Flowbox respects your privacy and is committed to maintaining a high level of security and integrity regarding your personal data. The company is also committed to ensuring that processing is carried out in accordance with the general data protection regulation (GDPR).
Data collected by Flowbox
What type of data do you collect and process?
We collect and process the following user data from social media: user name, images and captions. From our platform users we collect name, email addresses and phone numbers. The data that is collected in our platform and rights granted through functionality in our platform is used by platform users to create content feeds, Flows, that can be distributed online. We only collect public content that is already available on social platforms and that the original uploader has agreed to be used for marketing purposes.
Who has access to the data you collect?
Your data is only accessible by the Flowbox employees that need to process the information collected in order to manage and deliver our products and services. We also use third-party services to give you a better experience and ensure that all of our clients receive the information that is relevant in order to use our services.
How does Flowbox ensure data is processed according to GDPR?
Since 25 May 2018, our platform is entirely compliant with GDPR requirements. As a client, you can trust that your customers’ data privacy is protected and that their data is handled and processed with high standards according to the GDPR. We have procedures for how to handle the data and have functions in the platform that make it possible to find all data that can be traced to a physical person.
What do we do to secure data?
Data security is our highest priority and we apply high-standard intrusion protection mechanisms to prevent infringement on our platform and our database. We keep all passwords as well as our database safe through advanced encryption mechanisms.
External content collected by Flowbox
How can I know if the picture is deleted or if the profile has been switched to private? Do we get a notification within Flowbox?
If the original user has switched their profile to private or deleted the image from their account, it will be removed from the Flow within seven workdays.
If the image has been downloaded and stored externally by the platform user before the account was set to private, or before the image was deleted, it’s the platform user’s responsibility to ensure that this image won’t be used for any marketing purposes. Flowbox will not send out any notification.
What happens if we use Flowbox to post a rights-granted photo on Instagram and download it to use later, but the original user suddenly removes the image from his or her social media account? Can we still use it?
As soon as the original user removes the image, it will automatically be removed from your Flow within seven workdays. In order to use an image after it has been removed, the original user must beforehand have agreed for it to be used in the intended way. We recommend having your company’s rights request terms and conditions publicly available on your website and refer to these conditions when asking your customers for permission to use their content.
In our Rights Request template, we ask you to include an URL. This is where we recommend you to link to your own legal page with terms & conditions that your customers accept whenever they give consent to your request.
Flowbox does not offer a standard template, because ultimately these t&cs need to come from your organization, and you are responsible for upholding them.
However, we can share these examples:
- Hornbach 🇨🇭
If you want inspiration on how you can phrase your Rights Request templates, check out #yesCasall, #yesRoyalDesign and #yesFootway directly on Instagram and the posts comment sections to see various examples.