For Clinicians
Manage subscription Try Flo today
Product
Product
    Product
  • Tracking cycle
  • Getting pregnant
  • Pregnancy
  • Help Center
  • Flo for Partners
  • Anonymous Mode
  • Flo app reviews
  • Flo Premium New
  • Secret Chats New
  • Symptom Checker New
Health Library
Health Library
    Health Library
  • Your cycle
  • Health 360°
  • Getting pregnant
  • Pregnancy
  • Being a mom
  • LGBTQ+
  • Quizzes
Calculators
Calculators
    Calculators
  • Ovulation calculator
  • hCG calculator
  • Pregnancy test calculator
  • Menstrual cycle calculator
  • Period calculator
  • Implantation calculator
  • Pregnancy weeks to months calculator
  • Pregnancy due date calculator
  • IVF and FET due date calculator
  • Due date calculator by ultrasound
About
About
    About
  • Medical Affairs
  • Science & Research
  • Pass It On Project New
  • Privacy Portal
  • Press Center
  • Flo Accuracy
  • Careers
  • Contact Us
For Clinicians
For Clinicians
Manage subscription

Your Data & Privacy: Complete Transparency

You deserve to know exactly what data we collect, why we collect it, how we protect it, and what rights you have. This page explains our data practices in plain language. For more information, see our privacy policy.

What Data We Collect

We collect data that helps us provide you with accurate cycle predictions, personalized health insights, and a better app experience. Here's exactly what we collect – and what we don't.

Data You Provide Directly

This is information you choose to share with us when you use Flo.

Health data, you choose to log:

  • Cycle information (such as period start and end dates, flow intensity)
  • Symptoms (such as cramps, cravings, mood changes, headaches, etc.)
  • Lifestyle factors (sleep, exercise, water intake, travel, alcohol)
  • Sex events
  • Pregnancy and fertility tracking (such as ovulation dates & pregnancy week) 
  • General health & well-being information (such as weight, sleep, mood & illness) 

Account information:

  • Email address (if you choose to provide)
  • Name (you can use a nickname or pseudonym)
  • Birth year (for age-appropriate content)
  • Profile settings and preferences (such as language)

Community interactions:

  • Posts and comments in Flo's Secret Chats (Note: These appear anonymously within Secret Chats, so other users can’t identify you). 
  • Responses to in-app surveys (optional)

Data Collected Automatically

To make the app work and improve your experience, we automatically collect some technical information.

Technical data:

  • Device type and operating system
  • App version
  • Language preference
  • Time zone
  • IP address (unless you use Anonymous Mode)

Usage data:

  • Which features you use
  • How often you open our app
  • Crash reports and error logs (to fix bugs)

Note: If you enable Anonymous Mode, we cannot collect your IP address or link any technical identifiers to your health data.

Data We Never Collect

There are some types of data we never collect:

❌ Precise location data - We don't track your GPS location
❌ Contacts - We don't access your phone's contact list
❌ Messages or calls - We don't read your texts or listen to calls
❌ Other app data - We don't see what other apps you use
❌ Microphone - We do not have any features that require your microphone

❌ Camera roll - we do not access your camera roll unless you explicitly permit this, and this feature is only available in Secret Chats

For complete legal details: See our Privacy Policy

How We Protect Your Data

Security is built into everything we do at Flo. Here's how we protect your health information.

Encryption (TLS 1.3, AES-256)

Encryption is a way of turning your data into unreadable code, like locking it in a digital safe. Only someone with the correct key can unlock it and read what’s inside. This ensures that even if someone were to intercept your data, they wouldn’t be able to understand it. 

Data in transit:
When your data travels between your device and our servers, we protect it with TLS 1.3 encryption, the latest and most secure version of the protocol used by banks and government agencies.

Data at rest:
When your data is stored on our servers, we encrypt it with AES-256. This is the same encryption standard used to protect classified government information. Even if someone gained physical access to our servers, your data is unreadable without the encryption keys.

Access Controls

Not everyone at Flo can see your data. We use strict access controls so only authorized Flo team members can access your data:

  • Only authorized team members can access user data
  • Access is granted only when it is strictly necessary to provide services or comply with legal obligations
  • All access is continuously logged and monitored
  • Access is revoked once the purpose has been fulfilled and it is no longer required
  • Employees receive regular privacy and security training

Security Monitoring

Our security team monitors for threats 24/7. This includes:

  • Automated systems detect unusual activity
  • Real-time alerts for security issues
  • Regular security audits and vulnerability assessments
  • Incident response procedures ready to activate immediately

Independent Verification

We don't just claim to be secure – we prove it:

ISO 27001 certification (achieved July 2022, recertified every year since)

An independent expert audit that verifies our information security management system meets international standards.

ISO 27701 certification (achieved January 2024, recertified every year since)

An independent expert audit that verifies privacy programs follow global best practices. The gold standard for privacy management.

Regular penetration testing

Security testing by external experts who help us find vulnerabilities before malicious actors do.

Continuous monitoring

24/7 automated monitoring for threats and vulnerabilities.

Learn more about our certifications

For complete legal details: See our Privacy Policy 

Your Privacy Rights

You have complete control over your data. Here's what you can do, and how to do it.

Access Your Data

What you can do:
Request a copy of your data at any time within the app. 

How to do it:

  1. Open Flo and go to Menu (your avatar)
  2. Tap "My Data"
  3. Select "Request My Data"
  4. You'll receive two separate emails: one with your data and another with the password to access it. In almost all cases, these will be sent within one month of your request. If the timeline changes, we’ll keep you informed. 

What you'll get:
A password-protected file containing all your logged health data, account information, and usage history.

Delete Your Data

What you can do:
Permanently delete your account and all associated data. Once deleted, your data cannot be recovered.

