Privacy Policy

Fluvio (“we”) provides a water utility customer portal and AI support platform. This policy explains what data we collect, how we use it, and the rights you have over it.

What we collect

We collect three categories of data: account data (utility staff names, work emails, role assignments), resident data (account numbers, service addresses, meter reads, billing history — provided by the utility, not collected directly from residents), and usage data (which features utility staff use, anonymized analytics on the platform).

How we use it

Resident data is used solely to operate the portal, the AI support layer, and the adoption campaigns the utility has configured. We do not sell data. We do not share data across utilities. Each utility's data is tenant-isolated at the database level.

How we protect it

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Production data is hosted in US-based data centers. We are currently undergoing a SOC 2 Type I audit. Access to production data is limited to engineering staff on a need-to-know basis and is logged.

Your rights

Utility customers (residents) should contact their water utility directly to access, correct, or delete their data — the utility is the data controller. Utility staff can access, export, or delete their own account data at any time by contacting privacy@getfluvio.com.

Contact

Questions about this policy? privacy@getfluvio.com

This policy is a placeholder pending final legal review. The specific protections, data flows, and retention schedules described above are accurate for the current implementation.