Learn what measures we take to safeguard your data and how you can support us in this.
Flo gives you two options to create an account:
Using your Apple or Google account (also known as Single Sign On or SSO) is regarded as a more secure way to verify your identity and login credentials. It is also a simpler and faster way to set up an account.
To further protect your sensitive data, Flo provides the opportunity to use Secure Access. What it means is that everytime you open the Flo app it will require Face ID or Touch ID (if you use our iOS app) or your security code. Learn how to enable Secure Access.
“If your device gets lost or stolen, email us at support@flo.health, and we’ll log you out of your account right away.”
All information you tell Flo is transmitted between your device and Flo’s secure cloud server using the HTTPS protocol for encryption.
Your cycle tracking data, personal information, Secret Chats and Health Assistant interactions are stored separately. This measure makes it extremely hard to combine all the data points of users and identify you.
The term “cloud server” refers to the delivery of technology services via the Internet on an on-demand basis. It helps us to ensure our complex functionalities work properly on all devices (including low-end ones) and safely restore your data if you switch to another device.
HTTPS (Hypertext Transfer Protocol Secure) is both a protocol and a method that allows encrypted communications over the internet. It protects the integrity and confidentiality of data that is transferred between your device and our server by encrypting the data.
Encryption is a security measure that translates plain text data into something that appears to be random and meaningless to a person or entity accessing without permission.
We use automated security tools that continuously scan our apps, the cloud and all of the code that we produce to ensure that there are no issues that could lead to someone exploiting them.
Flo performs regular penetration tests conducted by industry-leading cybersecurity companies. This technique is designed to identify application vulnerabilities by mimicking the approach of a hacker.
Thanks to traffic management Flo is able to automatically block malicious traffic and ensure app security and reliability.
Flo partnered with PWC who analyzed our processes and policies to ensure that Flo adheres to the principles of ‘privacy by design.’
We partner only with trusted and reputable vendors whose security and privacy practices meet the highest industry standards.
