🔒 Security & Privacy at ApproveFlow

Effective date: July 29, 2025

At ApproveFlow, we take security and data privacy seriously. We know expense approvals involve sensitive information, so we’ve built our product with safety and transparency in mind.

1. Data handling

• Minimal data storage: We only store the metadata required to process approvals (who requested, who approved, timestamp).
• No financial data (like credit card numbers or banking details) is stored in ApproveFlow.
• All data is hosted securely on Amazon Web Services (AWS).

2. Privacy

• ApproveFlow is fully GDPR compliant.
• We never sell or share your data with third parties.
• You can request deletion of your workspace data at any time.

3. Security

• Communication between Slack and our servers is fully encrypted (HTTPS/TLS 1.2+).
• Authentication is handled via Slack’s OAuth 2.0 protocol.
• Role-based access ensures only authorized team members can approve requests.

4. Transparency

• You own your data: ApproveFlow only processes it on your behalf..
• We log all approvals to ensure a complete audit trail for finance and compliance.

For any questions, contact us at support@approveflow.io