Everything you need to automate processes, build apps, and manage data — with the governance, versioning, and audit trail your business can stand behind.
Build sophisticated automations on a drag-and-drop canvas — a rich library of built-in step types covering data, logic, documents, communications, and AI, extended without limit through the Marketplace. The same input produces the same process, every time, with every step recorded.
A queryable relational database with 22 semantic column types that understand your data — emails, phones, addresses, currency, references, formulas — and validate it automatically.
| Name | Email ✓ | Phone ✓ | Plan |
|---|---|---|---|
| Acme Corp | team@acme.co | +1 415 555 0100 | Pro |
| Beta Labs | hi@betalabs.io | +44 20 7946 0958 | Team |
| Nova Inc | info@nova.com | +1 212 555 0177 | Enterprise |
✓ validated & enriched automatically — 22 semantic types
Bad data breaks automation. FlowClick cleans it as it arrives — as workflow steps or automatically by column type.
Build internal tools, dashboards, and authenticated customer-facing applications with a point-and-click builder. Every component connects directly to your workflows and database.
FlowClick's agent isn't a chatbot bolted on the side — it has governed access to your data, flows, files, and configuration, and every action it takes lands in the audit trail.
No-code shouldn't mean no discipline. FlowClick brings software-grade change management to your workflows and apps — without making anyone learn git.
Every FlowClick app can have its own managed mailbox — an addressable email endpoint that triggers flows on arrival. No mail server, no IMAP setup.
Run in FlowClick Cloud, on-premise behind your firewall, or export applications as standalone packages on any infrastructure.
FlowClick doesn't bolt security on as an afterthought — it's embedded from the database engine to the web layer. Your data is protected by design, not by configuration.
All queries are parameterized at the engine level — not by developer discipline. There is no way to construct raw SQL through the platform, eliminating injection risk entirely.
Encrypt individual columns at the application layer — beyond database-level encryption. Sensitive PII, PHI, and financial fields are encrypted on write, decrypted on read, transparently.
Built-in TOTP-based MFA (RFC 6238) with QR code enrollment. One SSI directive renders the complete setup flow — no third-party auth provider required.
Password columns are one-way hashed by default — never exposed to clients or API responses. Authentication works via filter-level hash comparison, never raw reads.
Per-table audit trails for reads, writes, and exports. Data classification labels (PII, PHI, Financial, Confidential) tag tables for compliance reporting and dashboards.
Immutable object-lock storage with configurable retention periods in compliance or governance modes. Files cannot be modified or deleted until the retention window expires.
Also built in: automatic CSRF validation on every form · role-based access per user, group, and resource · secure session tokens · mandatory TLS · isolated VPC with private routing · auto-provisioned SSL certificates · encrypted Postgres at rest · mTLS with IP whitelisting · continuous protection with point-in-time recovery
These aren't bolt-ons — they're native platform capabilities with dedicated SSI directives, automated workflows, and full audit trails. Enable what you need per folder with a single setting.
Automated deletion across all PII/PHI-classified tables matching a data subject identity — hard-delete with full audit logging. One SSI directive renders a public-facing erasure request form.
Supports: GDPR Art. 17 · CCPA · LGPD
Purpose-based consent tracking with grant/revoke support — records subject, purpose, timestamp, IP, and user agent. An SSI directive renders a consent banner with per-purpose checkboxes.
Supports: GDPR Art. 6–7 · ISO 27018 · PIPEDA · LGPD
Automated Data Subject Access Requests scan all PII/PHI tables and export a structured file. An SSI directive provides a public-facing data export request form with full audit logging.
Supports: GDPR Art. 15/20 · CCPA 1798.100/110 · PIPEDA
Business Associate Agreements signed with our infrastructure providers. Data Processing Agreements and Standard Contractual Clauses available for international data transfers.
Supports: HIPAA · GDPR Art. 46 · HITECH Act
Aggregate queries with grouping and time-bucketing — report on data where it lives.
Long-running work runs as monitorable jobs — retry failed runs with one click.
Structured text comparison, SHA-256, and HMAC steps for content integrity.
Every inbound webhook recorded immutably — debug integrations with confidence.
Bring a real process from your business — we'll build it live.