How to do it:

  1. Open Flo and go to Settings
  2. Tap "My Account"
  3. Select "Delete Account"
  4. Confirm your decision

What happens:
When you submit the request, your personal identifiers are immediately unlinked from your app information so we can no longer identify you. Complete deletion across all our systems may then take up to 90 days. 

On rare occasions, we may be required to retain your data longer only if legally required (for example, to defend against legal claims or comply with tax or accounting regulations). This is rare and in almost all cases your data is deleted following the process above.

Export Your Data

What you can do:
Export your health information in a standard format to use with other apps or services.

How to do it:

  1. Open Flo and go to Menu (your avatar)
  2. Tap "Help”
  3. Scroll down to use the chat widget to make your export request
  4. You'll receive two separate emails: one with your data and another with the password to access it. In almost all cases, these will be sent within one month of your request. If the timeline changes, we’ll keep you informed. 

What you'll get:
A password-protected file containing all your logged health data, account information, and usage history, in a format commonly recognised by other services.

Manage Your Consents

What you can do:
Control what data we collect and how we use it.

Your options:

  • Consent: We rely on your consent to process your health information. You can withdraw this directly in-app or by contacting us at support@flo.health 
  • Marketing emails: Unsubscribe from marketing communications (you'll still receive essential service emails). You can do this directly in the app settings, by opening any email from Flo and selecting the "Unsubscribe" link, or by contacting support@flo.health with your request. 
  • AppsFlyer / Firebase: With your explicit consent, we may share your non-health personal data with AppsFlyer or Firebase for advertising purposes. If you provide your consent and later decide to opt out, you can do so at any time through your app settings or by contacting support@flohealth.com. 
  • Cookies: When you interact with our website, we may share your non-health information to promote our services. You can disable cookies anytime in your browser settings, or by visiting our cookie preference center on our website.

For California residents (CCPA):
You have additional rights under the California Consumer Privacy Act. Learn more → [https://flo.health/supplemental-flo-us-state-privacy-notice]

For Washington & Nevada residents:
You have additional rights under state Consumer Health Data Privacy laws. Learn more → [https://flo.health/consumer-health-data-privacy-notice]

For complete further details: See our Privacy Policy and Cookie Policy

How We Use Your Data

We use your data to provide you with better health predictions, personalized insights, and to improve your app experience. 

Here's how 

Cycle Predictions

What we do:
We use data you log to help predict the next stage in your cycle and symptoms you might experience. 

Why it helps:
More accurate predictions help you plan your life around your cycle and symptoms, and better understand your reproductive health.

How it works:
Our algorithm uses your historical cycle data and patterns to improve the accuracy of our predictions and provide relevant content. The more data you log, the more accurate predictions become.

Health Insights

What we do:
You can track your symptoms, moods, and lifestyle factors to better understand patterns in your health, and we use the information you provide to deliver relevant educational content.

Why it helps:
Seeing connections between your cycle and your symptoms, energy levels, or mood can help you learn more about your body signals, prepare for changes or help you have more informed conversations with your healthcare provider.

Examples:

  • "You usually experience headaches 2 days before your period."
  • "Your energy levels tend to be highest during the follicular phase."
  • "You're more likely to have trouble sleeping during the luteal phase."

Product Improvements

What we do:
We may use your data to help improve Flo for everyone. 

Examples:

  • Fixing bugs and crashes
  • Understanding which features are most useful
  • Improving prediction algorithms
  • Improving and creating new features based on user needs

What We Don't Do (We Never Sell Your Data)

Let's be absolutely clear about what we don't do with your data:

❌ We have never, and will never, sell your data
❌ We don't share your health data for advertising or marketing purposes
❌ We don't give your data to employers
❌ We have never provided menstrual or reproductive health data with any government, and we are committed to ensuring it stays that way. Your reproductive health information belongs to you.

These promises are verified through our ISO 27701 certification.

For legal details: See our Privacy Policy and How does Flo respond to data requests?

What Data Does Flo Collect?

Flo collects three types of data:

  1. Health data you input - Cycle dates, symptoms, moods, and other information you choose to log
  2. Account information - Email, name (optional), birth year, and preferences (such as language)
  3. Technical data - Device type, app version, and usage information

If you use Anonymous Mode, Flo cannot link any of this data to your identity.

See complete data collection details above 

Does Flo Sell My Data?

No. Flo has never, and will never, sell user data to third parties.

This commitment is explicitly stated in our Privacy Policy, verified through our annual ISO 27701 privacy certification, and confirmed by independent audits, including the Guidepost audit conducted in 2022. 

Learn about our certifications 

How to Delete Your Data

To delete your Flo account and all associated data:

  1. Open the Flo app
  2. Select Menu (your avatar) 
  3. Tap "My Account"
  4. Select "Delete Account"

When you submit the request, your personal identifiers are immediately unlinked from your app information, so we can no longer identify you. Complete deletion across all our systems may then take up to 90 days. This action cannot be undone.

What Makes Flo Different

Data PracticeFloOther Apps
Sell user data❌ NeverOften yes
ISO 27001 certified✅ YesRare
ISO 27701 certified✅ Yes (first period tracker)Very rare
Anonymous tracking option✅ Yes (Anonymous Mode)Rarely fully anonymous 
Third-party audits✅ RegularUncommon
GDPR compliant✅ CertifiedClaimed but not verified through external audits

Want Maximum Privacy?

Enable Anonymous Mode to use Flo without your name, email, or IP address being linked to your health data.

Have More Questions?

Visit our FAQ for answers to common questions about privacy, security, and your rights. 

Need Help?

Contact our Data Protection Officer at dpo@flo.health with privacy questions or concerns.