Privacy Notice
Last updated: June 18, 2026
About this Privacy Notice
This Privacy Notice is meant to give you information about what personal data we collect about you, how we use it, why we use it, and how you control the data processing.
Table of Contents
1. The Basics
1.1 Who We Are
We, FaxFlow, a business managed by Mobile Flow Ltd, offer fax delivery services through our app. Our offices are located at Kiryat HaMada St 20, Jerusalem, Israel 9777600, and our registration number is 517148722.
If you have questions about our company or your privacy, or want to exercise your rights, you can contact us at support@fax-flow.com.
1.2 Definitions and Recommendations
When we refer to “app”, we mean our mobile app or web app that allows users to send faxes.
When we refer to "services", we mean our app and any services available thereon.
When we refer to "personal data", we mean information that is defined as personal data under law. This includes information that identifies you directly or indirectly, including unique identifiers like IP addresses or cookie IDs.
When we refer to "you", we mean any user of our app. If you are registering for the Services on behalf of a company or organization, the term "you" is also meant to refer to that company, where it makes sense from the context. When we mean to refer only to such company, we'll use the term "customer".
This Privacy Notice is meant to be read together with our Terms of Service, which you can find at https://www.fax-flow.com/terms-of-use. In general, we recommend that you routinely review this privacy notice and your preferences on our app.
2. Personal Data We Collect, How We Use It, and Why
Below is a description of the types of personal data we collect, how we use it, and the reason why we consider each use lawful. You have no legal obligation to provide us with personal data, but if you don't provide us with certain information, we may not be able to provide you with the associated services.
2.1 Contact Information
When you send us a message through the contact option on our app, on our site or any other means, we collect any data you provide, such as your name, email, the content and subject of your message.
How We Use this Data: To respond to your message or inquiry.
2.2 Registration Data
In order to access our app, you must first create an account. You can create an account by logging in through your Apple or Google account (or other third-party login, which may be available from time to time). Upon creation of your account, we will process your name, email address, and phone number, and we may receive additional personal data from your third-party login account, subject to the terms of such third party.
How We Use this Data: We use your registration information to allow you to access to our app, save your preferences, protect the security of our services, prevent fraud, and address any issues that arise. We use your contact details to communicate with you about our services, and to provide you with newsletters and/or other marketing or promotional information. For more information about our marketing activities and how you can control your preferences, see the section on Our Marketing Activities below. We may also provide you with push notifications on the device on which you use the app.
2.3 Activity and System Data (Cookies)
When you use our app, we automatically collect data about your computer or mobile device, including personal data such as your IP address, device ID, browsing history (e.g. the other sites you've visited before ours), usage data, metadata, and your activity on our site services (e.g. what pages you visited, for how long, and what links you clicked on). For more information about the cookies we use and how to adjust your preferences, see the Cookies and Similar Technologies section below.
How We Use this Data: We mainly use this data to generate aggregated analytics data about the use of our services so we can maintain and improve the services and develop new products or services. We also use statistical data to prevent fraud and protect the security of our services. We also provide certain identifiers (such as your email address) to advertising platforms (for example, Google) as a signal to help us advertise our own apps to existing customers and reach new potential users similar to them (for example, Google Ads Customer Match). We do not engage in cross-context behavioral retargeting, and we do not use your fax recipients or fax contents for advertising. See Section 3.3 for details and your opt-out. One of the tools we use to collect and analyze this data is "Google Analytics". For more information about how Google collects information and how you can control such use, see: www.google.com/policies/privacy/partners/.
2.4 Payment Data
If you purchase a subscription through the services, we and/or out third party payment processor receive information related to such purchase.
How We Use this Data: To process your payment and to prevent fraud and maintenance of our accounting records.
2.5 Communications Information
When you send a fax through our services, we collect metadata related to such fax, such as the header information, sender and recipient data of the fax.
How We Use this Data: To provide you with our services.
