HiveHubAI acts as the data controller and ensures that personal data is processed in compliance with the General Data Protection Regulation (GDPR) and other applicable EU data protection laws. Our headquarters are located within the EU, and we are dedicated to upholding the highest standards of privacy and data security in all our operations.

Types of Data Collected

  • Personal Data: Includes but is not limited to names, email addresses, social media handles, and demographic information provided directly by users through account creation and service usage.
  • Financial Data: Financial transactions are processed securely through Stripe’s hosted checkout pages. We do not store or have access to your payment card details, ensuring your financial data remains confidential.
  • Usage Data: We monitor how you interact with our services to improve functionality and user experience. This includes tracking the pages you visit, the features you use, and how frequently you access our services.
  • Platform Data: Includes any information, data, or content obtained via the Meta Platforms API, such as user tokens, page tokens, or access tokens.

Purpose of Processing

The purposes for processing personal data include:

  • Providing personalized analytics and insights for social media strategy enhancement.
  • Managing user accounts and facilitating communication for service-related notices.
  • Processing transactions and maintaining accurate financial records.
  • Conducting marketing and promotional efforts, subject to user consent.
  • Providing and improving analytics and insights by processing social platform data in compliance with Meta's Platform Terms and Developer Policies.

Time of Collection

Data is collected at the following times:

  • At the point of user registration and during the setup of an account.
  • When a user engages with our services to utilize our analytical tools.
  • At the time of processing payments through Stripe for any service upgrades or purchases.
  • During integration with Meta Platforms APIs to access and process social platform data.

Consent

Consent is explicitly obtained when users agree to our privacy policy during the registration process. This consent can be withdrawn at any time by contacting us at [email protected], which will cease further processing but will not affect the lawfulness of processing based on consent before its withdrawal.

Recipients of the Data

Data is primarily processed internally by HiveHubAI. For payment processing, Stripe receives the necessary financial data. We guarantee that no data is shared with other third parties for marketing or any other purposes without user consent.

  • Service Providers: We share certain data with trusted Service Providers, such as Stripe for payment processing, who comply with Meta Platform Terms and adhere to high standards of data security.
  • Tech Providers: HiveHubAI may share data with Tech Providers who assist in providing analytics and insights. All Tech Providers comply with Meta's Platform Terms and Developer Policies.

Conservation Period

Personal data is stored for no longer than necessary to fulfill the specific purposes outlined in this policy:

  • General user data is retained for 180 days post-account deactivation, unless retained longer for legal, tax, or regulatory reasons.
  • Financial records, including transaction data and invoices, are kept for five years as per EU tax regulation requirements.
  • Certain essential data may be retained for up to ten years in compliance with legal obligations under EU law.
  • Platform data is retained for no longer than necessary to fulfill business purposes consistent with Meta Platform Terms.

Cookies

Cookies and similar tracking technologies are utilized to enhance site functionality and user experience:

  • Functional Cookies: Necessary for the basic functioning of the site.
  • Statistical Cookies: Employed to gather data on site usage and performance.
  • Marketing Cookies: Used to deliver targeted advertising; these require explicit consent from users.

APIs

We utilize official APIs from supported social networks, including Facebook and Instagram, to gather analytics data. This ensures that all data processing adheres to the privacy policies of the respective social networks and complies with GDPR. Users explicitly consent to processing their social platform data when registering for HiveHubAI services.

Users' Rights

Under the GDPR, users have extensive rights concerning their data:

  • Access, Rectify, Erase: You can request access to, correction of, or deletion of your personal data.
  • Restrict, Object: You may ask to restrict processing or object to processing of your personal data.
  • Portability: You have the right to receive your data in a structured, commonly used format.

Data Security

We employ state-of-the-art security measures including data encryption, secure data storage, and stringent access controls to protect against unauthorized access, alteration, or destruction of personal data.

  • Encryption: Data is encrypted using TLS 1.2 during transmission and AES-256 during storage.
  • Access Controls: Role-based permissions ensure that only authorized personnel have access to data.
  • Audits: Regular audits are conducted to ensure data security compliance.
  • Incident Reporting: In case of unauthorized access or data breach involving Meta platform data, HiveHubAI will notify Meta within 24 hours.

Service Providers

We use trusted Service Providers to help operate our services:

  • Service Providers: Service Providers, like Stripe for payment processing, are contracted to process data solely on our behalf and adhere to Meta Platform Terms.

Compliance and Monitoring

HiveHubAI is committed to maintaining compliance with Meta’s Platform Terms and Developer Policies. Regular internal audits are conducted to ensure compliance.

  • Audits: We may undergo external audits to verify compliance with Meta's terms.
  • Certifications: We regularly certify compliance with Meta's platform requirements.

Applicable Law

This policy is governed by the laws of the European Union, specifically the GDPR. All data processing is confined within the EU, and there are no international transfers of user data. For data transfers involving the UK and the EEA, we comply with Meta's standard contractual clauses and approved addenda.

Data Security

We employ state-of-the-art security measures including data encryption, secure data storage, and stringent access controls to protect against unauthorized access, alteration, or destruction of personal data.

Meta Platform Data Processing

HiveHubAI accesses and processes data from Meta Platforms, such as Facebook and Instagram, to provide social media analytics and insights. This includes:

  • User tokens for authentication and personalized analytics.
  • Page tokens to retrieve page insights and engagement metrics.
  • Access tokens for app functionality and enhanced insights.

Users explicitly consent to this data processing when registering for HiveHubAI services and can revoke access at any time through their social media platform settings.

Incident Reporting

In the event of any unauthorized access, data breach, or incident involving Meta platform data, HiveHubAI will notify Meta within 24 hours and promptly begin remediation efforts. If you believe your data has been compromised, please contact us immediately at [email protected].

Compliance Review and Audits

HiveHubAI may undergo compliance reviews or audits by Meta or third-party auditors to verify adherence to Meta's Platform Terms. We commit to fully cooperating with these reviews and providing accurate information about our data processing activities.

  • We will promptly address any non-compliance issues found during audits.
  • Certifications may be required to confirm compliance with Meta's platform requirements.

Contact Us

If you have any questions about our Privacy Policy, or if you would like to request data modification or deletion, please contact us at [email protected].