Who is AI Workflow for?

It's for individuals, freelancers, growth-obsessed founders, revenue teams, and ops leaders who are tired of manual busywork. If your team lives in tools like Slack, Salesforce, or Stripe, AI Workflow turns your existing stack into an autonomous, 24/7 workforce.

Do I need to know how to code?

Zero coding required. If you can map out a process on a whiteboard, you can build an AI agent. We handle the complex API routing, context windows, and LLM prompting behind the scenes. It's pure visual drag-and-drop.

How fast can I get this off the ground?

Minutes, not months. Skip the expensive dev cycles. Choose from our library of production-ready templates, connect your tools in two clicks, and deploy your first AI worker before your next coffee break.

Will my private data be used to train AI models?

Never. We are enterprise-grade by default. We enforce strict zero-data-retention policies with our LLM providers, backed by AES-256 encryption and Row-Level Security (RLS). Your data stays strictly within your workspace.

Is AI Workflow enterprise grade and secure?

Absolutely. Every workspace includes role-based access controls, audit logging, and encryption at rest and in transit. We maintain strict data isolation between tenants and enforce zero-data-retention policies with our AI providers. Your security team can approve deployment with confidence.

How does AI Workflow compare to other workflow tools?

Most workflow tools stop at simple if-then rules. AI Workflow goes further by embedding autonomous AI agents directly into your automations. That means your workflows can read documents, make judgment calls, and adapt to new data, turning basic AI automation into intelligent, end-to-end processes that actually think.

Back to home

Privacy Policy

Last Updated: April 8, 2026

1. Data controller

AI Workflows ("we", "us", "our") operates the website ai-workflows.io and is responsible for the processing of your personal data.

Data controller: Digital X LTD

Country of establishment: Bulgaria

If you have any questions about this Privacy Policy or how we handle your data, you can contact us via the details in Section 13.

2. What data we collect

When you join our early access waitlist or use our Service, we may collect the following categories of personal information:

Information you provide directly

Email address — provided via the signup form.
Account information — such as your name and username when you create an account.
User content — information you provide as inputs to the Service, including prompts, uploaded files, workflow configurations, and feedback.
Contact and communication data — messages you send through our contact form or feature suggestion form.

Information collected automatically

Approximate location (country and city) — derived from IP based network data (not precise geolocation).
Technical information — browser type, operating system, device type, and preferred language.
Log and usage data — pages visited, features used, timestamps, and error reports.
Referral source — the website or link that directed you to us.

We do not store IP addresses in our own systems. However, IP addresses may be processed transiently by our infrastructure providers for security, delivery, and analytics purposes. We apply data minimization and only collect information necessary for the purposes described below.

3. Why we collect this data

We process your information only for the purposes described at the time of collection or as set out in this policy:

Account creation, authentication, and management.
Delivering and facilitating the Service you requested.
Notifying you when AI Workflows launches and sending product updates.
Responding to your inquiries and providing support.
Understanding audience demographics to improve our product and prioritize features.
Maintaining the security and integrity of our services (e.g., prevent spam, fraud, or abuse).
Fulfilling and managing orders and payments.
Complying with legal obligations.

4. Legal basis for processing

We rely on the following legal bases under the GDPR:

Consent — for sending email updates and, where applicable, for analytics cookies. You provide consent by submitting your information via the waitlist form and can withdraw it at any time.
Performance of a contract — we process your information to provide, maintain, and support the Service you have requested under our Terms of Service.
Legitimate interests — for basic analytics, fraud prevention, securing our platform, and improving AI features, where these interests are not overridden by your fundamental rights.
Legal obligations — we retain and disclose information as necessary to comply with bookkeeping rules, tax requirements, court orders, or other legal duties.

5. Artificial intelligence and AI service providers

Our Service uses artificial intelligence to power workflow automation, content generation, data extraction, and other features. When you use AI powered features, your inputs (including prompts, uploaded documents, and workflow data) may be sent to third party AI service providers to generate the output you request.