2.6 Fax Contents (Sent and Received)
When you use our Services to send or receive a fax, we process the content of such fax, including any Personal Data contained therein. We may also access your device’s camera, photos, or files if you grant permission, to allow you to upload or attach documents.
How We Use this Data: To transmit, deliver, or receive faxes through our Services; to store received faxes temporarily; and to ensure reliable delivery and user access during the retention period.
2.7 Android's App Set ID
We collect Android's App Set ID from your device when you use our app.
How We Use this Data: We use the App Set ID for the essential purposes of analytics and fraud prevention. We do not connect the App Set ID to any Android advertising identifiers (for example, AAIDs) or any personal data for advertising purposes. We process the App Set ID in accordance with Google Play's User Data Policy.
2.8 Fax Numbers and Incoming Faxes
When you subscribe to a plan that includes a dedicated fax number (“Fax Number”), we process additional data related to that number and incoming faxes, such as:
- The assigned Fax Number and its connection with your account;
- Metadata about received faxes (date, time, sender identification, and delivery status);
- The content of received faxes for a limited time.
How We Use this Data: To provide fax receiving functionality, maintain the operation of the assigned Fax Number, enable your access to received faxes, notify you of incoming transmissions, and comply with data retention and deletion policies.
2.9 AI Processing of Recipient Fax Numbers
We operate a directory that identifies the organization associated with a destination fax number and offers related guidance (for example, the relevant department or form). When a destination (recipient) fax number is looked up, that number alone is sent to a third-party artificial-intelligence service provider (OpenAI) to identify the organization. The lookup is keyed only to the fax number and is not associated with your account, your identity, or your fax history, and we do not send the contents of your faxes or any other Personal Data. Results are stored and reused, so a given number is generally only looked up once. The provider acts as our service provider and is bound by confidentiality and data-protection obligations. You can review OpenAI's privacy practices at https://openai.com/policies/privacy-policy/.
How We Use this Data: To identify the recipient organization, surface relevant directory information and form guidance, and improve and operate the directory feature.
3. Our Marketing Activities
As described above, we may use personal data we collect for advertising and marketing purposes. We try to limit the marketing material we send to a reasonable and proportionate level. Below we describe how you can control the marketing material you receive from us.
3.1 Email Marketing and Services Communications
We use your contact details to send you informational newsletters and other marketing material about our products and services.
You can stop the delivery of all marketing emails by following the "unsubscribe" link in any messages we send you. Alternatively, you can contact us at support@fax-flow.com to request to unsubscribe.
Note that if you are a registered user, we may need to contact you about administrative or service-related issues as part of the services we provide to you. This is not marketing communication and you will continue to receive these messages even if you opt-out of marketing emails.
We may also use information about your sending activity — including the fax numbers of the recipients you send to and the categories of organizations you contact — to recommend our own related products and features to you (for example, suggesting a dedicated Fax Number, or another app from our company relevant to who you fax). We do not sell or share this information with third parties, and we do not use your sending activity to build advertising audiences or for cross-context targeted advertising. You can opt out of these recommendations at any time by using the unsubscribe link in our emails or by contacting support@fax-flow.com.
3.2 Android Advertising ID
We collect Android's advertising identifier (AAID) from your device. We use AAIDs in accordance with Google Play's Ads Policy.
3.3 Targeted Advertising and Your Right to Opt Out
We share certain identifiers — specifically your email address and information about your purchases/subscription — with advertising partners (such as Google) so we can advertise our own apps to existing or similar customers (for example, through Google Ads "Customer Match" audiences, used as a signal to help our campaigns reach users similar to our customers). Under the California Consumer Privacy Act and similar U.S. state laws, this may be considered a "sale" or "sharing" of personal information for cross-context behavioral advertising. We do not share the contents of your faxes, your fax recipients, or your fax history for advertising, and we do not engage in behavioral retargeting.
