en
en

Privacy Policy

Last updated: August 8, 2025

At Be Creative Flow, we are committed to protecting the privacy and security of our users' and clients' personal information. This Privacy Policy describes how we collect, use, store, share, and protect your personal data when you visit our website

https://www.becreativeflow.com (the "Site") or interact with our services.

This policy is aligned with the laws of the State of Delaware (United States), specifically the Delaware Online Privacy and Protection Act (6 Del. C. § 1201C-1206C) , the provisions of the Federal Trade Commission Act (15 U.S.C. § 45) against deceptive practices , the CAN-SPAM Act (15 U.S.C. § 7701-7713) for electronic communications , and, where applicable, Regulation (EU) 2016/679 (GDPR) and Colombian Law 1581 of 2012 on personal data protection.

1. Data Controller

Controller: LLC Be Creative Flow

Registered Address: 8 The Green, STE B, Dover, DE 19901, United States

Remote Operating Address (Colombia): Calle 66a #68d-42, Bellavista Occidental, Engativá, Bogotá

Official Contact Email: contacto@becreativeflow.com

2. Scope

This Policy applies to all individuals who visit our Site or communicate with us through forms, email, social media, or any other enabled means. By accessing the Site, you accept the practices described below.

3. Personal Data We Collect

  • Identification: First and last name - Contact and engagement forms

  • Contact: Email address, phone number - Forms, correspondence, email

  • Location: City and country of residence - Forms, Google Analytics (approx.)

  • Social Media: Username or profile URL - Forms

  • Browse Data: IP address, browser type, operating system, pages visited, time on site - Cookies and similar technologies

  • Preferences: Cookie choices, language, stated interests - Cookies, forms

4. Purposes and Legal Basis for Processing

  • Handling Inquiries: To respond to messages and requests submitted through the Site. Our legal basis is legitimate interest (6 Del. C. § 1203C) and Art. 6(1)(f) of the GDPR.

  • Providing Services: To create proposals, formalize contracts, and manage creative projects. Our legal basis is contract performance (FTC Act § 45, contract law) and Art. 6(1)(b) of the GDPR.

  • Marketing and Newsletters: To send emails with free resources, promotions, and updates. Our legal basis is consent (CAN-SPAM) and Art. 6(1)(a) of the GDPR.

  • Web Analytics: To measure traffic, understand Browse behavior, and optimize the Site. Our legal basis is legitimate interest and Art. 6(1)(f) of the GDPR.

  • Personalized Advertising: To display relevant ads on social media and search engines. Our legal basis is consent and Art. 6(1)(a) of the GDPR


5. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described or as required by applicable law.

  • Inquiries: 12 months after the last interaction.

  • Clients: Up to 5 years after the project is completed (for tax and warranty requirements).

  • Subscriptions: As long as the user does not withdraw their consent.

  • Analytics: Anonymized data retained for up to 26 months, as per Google Analytics settings


6. Recipients and International Transfers

We share personal data only with providers who act as data processors and offer adequate safeguards.

  • IIntuit Inc. (USA): Mailchimp - email marketing. Safeguards include Standard Contractual Clauses (SCC) and TRUSTe certification.

  • Google LLC (USA): Google Analytics, Google Ads. Safeguards include SCC + supplementary measures.

  • Meta Platforms, Inc. (USA): Facebook Pixel / Instagram Ads. Safeguards include SCC + valid transfer mechanisms.

  • Hotjar Ltd (EU - Malta): Session analysis. Safeguards include EU location and GDPR compliance.

We do not sell, rent, or disclose personal data to third parties for their own commercial purposes.

7. Information Security

We implement appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, alteration, or destruction. These include:

  • TLS encryption for data transmission.

  • Restricted access policies for our systems (principle of least privilege).

  • Authenticity verification on corporate accounts.

  • Regular backups.

  • Risk assessments and internal audits.

8. User Rights

In accordance with applicable law, you may exercise the following rights:

  • Access: To know what data we process about you.

  • Rectification: To correct inaccurate data.

  • Erasure: To request the deletion of data when it is no longer necessary.

  • Restriction of Processing: To temporarily restrict processing.

  • Data Portability: To receive your data in a structured format (GDPR).

  • Objection: To object to processing based on legitimate interest.

  • Withdraw Consent: At any time, without affecting the lawfulness of prior processing.


To exercise these rights, send your request to contacto@becreativeflow.com with the subject line "Data Protection" and include your name, specific request, and a contact method for verification. We will respond within a maximum of 30 days. If you are in the European Union and believe we have not handled your request correctly, you may file a complaint with your local supervisory authority or with the Data Protection Commission (Ireland), the lead authority for Google and Meta.

9. Children's Privacy

The Site is not intended for individuals under 18 years of age. We do not knowingly collect data from children under 13, in compliance with the Children's Online Privacy Protection Act (COPPA). If we learn that we have collected information from a minor, we will delete it immediately.

10. External Links

Our Site may contain links to third-party pages. Be Creative Flow does not control or assume responsibility for their privacy policies. We recommend reviewing their terms before providing any data.

11. Changes to the Privacy Policy

We may update this Policy at any time. We will publish the new version with the "Last updated" date. If the changes are substantial, we will notify registered users by email or through a prominent notice on the Site.

12. Contact

For questions about this Policy or the processing of your personal data, please write to contacto@becreativeflow.com.

By using this Site or providing us with your information, you declare that you have read and understood this Privacy Policy and consent to the processing of your personal data in accordance with the terms herein.

Privacy Policy - Cookie Policy - Legal Notice - Terms and Conditions of Use

contacto@becreativeflow.com

+1 123 456 789

Mailing address: 8 The Green STE B, Dover, DE 19901, United States

Remote address: Calle 66a # 68d -42, Bogotá, Colombia