Last Updated: June 18, 2026
This Privacy Policy explains how ExteriorFlow, operated by Tree eCommerce Group Inc. (“ExteriorFlow,” “Company,” “we,” “us,” or “our”), collects, uses, discloses, retains, and protects personal information when you visit our websites, use our AI-powered exterior design visualization software, create an account, upload content, purchase a trial or subscription, contact support, interact with our advertisements, or otherwise use our products and services (collectively, the “Services”).
ExteriorFlow provides digital software access for exterior design visualization. ExteriorFlow uses Recurly for subscription management and billing lifecycle records and uses Stripe and/or related payment providers for payment card processing.
The personal information we collect depends on how you interact with the Services. We may collect the following categories of information:
Account information: Name, email address, username, password or authentication data, account ID, account status, and preferences.
Billing and subscription information: Billing email, billing name, billing address if provided, subscription plan, trial status, renewal dates, invoices, receipts, transaction status, refund status, cancellation status, Recurly account/subscription identifiers, Stripe customer/payment identifiers, and limited payment-method details such as card brand, expiration date, and last four digits. ExteriorFlow does not intentionally collect or store full card numbers entered through the checkout flow.
User content: Photos, images, sketches, prompts, design concepts, files, text, project details, property-related content, and other content you upload or provide to generate exterior design visualizations.
Generated content: AI-generated mockups, renderings, images, design concepts, variations, and related outputs created through the Services.
Support communications: Messages, email correspondence, support tickets, cancellation requests, refund requests, dispute information, attachments, and any information you provide to customer support.
Device and usage information: IP address, browser type, device identifiers, operating system, pages viewed, referring URLs, clickstream data, interaction data, approximate location derived from IP address, error logs, and usage analytics.
Cookies and similar technologies: Cookie identifiers, pixels, local storage, analytics identifiers, advertising identifiers, and similar tracking technologies used for security, functionality, analytics, performance, referral attribution, and advertising.
Fraud, security, and compliance information: Risk signals, IP address, geolocation derived from IP, device information, payment-risk indicators, dispute information, chargeback information, authentication information, and records needed to prevent fraud, secure the Services, and comply with payment-network or legal obligations.
Marketing and referral information: Marketing preferences, campaign source, referral information, promotional interactions, ad interactions, and communications preferences.
We may receive information from third parties, including Recurly, Stripe and related payment providers, analytics providers, advertising partners, referral partners, fraud-prevention providers, support providers, infrastructure providers, and business partners. This may include subscription records, payment status, invoice details, dispute information, fraud-risk signals, attribution data, and contact or account information needed to provide the Services.
We use personal information for the following purposes:
We may disclose personal information to the following categories of recipients:
Subscription and payment providers: Recurly, Stripe, and related providers that manage subscription lifecycle records, invoices, payment processing, renewals, refunds, disputes, fraud controls, and cancellation workflows.
AI and technology providers: Infrastructure, storage, compute, AI, model, image-processing, and software providers that help operate and provide the Services.
Support and communications providers: Email, customer-support, ticketing, chat, and notification providers.
Security and fraud-prevention providers: Vendors that help detect fraud, abuse, unauthorized activity, payment risk, and security incidents.
Analytics and advertising partners: Vendors that measure website/app performance, campaign attribution, and advertising effectiveness. Where applicable, this may constitute “sharing” for cross-context behavioral advertising under certain privacy laws.
Professional advisors: Attorneys, accountants, auditors, insurers, and other professional advisors.
Legal and compliance recipients: Law enforcement, regulators, courts, payment networks, processors, banks, and other parties when required to comply with law, protect rights, prevent fraud, respond to disputes, or enforce terms.
Business transfers: Parties involved in a merger, financing, acquisition, reorganization, bankruptcy, sale of assets, or similar transaction.
At your direction: Other parties when you request or authorize the disclosure.
ExteriorFlow uses Recurly to manage subscription lifecycle records, plans, renewals, invoices, account status, and cancellation workflows. ExteriorFlow uses Stripe and/or related payment providers to process payment card transactions. When you enter payment information, the information is processed by our payment and subscription providers.
ExteriorFlow does not intentionally collect or store full payment card numbers entered through the checkout flow, although we may receive limited billing, transaction, payment status, invoice, subscription, and payment-method information such as card brand and last four digits.
When you upload photos, sketches, prompts, project details, or other User Content, we process that content to provide exterior design visualization features and related support. We may disclose User Content and Generated Content to technology, hosting, storage, and AI service providers that help us provide, secure, troubleshoot, and improve the Services.
You should not upload content that you do not have the right to use or content containing sensitive personal information unless necessary for your use of the Services and permitted by law.
We and our service providers may use cookies, pixels, local storage, and similar technologies for essential functionality, login/session management, security, fraud prevention, preferences, analytics, performance measurement, referral attribution, marketing, and advertising.
Some technologies may allow us or third-party partners to recognize your browser or device across sites or services for advertising measurement or targeted advertising.
You can control cookies through your browser settings and any cookie-preference tool we provide. If we use advertising pixels, retargeting cookies, or similar tools that constitute a “sale,” “sharing,” or targeted advertising under applicable privacy laws, we will provide a “Do Not Sell or Share My Personal Information” or similar opt-out link and honor applicable opt-out preference signals where required by law.