You can opt out of this sharing at any time:
- In the app: Settings → Analytics → "Do Not Sell or Share My Personal Information."
- On the web: the "Do Not Sell or Share My Personal Information" link in our website footer.
- We also honor Global Privacy Control (GPC) browser signals as a valid opt-out request.
When you opt out, we stop using your information for personalized advertising and exclude you from advertising audiences (such as Google Customer Match) going forward. We may continue to use your information to measure conversions and the performance of our own ads (for example, to know that a subscription resulted from a campaign), which is not personalized advertising. Because these advertising audiences refresh periodically, please allow a short time for the change to take effect.
4. Sharing the Personal Data We Collect
We share your Personal Data with telecommunications and infrastructure providers strictly as needed to route, transmit, and deliver your sent or received faxes, and to store them securely during the retention period. All such providers are bound by confidentiality and data protection obligations.
We share your personal data as follows:
4.1 Customers
If you use our services in connection with a company that is our customer, that customer may have access to information about your use of our services.
4.2 Service Providers and Sub-Processors
We engage the third-party service providers and sub-processors listed below to help us operate the Services. Each provider only receives the Personal Data needed to perform its function, has agreed to confidentiality restrictions, and has undertaken to use your Personal Data solely as we direct. We may update this list from time to time as our vendors change. You can review each provider's own privacy practices by following the links below.
| Sub-Processor | Purpose | Privacy Policy |
|---|---|---|
| Telnyx | Fax telephony — transmitting and receiving faxes, and provisioning dedicated Fax Numbers. | telnyx.com/privacy-policy |
| Google Firebase & Google Cloud | Authentication, database (Firestore), file storage, hosting, abuse prevention (App Check), and backend cloud infrastructure. | firebase.google.com/support/privacy |
| Google Analytics (GA4) | Product and website usage analytics. | business.safety.google/privacy |
| Microsoft Clarity | Product analytics, session insights, and heatmaps to help us understand and improve how the app is used. | privacy.microsoft.com/privacystatement |
| AppsFlyer | Mobile attribution and measurement of marketing campaigns. | appsflyer.com/legal/services-privacy-policy |
| Postmark (Wildbit / ActiveCampaign) | Sending transactional and service emails (for example, fax confirmations and account notices). | postmarkapp.com/privacy-policy |
| OpenAI | AI-powered fax-number directory lookups (processes the destination fax number only — not fax contents, and not linked to your account), as described in Section 2.9. | openai.com/policies/privacy-policy |
| Apple (App Store) | Processing in-app purchases and subscriptions made through iOS. | apple.com/legal/privacy |
| Google Play | Processing in-app purchases and subscriptions made through Android. | policies.google.com/privacy |
| Paddle | Payment processing and merchant-of-record services for purchases made through the web. | paddle.com/legal/privacy |
4.3 Change of Ownership
If we are looking to sell our company, liquidate assets, or merge with another, we may share your personal data with other interested parties as part of negotiations toward that transaction. In such case, or where we do sell our company, your personal data shall continue to be subject to the provisions of this Privacy Notice.
4.4 Law Enforcement Related Disclosure
We may share your personal data with government agencies or other relevant parties, such as a law office or independent auditor: (i) if we believe that such disclosure is appropriate to protect our rights, property or safety (including the enforcement of the Terms of Service and this Privacy Notice) or those of a third party; (ii) if required by law or court order; or (iii) as is necessary to comply with any legal and/or regulatory obligations, such as audit requirements.
5. International Transfers
Some of our service providers are located in countries other than your own and you hereby grant your consent to such transfers. When we transfer your personal data internationally, we will do so safely and securely and in accordance with applicable law.
6. Security
The security of your personal data is important to us. We comply with industry standards and applicable law to make sure that your personal data will be held securely and that it will not be shared or lost accidentally. However, it is impossible to guarantee absolute security. The security of your data also depends on the security of the devices you use and the way in which you protect your user IDs and passwords.
