We process the data, you stay in control.

Your organization is the owner of its data and decides why and how it is processed. Flock Safety Operations, Inc. is the service provider that processes that data on your behalf and under your direction. We process personal information only to provide the service — not for our own purposes, and never to sell it or build advertising profiles.

We process the categories of data described in our privacy policy — account, roster, medical, emergency-contact, location, communications, SOS, and verification data — for the sole purpose of running trip-safety operations for your organization. Live location is processed only during an active trip window.

For school customers, student information may constitute education records under FERPA. Under the DPA, Flock acts as a "school official" with a legitimate educational interest: we process student data only to provide the service and only as the school directs, we remain under the school's direct control for those records, and we do not re-disclose them except as the school instructs or the law requires.

• —Process on instruction. We process data only to provide the service and only as your organization directs.
• —Confidentiality. People who handle the data are bound to keep it confidential.
• —Security. We apply the safeguards described below and keep them current as the service evolves.
• —Assist with requests. We help you respond to access, correction, and deletion requests, and route requests about school-owned records back to you.
• —Breach notification. If a security incident affects your data, we notify you without undue delay and share what we know.
• —Deletion and return. On termination, we delete or return your data on request, subject to any retention the law requires.

Data is encrypted in transit. Access is enforced at the database level by row-level security, so role and trip scoping apply on every request rather than only in the interface. The public medical page requires one-time-code verification, rate-limits attempts, and logs every access. Privileged keys are kept server-side and never exposed to browsers or apps.

We use a small, vetted set of sub-processors strictly to run the service — for hosting and database, transactional messaging, and payments — and each handles only what its function requires. We make the current list available to organizations under the DPA and give notice before adding a new sub-processor that handles personal data.

District and annual plans include a DPA, and we will work with your counsel on the specific terms and any insurance or procurement requirements. To request the current DPA or start a review, email support@getflock.co or reach us through the contact page. See also our Terms of Service.