do not directly store full payment card numbers.

2.4 Website, account-hub, and Security Metadata

When you use account-hub or related web flows, we may process:

• Login, callback, error, redirect, and billing flow parameters
• One-time identifiers, session verification data, and anti-replay metadata
• Browser language, basic request logs, and troubleshooting records

This information is used to complete the requested flow, protect the service, and diagnose failures.

2.5 Diagnostics and Crash Information

We currently use crash and diagnostic tooling, including Firebase Crashlytics, to help detect failures, investigate bugs, and improve stability.

This may include:

• Crash logs and stack traces
• App version, platform, operating system version, current route, and basic runtime state
• Limited technical context needed for troubleshooting and service integrity

We do not use this diagnostic data for advertising targeting or cross-app profiling.

2.6 Support, Surveys, and Research

If you contact support or choose to participate in research, interviews, or surveys, we may process:

• Your correspondence with us
• Voluntary feedback, responses, and related materials
• Records needed to follow up on a support or compliance request

2.7 AI-Related Processing

Granoflow is not a self-hosted AI model service. Some features are designed to work with third-party AI services.

When you use those features, Granoflow may:

• Organize content locally before sending a request
• Apply rule-based redaction locally
• Replace selected content with opaque placeholders
• Restore placeholders locally after a response is returned

Depending on your settings and the features you use, some AI-related long-term user data, such as redaction terms, aliases, statuses, or sync policies, may be synced or backed up as part of your account-connected data.

3. Why We Process Information

We process information to:

• Provide account registration, login, authentication, device registration, and session management
• Provide cloud sync, cloud attachments, recovery, backup, and cross-device access
• Provide subscriptions, storage quotas, purchase restoration, and billing support
• Operate account-hub login, callback, and billing redirection flows
• Detect service abuse, protect account security, and maintain operational integrity
• Investigate crashes, debug issues, and improve reliability
• Respond to support requests, compliance requests, and service communications
• Facilitate user-requested interactions with third-party AI services
• Run research or surveys only when you choose to participate

We do not sell or rent your personal information. We do not use your app content for advertising targeting or data brokerage.

4. Sharing and Disclosure

We may share information only when needed for the purposes described above, including with the following categories of recipients:

• Authentication, database, hosting, storage, and infrastructure providers
• Crash reporting, logging, and security service providers
• Subscription, billing, and payment service providers
• App stores and distribution platforms
• Email delivery, support, and communication providers
• Third-party AI service providers used by features you choose to use
• Professional advisers, auditors, regulators, courts, or authorities where legally required
• Parties involved in a merger, financing, reorganization, or asset transfer, subject to applicable law

Some of these providers act on our behalf, while others may act under their own legal terms when you interact with them directly. We require service providers acting for us to process information only as needed for their services to us.

5. Additional Information for EEA Users

If you are in the European Economic Area (“EEA”), we generally rely on the following legal bases, depending on the processing:

• Contract: to provide the Services you requested, such as account login, sync, subscriptions, and support
• Legitimate interests: to secure the Services, prevent abuse, investigate bugs, maintain service integrity, and improve reliability
• Consent: where we specifically ask for it, such as optional research activities or where consent is otherwise required by law
• Legal obligation: where we must keep or disclose information to comply with applicable law

EEA users may also have the right to lodge a complaint with their local data protection authority.

Where required by applicable EEA law, we will identify any required EEA representative and provide the relevant contact details in the applicable service, notice, or account flow.

6. Cross-Border Processing

Because Granoflow, its operator, and its service providers may operate in different locations, your information may be processed in Hong Kong and in other jurisdictions where our providers operate. Depending on the features you use, this may include jurisdictions such as the United States or the European Economic Area.

We use contractual, organizational, and technical measures designed to protect information during cross-border processing, including access controls, minimization, feature scoping, and encryption or pseudonymization where appropriate.

Where EEA-restricted transfers apply, we intend to rely on an appropriate transfer mechanism recognized under applicable law, such as contractual safeguards, and you may request additional information about the relevant safeguard mechanism by contacting us.

Where applicable law requires additional notice, consent, or a specific transfer mechanism before certain cross-border processing takes place, we will provide that at the relevant collection point, feature flow, or account workflow.

7. Retention and Deletion

We keep information for different periods depending on what it is and why it is needed:

• Local-only data stays on your device until you delete it, remove the app, clear local storage, or delete your own backups.
• Account, security, device, and service operation records are kept for as long as reasonably necessary to operate the Services, protect accounts, enforce terms, resolve disputes, and comply with law.
• Cloud-connected content and attachment records are kept while the related feature or account remains active, and may later be deleted, archived, de-identified, or cleaned up according to our retention logic, backups, legal requirements, and service status.
• Support, billing, tax, anti-fraud, and compliance records may be retained longer where reasonably necessary.

If you request account deletion, your request currently enters a 30-day cooling-off period before final server-side deletion is completed. During that period:

• active uploads or other account-connected features may be restricted,
• pending deletion status may be shown when you sign in, and
• you may be able to cancel the deletion request before it is finalized.

Deleting your account does not automatically remove:

• data already stored on your local device,
• exported files or your own backups,
• records kept by app stores, payment processors, or identity providers,
• or content you already chose to send to a third-party AI service under that provider’s own terms.

8. Your Rights and Choices

Depending on your location and applicable law, you may have the right to:

• access, correct, or update certain account information,
• request deletion of your account and certain server-side data we control,
• object to or restrict certain processing,
• withdraw consent where processing is based on consent,
• request a copy of certain information,
• export or delete local data that remains under your control,
• and stop using optional cloud or AI-related features.

Some requests may require identity verification, and some rights may be limited by law, technical feasibility, security needs, or the rights of others.

For privacy requests, please email granoflow@anz.tv. Please do not post sensitive personal information in public GitHub issues.

9. Region-Specific Disclosures

9.1 Additional Information for Users in Mainland China

We aim to provide clear Chinese-language disclosures for users in Mainland China. Where applicable law requires separate notice, separate consent, or additional disclosure for particular cross-border processing or sensitive processing, we may provide that through the relevant feature flow, settings notice, account workflow, or collection point.

9.2 Additional Information for Users in Hong Kong

This policy is our general privacy policy statement for Granoflow. Where a specific feature or collection point, including account-hub forms and billing-related web flows, requires collection-point notice, we will provide an additional notice at that point. If you do not provide information that is necessary for a requested feature, we may be unable to provide that feature.

9.3 Additional Information for Users in Singapore

If you are in Singapore, you may have rights to withdraw consent, request access, or request correction, subject to applicable law. Withdrawal of consent may affect features that depend on the information being processed. Where collection takes place through a specific web form, account workflow, or billing flow, we will provide collection-point notice in that flow. Where personal data is processed outside Singapore, we seek to ensure a standard of protection comparable to applicable legal requirements.

10. Children

Granoflow is not directed to children. If you are below the age at which you can validly consent to the processing described in this policy under applicable law, use the Services only with the involvement or permission of a parent or guardian where required.

11. Changes to This Policy

We may update this policy from time to time to reflect product, operational, or legal changes. If an update materially affects your rights or our data handling, we will provide reasonable notice through the app, account-hub, email, or another appropriate channel.

We may also provide feature-specific notices, FAQs, or in-product prompts for sync, AI, billing, or other specialized flows. Those disclosures supplement this policy.

12. Contact Us

If you have privacy questions or requests, contact us at:

• Email: granoflow@anz.tv
• Public issues for product feedback only: https://github.com/granoflow/granoflow-docs/issues

Operator / Controller: A New Zero Innovations Limited (Hong Kong)