• Information and Communications Technology
  • Software
  • Mobile Applications


EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/12/2018
Next Certification Due Date: 7/11/2023
Data Collected: HR, NON-HR

Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/12/2018
Next Certification Due Date: 7/11/2023
Data Collected: NON-HR

Purpose of Data Collection

Types of personal data collected: past and present employee data. The purposes and reasons for processing personal data: - In the performance of a contract as employer or client of the services you provided, to ensure legal employer obligations and the requirements of employment law are met - As part of our legal obligation for business accounting, payroll and tax purposes - We process special category personal data as part of our employment obligations, to ensure that any disabilities and health conditions are known so that proper accommodations can be provided On rare occasions we may process personal data in the following situations: - Where it is necessary to use the information for our legitimate interests (or those of a third-party) and employee's interests and fundamental rights do not override those interests - Where we may need to use the information to protect employee's vital interests, or someone else’s vital interests, the use of such information would be limited to life and death situations - Where we need to use the information to carry out a task in the public interest The types of third parties to which we disclose personal data are: Accounting system, Audit services, Authentication provider, Communication provider, Consulting services, Cyprus contractors, Desk reservation system, Engineering analytics tool, Expenses tracking system, Gmail, Google Drive, Insurance services, L&D platform, Learning system provider, Legal services, Medical services, Military services, Options accounting system, Outsourced compliance services, Password manager, Payroll services, Payroll system / HR database, Peer-to-peer recognition service, Pension administration, Policy management system, Provider of Jira and Confluence, Tax services and UK Pension administration.

Privacy Policy

HR Data

Employee Privacy Notice

Employee Privacy Notice

Effective Date: 10/21/2021
Internal Privacy Policy

Internal Privacy Policy

Effective Date: 4/1/2022

Non-HR Data

Document: Privacy Policy

User Privacy Policy

Effective Date: 5/2/2022

Verification Method


Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Flo Health, Inc. at:

Susanne Schumacher
Data Protection Officer
Flo Health, Inc.
Flo Health UK Limited
1013 Centre Road, Suite 403-B
Wilmington, Delaware 19805

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Flo Health, Inc. to your question or complaint, please contact the independent recourse mechanism listed below


Appropriate statutory body with jurisdiction to investigate any claims against Flo Health, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission