Information We Collect

When you reach out or work with us, we gather certain information. Most of it comes directly from you during conversations, project briefings, or when you fill out our contact form. Here's what we typically collect:

• Your name and how you prefer to be addressed
• Email address and phone number for project communications
• Company name and role (helps us understand your needs better)
• Project requirements and technical specifications you share
• Payment information when we move forward with development work
• Communication records—emails, meeting notes, project feedback
• Technical data like IP addresses and browser type when you visit our site

We don't collect anything unnecessary. If we ask for information, it's because we genuinely need it to deliver your mobile solution or improve our service.

How We Use Your Information

Your data serves specific purposes in our workflow. We're not in the business of hoarding information or using it for anything outside the scope of our professional relationship.

Project Delivery

Obviously, we need your contact details and project specifications to build what you're paying us to create. This includes coordinating meetings, sharing progress updates, gathering feedback, and delivering the final mobile application.

Business Operations

We use your information for invoicing, contract management, and maintaining records of our work together. Cambodia's business regulations require us to keep certain documentation, and we follow those requirements.

Service Improvement

Sometimes we look at patterns in how clients use our website or what challenges come up repeatedly during projects. This helps us refine our process and build better solutions. But we're talking about anonymized trends, not tracking your individual behavior for marketing purposes.

Legal Compliance

If we're legally required to disclose information—like during tax audits or legitimate legal proceedings—we'll do so. We won't volunteer your data, but we're not breaking laws to protect it either.

Data Storage and Security

We store your information on secure servers with encryption and access controls. Our team in Phnom Penh follows standard security practices, and we use reputable cloud services with strong security certifications for project files and communications.

That said, no system is completely bulletproof. We take reasonable precautions, but we can't guarantee absolute security. If a breach happens, we'll notify affected clients promptly and work to resolve the situation.

Who We Share Your Data With

We're selective about who gets access to your information. Here's the complete list:

Service Providers

We work with a few third parties to run our business—hosting providers, payment processors, email services, and project management tools. These companies only get the minimum data they need to do their job, and they're contractually bound to protect it.

Development Partners

For some projects, we collaborate with specialized developers or consultants. When that happens, we share relevant project details but only with your explicit consent. These partners sign confidentiality agreements before accessing any client information.

Legal Requirements

If Cambodian authorities or courts require disclosure, we'll comply. We'll also share information if necessary to protect our legal rights, prevent fraud, or ensure safety.

Your Rights and Control

Your data belongs to you. We're just holding it temporarily to do the work you hired us for. You have several rights regarding your information:

Access and Correction

You can request a copy of what we have on file about you. If something's wrong or outdated, let us know and we'll fix it. Email us at info@flowtransfermesh.com with "Data Access Request" in the subject line.

Deletion

Want us to delete your information? We'll do it, with two caveats. First, we might need to keep certain records for legal compliance or tax purposes. Second, if we're in the middle of a project together, we'll need to keep relevant data until completion. After that, it's gone.

Data Portability

If you want to take your data elsewhere, we can provide it in a common format. This mainly applies to project files and communications—things that genuinely belong to you.

Restriction of Processing

You can ask us to limit how we use your data in certain circumstances. Maybe you're disputing accuracy or need a temporary hold while resolving a legal matter. We'll honor reasonable requests.

Data Retention

We don't keep your information forever. Here's our general approach to retention:

• Active project data: Retained throughout project duration plus six months
• Completed project archives: Kept for three years unless you request earlier deletion
• Financial records: Maintained for seven years per Cambodia tax regulations
• Marketing communications: Stored until you unsubscribe or request removal
• Website analytics: Aggregated data kept indefinitely; individual session data deleted after 24 months

When retention periods expire, we securely delete or anonymize the data. This means complete removal from our systems, not just archiving.

International Data Transfers

We're based in Cambodia, but some of our service providers operate servers in other countries. Your data might be processed in the United States, Singapore, or the European Union depending on which tools we're using for a given project.

When this happens, we make sure these providers have adequate security measures in place. We choose vendors carefully and verify they follow international data protection standards. If you're concerned about where your specific data is stored, just ask—we can tell you exactly which services we're using for your project.

Cookies and Tracking

Our website uses minimal tracking. We've got basic analytics to understand visitor patterns—things like which pages get viewed most, where visitors come from, and how long they stay. This helps us improve the site structure and content.

We're not using invasive advertising trackers or selling your browsing data to third parties. The cookies we do use are:

• Essential cookies that make the website function properly
• Analytics cookies that provide anonymized usage statistics
• Preference cookies that remember your settings if you adjust anything

You can block cookies through your browser settings. It might affect some site functionality, but the core content will still be accessible.

Children's Privacy

Our services target businesses, not individuals under 18. We don't knowingly collect information from children. If we discover we've accidentally gathered data from someone underage, we'll delete it immediately.

Changes to This Policy

We'll update this policy occasionally as our practices evolve or regulations change. When we make significant changes, we'll notify active clients by email. For everyone else, the updated version will be posted here with a new "last updated" date.

We won't make retroactive changes that reduce your rights without explicit consent. If new practices require additional data use, we'll ask permission before implementing them.

Cambodia-Specific Compliance

Our operations align with Cambodia's data protection framework and relevant business regulations. While Cambodia doesn't have comprehensive data protection legislation comparable to GDPR, we follow international best practices and comply with sector-specific requirements that apply to technology services.

We maintain proper business registration and tax compliance in Cambodia, and we follow local requirements for contract documentation and financial record-keeping. If specific data protection laws come into force in Cambodia, we'll update our practices accordingly.