← Back to Home

Privacy Policy

Last Updated: June 4, 2026

1. Introduction

Welcome to JengaFlow, a service provided by JengaStack Engineering. We are committed to protecting your business data and privacy. This policy outlines how we handle the sensitive automation credentials you entrust to us.

2. Information Collection

We collect only what is necessary to execute your automation workflows:

  • Organization Data: Business name and contact details for billing and compliance.
  • Automation Credentials: API keys for Odoo, WhatsApp (Meta), and M-Pesa. These are always encrypted before storage.
  • Execution Logs: Metadata about sync events to provide the audit trails you rely on.

3. Data Usage

Your data is used exclusively to:

  • Securely inject credentials into authorized automation workers (n8n, custom APIs).
  • Facilitate real-time sync between your JengaStack Odoo instance and external services.
  • Maintain compliance-first audit trails for your internal security reviews.

4. Zero-Trust Security

We employ a zero-trust architecture. Credentials reside in an encrypted vault and are only decrypted in worker memory during an active sync operation. Decryption keys are managed via industry-standard HSM (Hardware Security Modules) where applicable.

5. Contact

Questions? Reach our security team at security@jengastack.app.