Effective Date: [May, 4 2026]
This Privacy Policy explains how helperflow processes personal data when you use the browser extension.
The Service is operated by:
CIO Works GmbH
Arnold-Fanck-Str. 26
79115 Freiburg im Breisgau, Germany
Email: info [at] helperflow [dot] com
1. Overview
helperflow is a browser extension that provides AI-powered guidance based on the current webpage context.
To generate real-time assistance, the Service processes browser-related data temporarily during your session.
2. Data We Process
When you use helperflow, the following types of data may be processed:
2.1 Page Context Data
- screenshots of the active browser tab
- visible page content
- DOM structure of the current webpage
- UI elements needed to understand the page state
2.2 User Input
- questions or instructions you enter in the extension
- interactions required to generate guidance
2.3 Technical Data
- browser type and extension environment
- error logs used for debugging and stability
3. Purpose of Processing
We process data solely to:
- provide AI-generated, step-by-step guidance
- understand the current webpage context
- ensure correct and safe operation of the Service
- prevent misuse and maintain system security
4. Legal Basis (GDPR)
We process personal data under:
- Art. 6(1)(b) GDPR – performance of a contract (providing the Service)
- Art. 6(1)(f) GDPR – legitimate interest (security, improvement, abuse prevention)
5. Data Storage Policy
5.1 No Storage of Session Content
helperflow is designed so that:
- screenshots
- page content
- DOM data
- AI request context
are processed only temporarily in memory to generate a response.
👉 This data is not stored on our servers after the request is completed.
5.2 No Profiling or Tracking
We do not:
- track users across websites
- create behavioral profiles
- use data for advertising
- sell personal data
5.3 Minimal Technical Logs
We may store limited technical logs (e.g. error logs) for:
- debugging
- system stability
- security monitoring
These logs do not include screenshots, page content, or user prompts.
6. Third-Party AI Processing
To provide functionality, helperflow may transmit minimal necessary data to third-party AI providers.
These providers process data only to generate responses and are not allowed to:
- use it for advertising
- train unrelated models
- retain it beyond processing requirements (as contractually required)
7. Data Retention
- Session data (screenshots, DOM, page content): not stored after processing
- AI requests: processed temporarily only
- Technical logs: retained for a limited period for security and maintenance
We apply strict data minimization principles.
8. Data Security
We implement appropriate technical and organizational measures, including:
- encrypted data transmission (HTTPS)
- secure infrastructure for AI processing
- access controls and restricted internal access
- monitoring for abuse and system integrity
9. Your Rights under GDPR
You have the right to:
- access your personal data
- request correction of inaccurate data
- request deletion (where applicable)
- restrict or object to processing
- data portability (where applicable)
Since helperflow does not store session content, these rights primarily apply to limited operational or support data.
You also have the right to lodge a complaint with a supervisory authority, such as:
Landesbeauftragter für den Datenschutz und die Informationsfreiheit Baden-Württemberg (LfDI)
10. International Data Transfers
If data is processed by third-party providers outside the EU, we ensure appropriate safeguards, such as:
- EU Standard Contractual Clauses (SCCs), or
- equivalent GDPR-compliant transfer mechanisms
11. Children
helperflow is not intended for users under 16 years of age. We do not knowingly collect data from children.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Updates will be published with a revised effective date.
13. Contact
CIO Works GmbH
Arnold-Fanck-Str. 26
79115 Freiburg im Breisgau, Germany
Email: info [at] helperflow [dot] com
