Privacy Policy
Last updated: March 10, 2026
This Privacy Policy explains how Hiveality handles personal information on our marketing site, software platform, APIs, hosted customer experiences, and related services.
1. Scope
This Privacy Policy applies to the Hiveality website, our software platform, hosted admin workspaces, APIs, waitlist and sales flows, and the support, marketing, analytics, AI, media, booking, commerce, community, and automation features we operate or make available.
If you visit a website, store, booking flow, quiz, form, or community created by one of our customers on Hiveality, that customer may be the primary controller of the data collected on that property. In those cases, the customer is responsible for its own privacy notices, cookie notices, consents, and marketing compliance, and we generally act as a service provider or processor on the customer's behalf.
2. Who we are
Hiveality is operated by Hiveality Inc.. If you have privacy questions or want to exercise a privacy right, contact us at support@hiveality.com.
Mailing address:
Hiveality Inc.
94 Walker Ave
Toronto, ON M4V 1G2
Canada
3. Information we collect
We collect information directly from you, automatically from your use of the services, and from integrations you enable.
Account and workspace information, such as your name, email address, login credentials, organization, reseller, project, team, and website settings.
Commercial and billing information, such as plan selection, payment status, invoices, tax amounts, Stripe customer IDs, Stripe subscription IDs, order history, and billing contacts.
Contact, lead, and audience information you or your users submit through forms, quizzes, email capture, waitlists, bookings, community signups, course enrollment, checkouts, and similar flows. This can include names, email addresses, phone numbers, mailing information, company details, notes, tags, list membership, quiz answers, booking details, RSVPs, and purchase history.
Content and media you upload or create, such as website pages, blog posts, community posts, comments, files, images, video assets, course content, email campaigns, automations, and templates.
AI interaction data, such as prompts, attachments, selected context, conversation history, generated outputs, approval actions, and related telemetry needed to deliver AI features.
Device, browser, and usage data, such as IP address, approximate location derived from IP, browser type, operating system, referrer, UTM parameters, page views, clicks, session data, and system logs.
Communications data, such as support requests, onboarding messages, transactional emails, campaign delivery events, unsubscribe activity, and SMS or notification logs where enabled.
Waitlist information collected on our marketing site, including your name, email address, IP address, and user-agent string when you join our launch waitlist.
4. Cookies, local storage, and similar technologies
We use cookies, local storage, session storage, pixels, and similar technologies to run authentication, maintain sessions, remember preferences, support carts and dismissals, measure traffic, attribute campaigns, and enable analytics or marketing tools. For a more detailed description, see our Cookie Policy.
On Hiveality-powered customer sites, non-essential analytics or marketing tools may be enabled by the website owner, including Google Analytics 4, Meta Pixel, managed analytics scripts, or customer-configured webhooks and conversion tools. Those features are controlled by the website owner, not always by Hiveality directly.
5. How we use personal information
To provide, host, secure, maintain, and improve Hiveality and the services built on it.
To authenticate users, manage accounts, teams, permissions, and cross-subdomain sessions.
To process payments, subscriptions, taxes, refunds, receipts, and billing support.
To operate websites, forms, quizzes, booking flows, courses, communities, stores, and member access.
To send transactional emails, login emails, billing notices, support replies, marketing campaigns, and notifications.
To power AI-assisted generation, content analysis, automation, and search or embedding workflows.
To analyze performance, traffic, engagement, experiments, attribution, and platform reliability.
To detect abuse, fraud, spam, suspicious activity, failed payments, and security incidents.
To comply with legal obligations, enforce our contracts, resolve disputes, and protect rights and safety.
6. Legal bases where they apply
Depending on your location, our legal bases for processing may include performance of a contract, legitimate interests, consent, compliance with legal obligations, and protection of our rights, users, systems, and the public.
7. How we share information
We do not sell personal information for money. We share information only as reasonably necessary to operate the services, when instructed by a customer, or when required by law.
Infrastructure and authentication providers, including Supabase for database, authentication, storage, and related services, and Vercel for hosting and performance tooling.
Payment providers, including Stripe, for payment processing, subscription management, taxation where enabled, fraud controls, and refunds.
Email and communications providers, including Resend for transactional and campaign email delivery, and Twilio where SMS features are enabled.
AI providers, including OpenAI and Anthropic, when prompts, selected content, images, or other context are sent to generate or analyze content.
Media and asset providers, including Uploadcare for files and images, Mux for video, Unsplash for licensed image search or import flows, and Loom on pages where Loom videos are embedded.
Analytics, attribution, and advertising tools, including Vercel Speed Insights on our own site, managed analytics scripts, Google Analytics 4, Google Fonts, Google Search Console or Calendar integrations, and Meta Pixel or Conversions API where configured.