Depending on where you live, you may have rights to request access to, correction of, deletion of, or portability of your personal information; to opt out of sale, sharing, targeted advertising, or certain profiling; to limit certain uses of sensitive personal information; to withdraw consent where processing is based on consent; and to appeal a privacy-rights decision.
You may also opt out of marketing emails by using the unsubscribe link in those emails. Transactional, billing, support, security, and legal notices are not marketing emails and may still be sent.
To submit a privacy request, contact us at support@exteriorflow.com. We may need to verify your identity before processing a request. Authorized agents may submit requests where permitted by law, but we may require proof of authorization and identity verification.
This section applies to residents of California and other U.S. states with similar privacy laws to the extent those laws apply to ExteriorFlow.
Identifiers: We may collect identifiers from you, your device/browser, Recurly, Stripe, service providers, and marketing/referral partners. We use this information for account creation, billing, subscriptions, support, communications, security, fraud prevention, and marketing. We may disclose this information to service providers, payment/subscription providers, analytics/advertising partners, and legal/compliance recipients. We retain this information for the account life plus a reasonable period for legal, tax, accounting, security, dispute, and compliance purposes.
Commercial information: We may collect commercial information from you, Recurly, Stripe, and payment/subscription providers. We use this information to process trials, renewals, invoices, receipts, cancellations, refunds, disputes, and chargebacks. We may disclose this information to payment/subscription providers, support providers, professional advisors, and legal/compliance recipients. We retain this information as needed for subscription, tax, accounting, fraud, dispute, chargeback, and legal obligations.
Internet or network activity: We may collect internet or network activity from your device/browser, cookies, analytics tools, and security tools. We use this information to operate and secure the Services, perform analytics, troubleshoot issues, prevent fraud, and measure advertising. We may disclose this information to hosting, analytics, security, fraud, advertising, and support providers. We generally retain this information for a limited period based on security, analytics, troubleshooting, and legal needs.
Geolocation information: We may collect approximate geolocation information from IP address and device/browser information. We use this information for approximate location, security, fraud prevention, analytics, and localization. We may disclose this information to hosting, analytics, security, fraud, and payment-related providers. We generally retain this information for a limited period based on security and analytics needs.
User content and visual information: We may collect User Content and visual information from you. We use this information to generate exterior design visualizations, provide support, troubleshoot issues, and improve service quality. We may disclose this information to AI, hosting, storage, support, and technology providers. We retain this information while needed to provide the Services, support account features, comply with legal obligations, or until deletion under applicable settings or rights.
Inferences: We may create inferences from usage data, interactions, analytics, and marketing/referral partners. We use this information to improve experience, personalize content, measure performance, and conduct marketing where permitted. We may disclose this information to analytics and advertising providers and service providers. We retain this information based on analytics, marketing, and legal needs.
Sensitive personal information: We generally do not request sensitive personal information. Sensitive personal information may include account login credentials and precise information only if voluntarily provided or technically necessary. We use this information for account security, authentication, payment/security processing, support, and legal compliance. We may disclose this information to service providers as needed for security, authentication, payment/subscription processing, and support. We retain this information only as reasonably necessary for disclosed purposes or legal/security obligations.
We do not sell personal information for money. We may share identifiers, internet/network activity, commercial information, and inferences with advertising or analytics partners for cross-context behavioral advertising or targeted advertising if such technologies are active on our website or app. If we engage in such sharing, you may opt out using the “Do Not Sell or Share My Personal Information” or similar link and any cookie-preference tool we provide.
We do not knowingly sell or share the personal information of consumers under 16 years old.
We retain personal information for as long as reasonably necessary to provide the Services, maintain accounts, process subscriptions, provide support, resolve disputes, prevent fraud, comply with legal, tax, accounting, and payment-network obligations, enforce agreements, and protect our rights and users. Retention periods vary based on the nature of the information and the purpose for which it is processed.
We use reasonable administrative, technical, and organizational measures designed to protect personal information from unauthorized access, use, disclosure, alteration, or destruction. No method of transmission or storage is completely secure. You are responsible for protecting your account credentials and notifying us promptly if you believe your account has been compromised.
ExteriorFlow is operated from Canada and uses service providers that may process personal information in Canada, the United States, and other countries. These countries may have privacy laws that differ from the laws where you live. Where required, we use appropriate safeguards for international transfers.
The Services are not directed to children under 18, and we do not knowingly collect personal information from children under 18. If you believe a child has provided personal information to us, contact us so we can take appropriate action.
The Services may contain links to third-party websites, platforms, or services. We are not responsible for the privacy practices of third parties. Review their privacy policies before providing information to them.
We may update this Privacy Policy from time to time. The updated version will be posted with a new “Last Updated” date. If changes are material, we will provide additional notice where required by law.
ExteriorFlow is operated by Tree eCommerce Group Inc., a company with operations in Canada.
Company: Tree eCommerce Group Inc.
Business Address: 2967 Dundas St. W, #1583, Toronto, ON, Canada, M6P 1Z2
Country: Canada
Support Email: support@exteriorflow.com