7. Your Rights
How to Control Our Use of Your Personal Data. Depending on which laws apply, you have certain legal rights over your data. If you are a resident of the State of California or of another U.S. state with a comprehensive consumer-privacy law (such as Virginia, Colorado, Connecticut, Utah, Texas, Oregon, or Montana, among others), depending on the applicability of certain laws and exemptions, you may have certain rights over your data, as detailed in Annex A to this Privacy Notice. To exercise your rights, please contact us at support@fax-flow.com. We may ask for reasonable evidence to verify your identity before we can comply with any request.
8. Data Retention
We retain your personal data as long as necessary to fulfill each of the purposes we described above.
When deciding how long to store personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized access, the purposes for which the personal data was collected, as well as applicable legal requirements. Please note that we may delete information from our systems without notifying you first. Retention by any of our service providers or subcontractors may vary in accordance with each business's retention policy. Sent faxes are not stored after transmission. The contents of a fax you send — the document, its page images, and any cover sheet — are used only to carry out the transmission and are deleted from our systems once the send completes or the send attempt finishes; we do not retain the contents of sent faxes thereafter. For privacy and security reasons, received faxes are automatically deleted thirty (30) days after receipt. It is your responsibility to download or back up any received fax you wish to retain. If your subscription ends or lapses, without derogating from the generality of the foregoing, your dedicated Fax Number and associated received faxes will generally remain available for a seven (7) day grace period. After that, your Fax Number may be permanently deactivated or reassigned, and all related data deleted.
In some circumstances, we may store your personal data even after we're finished using it if required to do so by law (e.g. to fulfill tax or audit requirements), or to keep accurate records of our interactions in case there is a prospect of litigation relating to your personal data. In such cases, we will maintain the same security measures as described above.
Please contact us at support@fax-flow.com if you would like details about the retention periods for each type of personal data we process.
9. Cookies and Similar Technologies
9.1 What are Cookies?
A cookie is a small piece of text that is sent to your device and store certain information. There are other technologies that act similarly, like web beacons, pixel tags, and Device IDs for apps, but for simplicity's sake we'll refer to them all as "cookies".
9.2 First-Party / Third-Party Cookies
We use both our own cookies (called "first-party cookies") and cookies of third-parties (called "third-party cookies"). Both we and the third party process data received from such cookies.
9.3 How We Use Cookies
While the specific names and types of cookies we use may change from time to time, they generally fall into one of the categories listed below.
| Cookie Type | Function |
|---|---|
| Necessary | These cookies allow the app to work correctly. They enable your access to the app, move around, and access different services, features, and tools. These cookies cannot be disabled. |
| Functionality | These cookies remember your settings, preferences, and other choices you make (like placing an item in a shopping cart) in order to help personalize and streamline your experience. |
| Security | These cookies help us identify and prevent security risks. They may be used to store your session information to prevent others from changing your password without your login information. |
| Performance/Analytics | These cookies collect analytical information to help us understand how you use our app, for example whether you have viewed messages, clicked on links, and how long you spent on each page. This helps us improve our app to better suit your needs. |
| Advertising | These cookies help advertisers show you ads. When we place advertising cookies, they help us track the efficiency of our advertising campaigns. Advertising cookies may track your browsing habits and activity when using our app and/or websites or apps of third parties and help us serve ads that are relevant and meaningful to you and your interests. |
| Email Analytics | These cookies are placed in messages we send you in order to track your interaction with such messages. |
9.4 Third Party Cookies
In addition to our first-party cookies, we place cookies from the following third party services stated in our Cookie Policy: https://www.fax-flow.com/cookie-policy
9.5 How to Adjust Your Preferences
Most web browsers are initially configured to accept cookies, but you can change the settings so your browser refuses all cookies or certain types of cookies. In addition, you are free to delete any existing cookies at any time. Please note that some features of the services may not function properly when cookies are disabled or removed. For example, if you delete cookies that store your account information or preferences, you will be required to input these each time you visit.
