Skip to content
Home

Legal

Privacy Policy

Last updated: April 2026

Data Handling

Spaceflow operates per-tenant gateways with cryptographic isolation between customers. Your procurement data is processed under your identity, audited in an append-only log, and held only for the duration required to complete the agent action you requested. Long-term storage is limited to metadata schemas, audit records, and tenant configuration.

What We Collect

We collect metadata necessary to route and process procurement actions: vendor names, PO reference numbers, timestamps, and action logs. We do not store email content, invoice attachments, or financial details beyond what is needed for the audit trail.

How We Use Your Data

Your data is used solely to provide the Spaceflow service: matching quotes, creating purchase orders, and generating audit trails. We do not sell, share, or use your data for advertising or model training.

Security

All connections are encrypted via TLS 1.3. AI agents carry your user's SAP/ERP identity and operate within your existing permission model. SOC 2 Type II compliance in progress.

Contact

Questions about privacy? Reach us at alieren@spaceflow.tech