Privacy Policy
1. Introduction and Scope
This Privacy Policy describes how Data Hippo (a service of Paz Technologies LLC, "we," "our," or "us") collects, uses, and shares information when you use our websites, request or use an evaluation sandbox, or otherwise interact with us (together, the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy.
This policy covers our websites, evaluation sandboxes, and marketing activities. Production deployments of the Data Hippo platform are governed by separate written agreements with our customers, including business associate agreements where applicable, and typically run in the customer's own cloud environment.
The Service is not intended to collect protected health information or patient data. Do not submit patient information to our websites, sandboxes, or setup conversations.
2. Information We Collect
Information You Provide
- Contact and signup information: your email address and sign-in details when you request a sandbox, book a demo, or contact us
- Setup and conversation information: information you share in conversations with our setup assistant and on setup forms, such as your name, role, and details about your organization, its systems, and its needs
- Business communications: the contents of emails, calls, and meetings you have with us
Publicly Available Business Information
To review sandbox requests and prepare and personalize sandbox environments, we may supplement the information you provide with publicly available business information about you and your organization, such as your organization's website, business directories, news coverage, and professional profiles. We collect only business-related information from these sources.
Information Collected Automatically
- Service usage patterns, feature usage, performance metrics, and error reports
- Device and technical information, such as IP address, browser type and version, operating system, and time zone
- Session information, such as pages visited, session duration, and referring pages
Partner Identity Information
For organizations entering a partner relationship with us, we collect identity information to verify access eligibility, including organization details, contact person information, and business credentials.
3. How We Use Your Information
Service Provision
- Providing and maintaining the Service
- Reviewing sandbox requests and deciding whether to grant access
- Preparing and personalizing sandbox environments
- Verifying partner access and authorization
Communications
- Sending service communications, such as sign-in links and notifications about your sandbox
- Following up about your sandbox, our services, and relevant product updates
- Responding to your inquiries and providing support
You may opt out of marketing communications at any time by using the unsubscribe link in our emails or contacting us. Service communications, such as sign-in links, are sent as needed to provide the Service.
Improvement and Analytics
- Analyzing usage to improve the Service and develop new features
- Understanding the needs and priorities of the organizations we serve
Security, Fraud Prevention, and Legal
- Protecting the Service against abuse, fraud, and security threats
- Enforcing our Terms of Service
- Complying with legal obligations
AI Processing
Parts of the Service, including the sandbox setup assistant and our review of sandbox requests, use artificial intelligence operated by us and by our service providers. Our service providers process this information on our behalf under agreements that restrict their use of it, and we do not permit them to use your information to train their general-purpose models.
4. Cookies and Analytics
We use cookies and similar technologies that are necessary for the Service to function, such as keeping you signed in. We also use analytics tools to understand how the Service is used; analytics data is collected under the categories described above. We do not use third-party advertising networks. Because there is no consistent industry standard, the Service does not currently respond to "Do Not Track" browser signals.
5. Information Sharing
We do not sell your personal information.
Service Providers
We share information with third-party service providers who assist us with service hosting and maintenance, identity and sign-in, email delivery, analytics processing, AI processing, and technical support. Service providers are permitted to use information only to provide services to us.
Partner Data Sharing
We may share analytics data with authorized partners as part of our service delivery, subject to appropriate data protection measures.
Business Transfers
If we are involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction, subject to this policy's protections.
Legal Requirements
We may disclose information if required by law or court order, or as necessary to comply with legal obligations, protect our rights and property, prevent fraud or security issues, or protect user safety.
6. Data Security
We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction, including encryption in transit, access controls, and audit logging. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
7. Data Retention
We retain information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by law. Sandbox request records are retained while your request is active and for a reasonable period afterward to support follow-up and to prevent abuse. Analytics data is typically retained for 24 months unless otherwise specified in partner agreements. We delete or de-identify information when it is no longer needed.
8. Your Rights and Choices
Depending on your location, you may have certain rights regarding your personal information:
- Access and Correction: request access to or correction of your personal information
- Deletion: request deletion of your personal information, subject to legal and business requirements
- Data Portability: request a copy of your data in a structured, machine-readable format
- Opt-Out: opt out of marketing communications at any time
- Objection and Restriction: object to or request restriction of certain processing where applicable law provides these rights
To exercise any of these rights, contact us at legal@datahippo.ai. We will verify your request and respond within the time required by applicable law.
9. International Data Transfers
If you are located outside of the United States, please note that your information may be transferred to and processed in the United States, where our servers and service providers are located. We ensure appropriate safeguards are in place for such transfers.
10. Children's Privacy
The Service is intended for business use and is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will take steps to delete the information.
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information we collect (described in Section 2), the right to delete personal information, the right to correct inaccurate personal information, and the right to non-discrimination for exercising these rights. We do not sell personal information and do not share personal information for cross-context behavioral advertising.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last Updated" date. Significant changes will be communicated through the Service or other appropriate means.
13. Third-Party Services
The Service may contain links to third-party services. This Privacy Policy does not apply to third-party services, and we are not responsible for their privacy practices.
14. Contact Information
If you have any questions about this Privacy Policy or our data practices, or wish to exercise your rights, please contact us:
Email: legal@datahippo.ai
15. Governing Law
This Privacy Policy is governed by the laws of the United States without regard to conflict of law principles.