10. Third-Party Services
You may have access to third-party services through our services. Please note that all use of third-party services is at your own risk and subject to such third party's terms and privacy policies. We do not take any responsibility for the performance of other services.
10A. AI and Automated Processing
Some features rely on a third-party artificial-intelligence ("AI") provider (OpenAI). Specifically, our fax-number directory sends a destination (recipient) fax number, and nothing else, to OpenAI to identify the organization associated with that number. We do not send the contents of your faxes, your account identity, or your fax history, and the lookup is not linked to your account. The AI provider acts as our service provider and is contractually bound to keep this data confidential and to use it only to provide the feature to us. For more detail, see Section 2.9 above. You can review OpenAI's privacy practices at https://openai.com/policies/privacy-policy/.
11. Children
We do not knowingly collect personal data from children under the age of eighteen (18). In the event that you become aware that an individual under the age of eighteen (18) has registered without parental permission, please advise us immediately.
11A. Health Information (HIPAA)
FaxFlow is a general-purpose consumer product and is not a "Business Associate" as defined under the U.S. Health Insurance Portability and Accountability Act of 1996 and its implementing regulations ("HIPAA"), and we do not enter into Business Associate Agreements ("BAAs") by default. You must not use the Services to transmit, store, or otherwise process Protected Health Information ("PHI") as defined under HIPAA unless a BAA has been executed between you (or the Customer) and FaxFlow. If you need to send HIPAA-protected data through the Services, please contact us at support@fax-flow.com to request a BAA before transmitting any such data. You are solely responsible for ensuring that your use of the Services complies with HIPAA and any other applicable health-privacy laws, and FaxFlow disclaims liability for any PHI transmitted in the absence of an executed BAA.
12. Changes to the Privacy Notice
We may update this Privacy Notice from time to time to keep it up to date with legal requirements and the way we operate our business. We will place any updates on this webpage. Please come back to this page every now and then to make sure you are familiar with the latest version.
13. Annex A — U.S. State Privacy Rights
This Annex describes additional rights that may apply to you if you are a resident of certain U.S. states with comprehensive consumer-privacy laws. Sections 13.1 through 13.8 describe your rights under California law; Section 13.9 describes rights for residents of other states. The rights described here apply only to the extent the relevant law applies to you and to our processing, and subject to that law's exceptions. To exercise any right described in this Annex, contact us at support@fax-flow.com. We may ask for reasonable evidence to verify your identity, or that you are an authorized agent, before acting on a request.
13.1 Your Rights Under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA)
If you are a resident of the State of California, depending on the applicability of certain laws and exemptions, you may have certain rights over your data. Below is some general information about rights that may apply to you. We recommend that you check the law or consult with a lawyer to understand what applies in your specific case. We may ask for reasonable evidence to verify your identity or to verify that you have been authorized to act on behalf of the relevant individual. For the purposes of this section, "personal data" shall have the meaning of "Personal Information" as defined under the CCPA.
13.2 Right to Know
You have the right to request that we disclose to you any or all of the following in respect of the 12-month period preceding your request:
- The specific personal data we have collected about you.
- The categories of personal data we have collected about you.
- The categories of sources from which we collected the personal data about you.
- The categories of third parties to whom we disclose personal data about you.
- The categories of personal data about you we have sold and the categories of third parties to whom we have sold such personal data.
- The categories of personal data about you we have disclosed for a business purpose and the categories of third parties to whom we have disclosed such personal data.
- Our business or commercial purpose(s) for collecting or selling your personal data.
13.3 Right to Delete
Subject to certain exceptions, you have the right to request that we or any of our service providers delete your personal data.
13.4 Right to Correct
You have the right to request that we correct any inaccurate personal data that we maintain about you, considering the nature of the personal data and the purposes of the processing of the personal data.
