Privacy Policy

Last updated: 7/3/2025

Privacy Policy

Last updated: 7/3/2025

1. Introduction

At HOOOK ("we," "our," or "us"), we are committed to protecting your privacy and maintaining the confidentiality of your personal information. This Privacy Policy describes how we collect, use, disclose, store, and protect your information when you use our AI-powered marketing automation platform and related services (collectively, the "Service").

By using our Service, you consent to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information You Provide

We collect personal information that you voluntarily provide to us, including:

Account Information:

  • Full name, email address, phone number
  • Company name, job title, business address
  • Username, password, and account preferences
  • Billing information including credit card details and billing address
  • Profile information and communication preferences

Service Usage Information:

  • Marketing campaign data and customer lists you upload
  • Content you create using our platform
  • Customer interaction data and analytics
  • Integration data from connected third-party services
  • Support tickets and correspondence with our team

Communication Data:

  • Survey responses and feedback
  • Information from webinars, events, or promotional activities
  • Correspondence through email, chat, or phone
  • Newsletter subscriptions and marketing preferences

2.2 Information Automatically Collected

We automatically collect certain information when you use our Service:

Technical Information:

  • IP address, browser type and version, operating system
  • Device identifiers, hardware model, and device characteristics
  • Network connection information and mobile carrier details
  • Time zone settings and location data (where permitted)

Usage Analytics:

  • Pages visited, features used, and time spent on our platform
  • Click-through rates, conversion metrics, and user engagement data
  • Error logs, performance data, and diagnostic information
  • Search queries and navigation patterns within our Service

Cookies and Tracking Data:

  • Session cookies, persistent cookies, and local storage data
  • Web beacons, pixel tags, and similar tracking technologies
  • Third-party analytics and advertising cookies (with your consent)

2.3 Information from Third Parties

We may receive information about you from:

  • Social media platforms when you connect your accounts
  • Business partners and integration platforms
  • Public databases and data enrichment services
  • Marketing partners and referral sources
  • Background check services (for employment purposes)

3. How We Use Your Information

3.1 Service Provision and Operations

  • Providing, operating, and maintaining our AI-powered marketing platform
  • Processing transactions and managing your account
  • Delivering customer support and technical assistance
  • Enabling platform integrations and data synchronization
  • Facilitating collaboration features and team management

3.2 Service Improvement and Development

  • Analyzing usage patterns to improve platform functionality
  • Developing new features and services
  • Conducting research and analytics to enhance user experience
  • Training and improving our AI algorithms and models
  • Performing quality assurance and testing

3.3 Communication and Marketing

  • Sending service-related notifications and updates
  • Providing customer support and responding to inquiries
  • Delivering marketing communications and promotional materials
  • Conducting surveys and gathering feedback
  • Organizing webinars, events, and educational content

3.4 Legal and Security Purposes

  • Complying with legal obligations and regulatory requirements
  • Protecting against fraud, unauthorized access, and security threats
  • Enforcing our Terms of Service and other agreements
  • Investigating and preventing violations of our policies
  • Responding to legal requests and court orders

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data based on:

  • Contract Performance: Processing necessary to provide our Service
  • Legitimate Interests: Improving our Service, marketing, and security
  • Legal Compliance: Meeting regulatory and legal obligations
  • Consent: Where you have given explicit consent (withdrawable at any time)

5. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers and Partners

  • Cloud hosting and infrastructure providers
  • Payment processors and financial institutions
  • Customer support and communication platforms
  • Analytics and marketing service providers
  • Security and fraud prevention services

5.2 Business Transfers

  • In connection with mergers, acquisitions, or sale of assets
  • During due diligence processes
  • In bankruptcy or similar proceedings

5.3 Legal Requirements

  • To comply with applicable laws, regulations, or legal processes
  • To respond to government requests and court orders
  • To protect our rights, property, and safety
  • To investigate potential violations of our terms

5.4 With Your Consent

  • When you explicitly authorize us to share your information
  • For specific purposes you have agreed to
  • Through platform integrations you enable

6. Data Security and Protection

We implement comprehensive security measures to protect your information:

6.1 Technical Safeguards

  • Industry-standard encryption for data in transit and at rest
  • Multi-factor authentication and access controls
  • Regular security assessments and penetration testing
  • Secure development practices and code reviews
  • Network security monitoring and intrusion detection

6.2 Organizational Measures

  • Employee training on data protection and privacy
  • Strict access controls and need-to-know principles
  • Data processing agreements with third-party vendors
  • Incident response procedures and breach notification protocols
  • Regular privacy impact assessments

While we strive to protect your information, no security system is impenetrable. We cannot guarantee absolute security of your data transmitted over the internet.

