Data Manifest
At BehavFlow, your data privacy and security are not just afterthoughts—they are the core architectural principles of our platform. We operate on a strict "Zero Storage" model for your analytical data.
1 Read-Only Access to BigQuery
BehavFlow connects to your environment using a secure, strictly Read-Only Service Account. We only require the BigQuery Data Viewer and BigQuery Job User roles to execute analytical queries. We physically and programmatically cannot write, edit, alter, or delete any of your tables, datasets, or underlying GA4 data.
2 Data Stays in Your Own BigQuery
Your data never leaves your Google Cloud architecture. BehavFlow does not ingest, clone, or mirror your raw GA4 hit-level data into our own databases. The data lives securely in your own BigQuery project, under your full control, protected by Google's native zero-trust security model.
3 Instant Access Revocation
Because your data stays in your cloud, you remain the ultimate owner at all times. You can revoke BehavFlow's Service Account access in your Google Cloud IAM console at any given moment. The second access is revoked, BehavFlow immediately loses all ability to query or view your behavioral data. No traces are left behind.
4 Live Mining & Strict Caching
We don't share, sell, or monetize your data. When you open a Process Map, BehavFlow queries your BigQuery dataset live and builds the visual representation in real-time.
The only data we temporarily store on our servers are highly abstracted, aggregated node relationships (e.g., "Page A → Page B: 50 sessions") strictly necessary for caching. This ensures your dashboard loads instantly without running an expensive BigQuery operation for every single click. These cached aggregations cannot be reverse-engineered into personally identifiable information (PII).