13.5 Right to Opt-Out of the Sale or Sharing of Personal Data
As described in Section 3.3, we share personal identifiers (your email address and purchase/subscription information) with Google to advertise our own apps, which may be considered a "sale" or "sharing" under the CCPA. You have the right to opt out at any time, and we honor opt-outs without discrimination. You can opt out using the in-app toggle (Settings → Analytics → "Do Not Sell or Share My Personal Information"), the "Do Not Sell or Share My Personal Information" link in our website footer, or by sending a Global Privacy Control (GPC) signal, which we treat as a valid opt-out. We may deny any request to opt-out that we deem, in our good-faith, reasonable and documented belief, to be fraudulent.
13.6 Right to Limit Use and Disclosure of Sensitive Personal Data
To the extent we collect any sensitive personal data about you, you have the right to instruct us to limit our use of such personal data only to the purpose of providing you with our services and certain business operation purposes. We do not use or disclose sensitive personal information for purposes that would require us to offer a "Limit the Use of My Sensitive Personal Information" option; in particular, we do not use your fax recipients or the contents of your faxes for advertising.
13.7 Right to Non-Discrimination for Exercising your Consumer Privacy Rights
You have the right not to be discriminated against for exercising any of your consumer privacy rights, such as, not being denied any goods or services or charged different prices or rates.
13.8 How to Exercise your California Privacy Rights
Contact Information. To exercise any of the rights detailed above, please submit a verifiable request to us by contacting us at support@fax-flow.com. You may only request to exercise your right of access twice within a 12-month period.
Submitting a Verifiable Request. In order to exercise your right to know or right to delete you must submit a request containing sufficient information that allows us to reasonably verify you are the person about whom we collected the applicable Personal Data or an authorized agent of such person, which may include details relating to your account. Any requests made through your password protected account will be verified through our existing authentication procedures for such an account.
Submitting Requests through an Authorized Agent. An authorized agent may exercise requests on your behalf. In order to exercise your right to know or right to delete through an agent, we may ask for reasonable evidence to verify your identity and the agent’s identity, and written authorization permitting the agent to act on your behalf before complying with your request. In order to submit a request to opt-out of the sale of your personal data through an agent, we may ask for written authorization permitting the authorized agent to act on your behalf before complying with your request. We reserve the right to deny the request of any agent that does not provide proof that they have been authorized to act on behalf of the applicable consumer in accordance with applicable law.
The Past 12 Months. In the past 12 months we have disclosed the following categories of personal data for a “business purpose” (as defined in the CCPA): personal identifiers, internet or other electronic network activity information, professional or employment-related information, and inferences drawn from such information, all as further detailed in Sections 2 and 4 of the Privacy Notice. In addition, we have “shared” (and, to the extent the term applies, “sold”) personal identifiers — specifically email addresses and purchase/subscription information — with an advertising partner (Google) for cross-context behavioral advertising of our own apps, as described in Section 3.3. We have not disclosed, sold, or shared the contents of your faxes, your fax recipients, or your fax history for advertising. You may opt out of this sharing as described in Sections 3.3 and 13.5.
13.9 Your Rights Under Other U.S. State Privacy Laws
If you are a resident of a U.S. state that has a comprehensive consumer-privacy law in effect — including Virginia (Virginia Consumer Data Protection Act, VCDPA), Colorado (Colorado Privacy Act, CPA), Connecticut (Connecticut Data Privacy Act, CTDPA), Utah (Utah Consumer Privacy Act, UCPA), Texas (Texas Data Privacy and Security Act, TDPSA), Oregon (Oregon Consumer Privacy Act, OCPA), Montana (Montana Consumer Data Privacy Act), and other states with similar laws now in force (such as Delaware, Iowa, Nebraska, New Hampshire, New Jersey, Minnesota, Maryland, Indiana, Tennessee, Florida, and others as they take effect) — you may have the following rights with respect to your personal data, subject to the exceptions and limitations of the applicable law:
- Right to access / confirm. To confirm whether we process your personal data and to access that data.