7. Data Retention and Deletion

7.1 Retention Periods

We retain your information for as long as necessary to:

  • Provide our Service and fulfill contractual obligations
  • Comply with legal, regulatory, and tax requirements
  • Resolve disputes and enforce our agreements
  • Maintain business records and analytics

7.2 Specific Retention Periods

  • Account Data: Retained while your account is active and for 7 years after closure
  • Usage Data: Typically retained for 3-5 years for analytics purposes
  • Marketing Data: Retained until you opt-out or for 7 years, whichever is sooner
  • Support Data: Retained for 5 years after case resolution

7.3 Data Deletion

Upon request or when retention is no longer necessary, we will:

  • Delete personal information from our active systems
  • Anonymize data used for analytics and research
  • Ensure third-party vendors also delete your information
  • Provide confirmation of deletion when legally permissible

8. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

8.1 Access and Portability

  • Request access to your personal information
  • Obtain a copy of your data in a portable format
  • Receive information about how your data is processed

8.2 Correction and Updates

  • Correct inaccurate or incomplete information
  • Update your account and profile information
  • Modify communication preferences

8.3 Deletion and Restriction

  • Request deletion of your personal information
  • Restrict or limit certain types of processing
  • Object to processing based on legitimate interests

8.4 Consent Management

  • Withdraw consent for specific processing activities
  • Opt-out of marketing communications
  • Manage cookie and tracking preferences

To exercise these rights, contact us at privacy@hoook.io. We will respond within the timeframes required by applicable law.

9. International Data Transfers

Our Service operates globally, and your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards through:

  • Standard Contractual Clauses: EU-approved contract terms for data transfers
  • Adequacy Decisions: Transfers to countries with adequate protection levels
  • Binding Corporate Rules: Internal policies ensuring consistent protection
  • Certification Programs: Participation in recognized privacy frameworks

10. Cookies and Tracking Technologies

10.1 Types of Cookies We Use

  • Essential Cookies: Required for basic platform functionality
  • Performance Cookies: Help us understand how you use our Service
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Used for advertising and promotional purposes

10.2 Cookie Management

You can control cookies through:

  • Browser settings and preferences
  • Our cookie consent management platform
  • Third-party opt-out tools and mechanisms
  • Industry self-regulatory programs

10.3 Do Not Track

We currently do not respond to Do Not Track signals, but we provide other ways to control tracking and data collection.

11. Third-Party Services and Links

Our Service may integrate with or link to third-party websites, applications, and services. This Privacy Policy does not apply to these third parties. We encourage you to review their privacy policies and terms of service.

11.1 Common Third-Party Integrations

  • CRM systems (Salesforce, HubSpot, etc.)
  • Email marketing platforms
  • Social media networks
  • Analytics and tracking services
  • Payment processors

11.2 Data Sharing with Integrations

When you connect third-party services, you authorize us to:

  • Access and sync relevant data between platforms
  • Share necessary information to enable functionality
  • Maintain data consistency across connected services

12. Children's Privacy

Our Service is not intended for children under 16 years of age (or 13 in the United States). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information promptly.

Parents or guardians who believe their child has provided us with personal information should contact us immediately.

13. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

13.1 Right to Know

  • Categories and specific pieces of personal information collected
  • Sources of personal information
  • Business purposes for collection and sharing
  • Categories of third parties with whom information is shared

13.2 Right to Delete

Request deletion of personal information, subject to certain exceptions

13.3 Right to Opt-Out

Opt-out of the "sale" of personal information (we do not sell personal information)

13.4 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights

13.5 Authorized Agents

You may designate an authorized agent to make requests on your behalf

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will:

  • Post the updated policy on our website
  • Update the "Last Updated" date
  • Notify you of material changes via email or platform notification
  • Provide a 30-day notice period for significant changes
  • Maintain previous versions for reference

Your continued use of our Service after changes become effective constitutes acceptance of the updated policy.

15. Data Protection Officer and Contact Information

15.1 Primary Contact

For privacy-related questions, concerns, or requests:

  • Email: privacy@hoook.io
  • Response Time: Within 5 business days for initial response

15.2 Data Protection Officer

If you are in the EU/EEA, you may contact our Data Protection Officer:

15.3 Supervisory Authority

EU/EEA residents have the right to lodge complaints with their local supervisory authority if they believe their privacy rights have been violated.

16. Definitions and Interpretations

  • Personal Information/Data: Information that identifies, relates to, or could reasonably be linked to you as an individual.
  • Processing: Any operation performed on personal data, including collection, storage, use, disclosure, and deletion.
  • Service: HOOOK's AI-powered marketing automation platform and related services.
  • Third Party: Any individual or entity other than you or HOOOK.

This Privacy Policy represents our commitment to protecting your privacy. If you have questions or concerns, please don't hesitate to contact us.