WORFLIK – PRIVACY POLICY

This Privacy Policy describes how (“Worflik,” “we,” “us,” or “our”)a cloud-based ERP platform owned and operated by Fission Monster , collects, uses, stores, protects, and shares information when you access or use our Services.
Worflik is committed to protecting your data privacy and ensuring transparency in how your information is handled. By using our platform, you consent to the practices described in this Privacy Policy.
For privacy-related questions, you may contact us at:
Email: contact@worflik.com


1. INTRODUCTION

Worflik is an ERP (Enterprise Resource Planning) system that provides business management tools including accounting, HR, payroll, POS, inventory, and business intelligence modules. The platform processes sensitive business data, and we take data protection seriously.

This policy outlines:

  • What data we collect
  • How we use and safeguard your information
  • Your data protection rights
  • How to exercise those rights
  • Our compliance with GDPR, CCPA, and other global privacy frameworks

This Privacy Policy applies to all users, organizations, employees, and administrators using Worflik.


2. WHO WE ARE

Worflik is a product owned and operated by:

Fission Monster

Email: contact@worflik.com

Fission Monster serves as the Data Controller for personal data processed through the Worflik platform.


3. DATA WE COLLECT

Worflik collects data necessary to deliver secure, efficient, and customized ERP services.

3.1 Personal Data


Information that identifies or can identify a natural person, including:


  • Name
  • Email address
  • Username & credentials
  • Phone number
  • Role/department within the organization
  • Login activity and access logs (audit logs)

3.2 Business & Operational Data


As an ERP system, Worflik processes sensitive business data entered by your organization, including:


  • Financial records
  • Accounting entries
  • Invoices, receipts, transactions
  • Sales & purchase orders
  • Inventory data
  • Vendor & customer information
  • HR & payroll details
  • Employee attendance, performance, and leave data
  • Contracts and compliance documents
  • POS transactions

3.3 Technical & Usage Data


Automatically collected data when you access the platform:


  • IP address
  • Browser type and device information
  • Session logs and activity timestamps
  • API usage logs
  • Error diagnostics and crash reports

3.4 Integration Data


If your organization connects external systems:


  • Payment gateway data
  • Third-party app metadata
  • Import/export logs
  • API request/response data

3.5 Cookies & Tracking Technologies


Worflik uses cookies to:


  • Authenticate users
  • Maintain session data
  • Improve platform performance
  • Track usage analytics
  • Enhance security
  • You may control cookie settings through your browser.

4. HOW WE USE YOUR DATA


We process data strictly to provide and improve the Worflik ERP platform.


4.1 Service Delivery


  • Account creation and authentication
  • Module functionality (Accounting, HR, POS, etc.)
  • Data processing and computation
  • Role-based access control
  • Dashboard analytics and reporting

4.2 Security & Fraud Prevention


  • End-to-end encrypted data processing
  • Audit logs
  • Unauthorized access detection
  • System monitoring

4.3 Platform Improvement


  • Usage analytics
  • Error tracking and debugging
  • Module performance optimization
  • AI/automation improvements (non-personalized)

4.4 Communication


  • Billing notifications
  • System alerts and updates
  • Customer support interactions
  • Security notifications

We do not sell personal data to any third party.


5. DATA SECURITY & ENCRYPTION

Worflik uses industry-leading security standards to protect all data.


5.1 Encryption


All data is encrypted end-to-end:

  • Encryption in transit: TLS/SSL
  • Encryption at rest: AES-256 or equivalent

This applies to all business data, credentials, documents, and logs.


5.2 Infrastructure Security


  • Secure cloud hosting
  • Firewalls and intrusion detection
  • Role-based access control
  • Multi-layer authentication
  • Regular security audits
  • Strict internal access policies

5.3 Backup & Recovery


We maintain:


  • Automated daily backups
  • Redundant storage
  • Disaster recovery systems
  • Business continuity protocols

6. LEGAL BASIS FOR PROCESSING (GDPR)


We process personal data based on:


  • Contractual necessity (service delivery)
  • Legitimate interest (security, improvement)
  • Consent (cookies, optional integrations)
  • Legal obligations (financial record keeping)

7. YOUR RIGHTS


Depending on your jurisdiction (GDPR, CCPA, and others), you may exercise the following rights:


7.1 Access


Request a copy of your personal data.


7.2 Correction


Update or correct inaccurate data.


7.3 Deletion (Right to Be Forgotten)


Request deletion of personal data, subject to:


  • Legal retention requirements
  • Contractual obligations

7.4 Data Portability


Receive your data in a structured, machine-readable format.


7.5 Restriction of Processing


Limit how your data is used.


7.6 Objection


Object to specific types of processing (e.g., analytics).


7.7 Opt-Out (CCPA)


California users may opt out of third-party sharing.


How to Exercise Your Rights


Email: contact@worflik.com
We may request identity verification for security.


8. DATA RETENTION

Worflik retains data only as long as necessary usually:


  • Active subscription: full data retention
  • After cancellation: 30–90 days for account export
  • Backups: retained per automated backup cycle
  • Audit logs: retained for compliance and security

Users may request early deletion of personal data.


9. THIRD-PARTY SERVICES & INTEGRATIONS

Worflik integrates with third-party services, such as:


  • Payment processors
  • Email and SMS providers
  • Cloud hosting services
  • Optional ERP add-on applications

We carefully vet third parties and require them to meet similar data protection standards.
However:


  • Third-party privacy practices are governed by their own policies
  • Worflik is not responsible for third-party misuse
  • Users are responsible for reviewing external service agreements

10. INTERNATIONAL DATA TRANSFERS


Data may be processed or stored in regions outside your jurisdiction.
Worflik ensures:


  • GDPR-compliant transfer mechanisms
  • Standard Contractual Clauses (SCCs), where applicable
  • Secure encrypted transfer channels

11. CHILDREN’S PRIVACY


Worflik is a business application and not intended for children under 16.
We do not knowingly collect data from minors.


12. DATA BREACH NOTIFICATION


In case of a data breach:


  • Users will be notified promptly
  • Regulatory authorities will be contacted when required
  • Incident response and containment procedures will activate immediately

13. AUTOMATED PROCESSING


Some ERP features may automate:


  • Financial calculations
  • HR workflows
  • Role-based decisions
  • Inventory or POS reporting
  • Business intelligence insights

These processes do not involve making legally binding decisions about individuals.


14. CHANGES TO THIS PRIVACY POLICY


We may update this Privacy Policy to reflect:


  • Platform changes
  • Legal requirements
  • Security improvements

Updates will be posted on this page, and continued use constitutes acceptance.


15. CONTACT INFORMATION


For privacy questions, data access, or rights requests, contact:


Worflik – Fission Monster

Email: contact@worflik.com


For legal notices, including GDPR inquiries, please include “Privacy Request” in the subject line.