Privacy Policy

Last updated: April 2026  ·  Petriflow AI Generator

1. Who we are

Petriflow AI Generator is a tool operated by Ľuboš Petrovič. It helps users generate Petriflow process definitions using AI language models.

2. What data we collect

• Account data: Your name and email address, provided either directly during registration or via Google OAuth.
• Chat history: The conversations you have with the AI generator, stored server-side so you can access them across sessions.
• Usage data: Token usage counters to enforce per-user limits.
• Optional credentials: eTask email/password if you choose to configure them (stored encrypted).

We do not collect IP addresses, browser fingerprints, or any tracking cookies beyond what is strictly necessary for authentication.

3. How we use your data

• To authenticate you and maintain your session
• To display your chat history across devices
• To enforce token usage limits
• To send AI prompts to third-party LLM providers (Anthropic, OpenAI, Google) on your behalf — your prompts are processed by these providers according to their own privacy policies
• To validate generated Petriflow process definitions by performing a test import to Netgrif eTask — the XML is immediately deleted after the check and is never stored or used for any other purpose. This step only occurs if the administrator has configured eTask credentials in the server settings.
• To enable the "Open in Builder" feature — your generated XML is uploaded to a GitHub repository configured by the administrator so the Netgrif Builder can access it via a public URL.

4. Third-party services

When you generate a process, your prompt is sent to one of the following AI providers depending on the server configuration:

• Anthropic (Claude)
• OpenAI (GPT)
• Google (Gemini)

When you use the "Open in Builder" feature, your generated XML is uploaded to GitHub under this service's account so the Netgrif Builder can access it via a public URL. Depending on administrator configuration, this uses either a public GitHub repository or a public GitHub Gist. In both cases the file is publicly accessible on GitHub and remains there until manually deleted by the administrator. This is subject to GitHub's Privacy Policy. If you do not wish your generated process definitions to be uploaded to GitHub, do not use the "Open in Builder" feature — you can instead use "Download XML" and import it manually.

When XML validation is enabled by the administrator, generated process definitions are temporarily transmitted to:

• Netgrif eTask (etask.netgrif.cloud) — solely to verify the XML imports correctly. The process is deleted immediately after the check. No data is retained by eTask beyond this transient operation.

Authentication via Google is subject to Google's Privacy Policy.

5. Data storage

Your data is stored on servers operated by Lubos Petrovic. Chat history and account data are stored in JSON files on the server. We do not use third-party analytics or advertising platforms.

6. Your rights (GDPR)

As a user in the European Economic Area, you have the following rights:

• Access: You can view your data at any time in the Account drawer.
• Deletion: You can delete your account and all associated data using the "Delete my account & data" button in the Account drawer. This is permanent and immediate.
• Portability: Contact us to receive an export of your data.
• Correction: Contact us to correct inaccurate data.
• Objection: You may object to processing by deleting your account.

7. Data retention

Your data is retained for as long as your account exists. When you delete your account, all data (account information, chat history, usage logs) is permanently deleted within minutes.

8. Contact

For privacy-related questions or requests, contact us at lubospetrovic13@gmail.com.

This policy may be updated periodically. Continued use of the service after changes constitutes acceptance of the updated policy.