Our current AI service providers include:

OpenAI (GPT models)
Google (Gemini models)
Anthropic (Claude models)

We do not use your data to train machine learning or artificial intelligence models, or for any purpose unrelated to providing the Service, unless we obtain your explicit consent or are required to do so by applicable law.

Your use of AI features is also governed by the terms and privacy policies of the respective AI service providers. We recommend reviewing those policies before use.

6. Cookies and analytics

We use Google Analytics 4 to understand how visitors use our website.

Analytics cookies are only set after you provide explicit consent via our cookie banner.
You can withdraw or modify your consent at any time using the "Manage Cookies" link in our footer.

For full details on which cookies are used, their names, and durations, please see our Cookie Policy.

7. Data storage and third party processors

We use trusted third party service providers to process and store data:

Service	Purpose	Location
Vercel	Website hosting and edge network	Global (US based company)
Supabase	Database storage (email and metadata)	US / EU regions available
Resend	Transactional email delivery	Ireland, EU (GDPR compliant)
Google Analytics 4	Website analytics (consent based)	US (EU–U.S. Data Privacy Framework)
Upstash	Rate limiting (Redis)	Global (US based company)
OpenAI / Google / Anthropic	AI model providers (workflow execution)	US

We have entered into Data Processing Agreements (DPAs) with all providers where required.

Some of these providers may process data outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as:

Standard Contractual Clauses (SCCs) approved by the European Commission
Participation in the EU–U.S. Data Privacy Framework where applicable

8. Data retention

We retain your waitlist data for up to 12 months from the date of signup, unless:

You request deletion of your data.
You unsubscribe from our emails via the one-click unsubscribe link included in every email we send.
You become an active user (at which point a separate account agreement will govern your data).

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it. If deletion is not immediately possible (for example, because data has been stored in backup archives), we will securely store and isolate it from further processing until deletion is possible.

9. Your rights

Under applicable data protection laws, including the GDPR, you have the following rights:

Access — request a copy of your data.
Rectification — correct inaccurate or incomplete data.
Erasure — request deletion of your data. You can also delete your account at any time.
Data portability — receive your data in a structured, commonly used, machine readable format.
Restriction of processing — request that we limit how we process your data in certain situations. We may still store it but will not process it further without your consent or legitimate grounds.
Object — to processing based on legitimate interests, including processing for direct marketing.
Withdraw consent — at any time, without affecting the lawfulness of prior processing. Every marketing email we send includes a one-click unsubscribe link.
Automated decision making — we currently do not engage in automated decision making that produces legal or similarly significant effects on individuals. If we do so in the future, we will notify you separately.
Non discrimination — you have the right not to be discriminated against for exercising any of your privacy rights.
Lodge a complaint — with your local data protection supervisory authority. In Bulgaria, this is the Commission for Personal Data Protection (CPDP). In other EU countries, you can find your local authority at edpb.europa.eu.

You may exercise your rights by contacting us through the methods in Section 13 or by logging into your account. We will verify your identity and respond to all requests within 30 days.

10. Data security

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. These include encryption in transit, access controls, secure infrastructure providers, and regular security reviews.

However, despite our safeguards, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. We cannot promise or guarantee that unauthorized third parties will not be able to defeat our security measures. Transmission of personal information to and from our Service is at your own risk. You should only access the Service within a secure environment.

11. Children's privacy

This Service is not directed to children. We do not knowingly collect, solicit data from, or market to individuals under 16 years of age (or the equivalent minimum age in your jurisdiction). By using the Service, you represent that you are at least 16 and have the capacity to agree to these terms. If we discover that we have inadvertently collected personal data from a child, we will promptly delete it. If you believe we may have collected such data, please contact us.

12. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will take appropriate steps to notify you (e.g., via email or a prominent notice on the Service). Where required, we will request your consent.

We encourage you to review this page periodically.

13. Contact

For any privacy related questions or to exercise your rights, contact us via our contact form.