- Right to delete. To request that we delete personal data we have collected about you.
- Right to correct. To request that we correct inaccurate personal data we maintain about you.
- Right to data portability. To obtain a copy of your personal data in a portable and, to the extent technically feasible, readily usable format.
- Right to opt out. To opt out of the processing of your personal data for purposes of (i) targeted advertising, (ii) the “sale” of personal data, and (iii) certain profiling in furtherance of decisions that produce legal or similarly significant effects. As described in Section 3.3, we share identifiers (your email address and purchase/subscription information) with Google to advertise our own apps, which may constitute "targeted advertising" or a "sale"/"share" under these laws. You may opt out using the in-app toggle (Settings → Analytics → "Do Not Sell or Share My Personal Information"), the equivalent link in our website footer, or a Global Privacy Control (GPC) signal, which we honor.
- Right to non-discrimination and to appeal. You have the right not to receive discriminatory treatment for exercising these rights, and, where the applicable law provides, the right to appeal our refusal to act on a request.
To exercise any of these rights, contact us at support@fax-flow.com. We will respond within the time period required by the applicable law. We may need to verify your identity before fulfilling your request, and you may use an authorized agent to submit a request where permitted by law. If we decline your request, you may, where the applicable law allows, appeal that decision by replying to our response or contacting us again at the same email address.
14. Annex B — Your Rights Under Israeli Law
This section applies to individuals whose personal data is processed by us under the Israeli Protection of Privacy Law, 5741-1981 and its regulations (the "PPL"), as amended (including Amendment No. 13). It supplements the rest of this Privacy Notice.
14.1 Notice and Purposes of Processing
We collect and process your personal data for the purposes described in Sections 2 through 4 of this Privacy Notice — principally to provide the fax services you request, operate and secure the Services, process payments, comply with legal obligations, and communicate with you. Providing certain data is necessary to use the Services; where data is requested on a voluntary basis, we will indicate this. We are the entity that determines the purposes and means of processing your data; our contact details are in Section 14.5.
14.2 Right to Inspect and Correct Your Data
Under Sections 13 and 14 of the PPL, you have the right to inspect the personal data we hold about you, and to request that we correct, amend, or delete data that is inaccurate, incomplete, unclear, or out of date. To exercise these rights, contact us at support@fax-flow.com. We may take reasonable steps to verify your identity before responding, and we will respond within the time periods required by the PPL. If we decline a correction request, you may note your objection and, where applicable, we will record that the data is disputed.
14.3 Direct Mailing (Sections 17C–17I of the PPL)
To the extent we use your contact details and information about your use of the Services to send you marketing messages and tailored recommendations for our own products (as described in Section 3.1), this may constitute "direct mailing" under the PPL. Where these rules apply:
- Each direct-mail message will indicate that it is direct mailing, identify us as the sender, and state that you have the right to ask to be removed.
- On request, we will tell you the source from which we obtained the personal data used for the direct mailing.
- You have the right at any time to request that your data be deleted from our direct-mailing database, and we will honor that request and stop sending you such messages. You can do this by using the unsubscribe link in any message or by contacting support@fax-flow.com.
14.4 Transfers Outside Israel
We use service providers and store data on infrastructure located outside Israel, including in the United States (see the list of sub-processors in Section 4.2). Where we transfer personal data outside Israel, we do so in accordance with the PPL and its regulations governing transfers of data abroad, and we require recipients to provide an adequate level of protection for your data through appropriate contractual and security safeguards.
14.5 How to Contact Us
For any privacy request or question under Israeli law, contact us at support@fax-flow.com. If you believe your privacy rights have been infringed, you may also contact the Israeli Privacy Protection Authority (PPA).