FlowDule
Trust Center

GDPR, consents, and operational policies

This section describes how FlowDule handles consents, policies, data management, and documentation - so you can assess if the platform meets your compliance requirements.

GDPR compliance integrated into daily workflows

FlowDule processes personal data in bookings, records, communication, and payments. Consent, policies, and data management are therefore built into the workflows already in use - not as a separate compliance process.

This page provides an overview of the processes and features that support GDPR compliance within the platform.
GDPR

Consents, policies, and data management

The most important GDPR processes in the platform

Consent upon creationConsent

Consent upon creation

Consent is logged when clients are created or book appointments. Consent history is retained, so it can always be documented when and how consent was given.

Operational policiesPolicies

Operational policies

Chains can define and version their own policies for bookings, cancellations, no-shows, and communication directly within the platform.

Data export and portabilityRights

Data export and portability

Client data can be exported in structured formats, and PII can be anonymized when data needs to be used for analysis or shared with third parties.

Retention and deletionLifecycle

Retention and deletion

Data can be configured with retention periods, and deletion follows the platform's data lifecycle with full traceability.

Role-based access to personal dataAccess

Role-based access to personal data

Only users with the correct roles can access personally identifiable data. Access is controlled per chain, location, and processor.

Documentation and traceabilityAudit

Documentation and traceability

Audit logs document who has accessed, modified, or exported data - so compliance can be verified afterward.
Consent

Consent and policies as part of the booking flow

When a client books or is created, consent is logged automatically. Policies for cancellations, no-shows, and communication are presented in the booking flow, ensuring compliance and customer experience go hand-in-hand.

View security
Consent and policy management in FlowDule
Data lifecycle and retention in FlowDule
Data lifecycle

From creation to deletion - with traceability all the way

FlowDule manages data from the moment a client is created until eventual deletion. Retention policies, export options, and audit logs ensure that the data lifecycle can be documented and verified.

Back to Trust Center
Next steps

Review GDPR processes and policies in practice

Book a demo if you want to see consents, policies, data export, and retention in a live walkthrough of the platform.

Book a demo