Workflow and integration tools, including Upstash QStash, Zapier, customer-configured webhooks, and other integrations enabled by a workspace owner.
Community or engagement tooling, including GetStream, when community or realtime features rely on it.
Professional advisers, corporate transaction counterparties, law enforcement, regulators, and courts where required or appropriate.
Website owners using Hiveality can configure outbound webhooks, pixels, analytics, and API integrations that may transmit personal information to systems they control. Those customers are responsible for the configuration and legal basis for those disclosures.
Depending on the property and configuration, certain disclosures to analytics or advertising partners may be considered a "sale" or "sharing" under some U.S. privacy laws. Where that applies to a Hiveality-operated property, you can submit an applicable request by contacting support@hiveality.com. If the disclosure occurs on a customer-operated Hiveality site, please contact that site owner directly.
8. Data retention
We retain personal information for as long as reasonably necessary for the purposes described in this Policy, including to provide the services, maintain records, troubleshoot issues, prevent abuse, comply with legal obligations, and resolve disputes.
Account, billing, and contract records may be kept while your account is active and for a reasonable period afterward.
Customer content and audience data are generally retained until deleted by the customer, removed under our retention processes, or no longer needed.
Analytics, security, delivery, and audit logs may be retained for shorter operational periods or longer if required for security or compliance.
Backups may persist for a limited period before they are overwritten or deleted in the ordinary course.
9. International transfers
Hiveality operates from Canada and uses service providers that may process data in Canada, the United States, the European Union, and other jurisdictions. By using the services, you understand that information may be transferred to and processed in countries with privacy laws that differ from those in your jurisdiction, subject to the safeguards required by applicable law.
10. Security
We use administrative, technical, and organizational safeguards appropriate to the nature of the information and the risks involved. These safeguards may include access controls, authentication, activity logging, environment-based secrets, provider-level encryption, row-level access restrictions, and signed or authenticated integrations where supported.
No system is perfectly secure. You are responsible for protecting your credentials, using strong passwords, controlling team access, and notifying us promptly if you suspect unauthorized activity.
11. Sensitive information, health information, and regulated data
Hiveality is built for health and wellness businesses, but that does not mean every workflow on the platform is appropriate for protected health information, regulated patient records, or other highly sensitive data.
Do not use Hiveality to store or process protected health information, insurance data, or other regulated health records unless we have completed a case-by-case review, expressly approved that use in writing, and entered into any required agreement such as a Business Associate Agreement.
Any HIPAA- or PHI-related support is optional, is not included by default, and may require additional one-time or recurring fees depending on the account, requested configuration, and scope of support.
Customers are responsible for obtaining any required consents, publishing appropriate privacy notices, and determining whether their own regulatory obligations apply before using Hiveality for health-related workflows.
AI-generated content, automations, and public website content should be reviewed by a qualified human before being used in a clinical, legal, or other sensitive context.
12. Your rights and choices
Depending on your location, you may have rights to request access to personal information, correction, deletion, restriction, portability, withdrawal of consent, objection to certain processing, or a copy of the categories and recipients of information we process.
You can opt out of promotional emails using the unsubscribe link in the message.
You can control cookies through browser settings and any consent tools that may be made available on the relevant site.
You can ask us to review, correct, export, or delete your information by emailing support@hiveality.com.
If you need help with a cookie, analytics, or advertising-related preference on a Hiveality-operated property, email support@hiveality.com.
California residents may have additional rights under California privacy law, including rights related to access, deletion, correction, portability, and certain opt-outs, including opt-outs of certain sales or sharing where applicable.
Users in the EEA, UK, or similar jurisdictions may also have the right to complain to their local supervisory authority.
We may need to verify your identity before fulfilling a request, and some information may be retained where required by law or necessary to protect rights, security, or recordkeeping obligations.
13. Marketing communications
We send service-related emails, receipts, security notices, onboarding messages, and other transactional communications as needed to operate the services. We may also send marketing messages where permitted by law.
If you use Hiveality to send campaigns, newsletters, or SMS, you are responsible for your own compliance with applicable anti-spam, telemarketing, privacy, and consent laws, including CASL, CAN-SPAM, TCPA, and similar requirements.
14. Children's privacy
Hiveality is a business platform and is not directed to children under 13. Platform accounts are intended for adults. If we learn that we collected personal information from a child in a way that requires deletion under applicable law, we will take appropriate steps to remove it.
15. Changes to this Policy
We may update this Privacy Policy from time to time. If we make a material change, we will update the "Last updated" date above and, where appropriate, provide additional notice through the website, product, or email.
16. Contact us
Contact: support@hiveality.com