HirallHirall

Privacy Policy

Last updated: November 7, 2025

1. Introduction

HIRALL ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Backend-as-a-Service platform.

By using HIRALL, you consent to the data practices described in this policy.

2. Information We Collect

Account Information:

  • Email address
  • Name and organization details
  • Password (encrypted)
  • Billing and payment information

Usage Data:

  • API requests and response logs
  • Database queries and performance metrics
  • Storage usage and file metadata
  • Error logs and debugging information
  • IP addresses and device information

Customer Data:

Data you store in your HIRALL projects (database, storage, functions) belongs to you. We process this data solely to provide the Service and do not use it for any other purpose.

3. How We Use Your Information

We use collected information for:

  • Service Provision: To provide, maintain, and improve HIRALL services
  • Account Management: To manage your account and provide customer support
  • Communication: To send service announcements, updates, and marketing (with consent)
  • Security: To detect, prevent, and address fraud, abuse, and security issues
  • Analytics: To understand usage patterns and improve our platform
  • Compliance: To comply with legal obligations and enforce our Terms

4. Data Storage and Security

Encryption: All data is encrypted in transit (TLS) and at rest (AES-256).

Infrastructure: We use industry-leading cloud providers with SOC 2 Type II compliance.

Multi-Tenant Isolation: Each project operates in an isolated database schema, ensuring your data cannot be accessed by other users.

Access Controls: We implement role-based access control and principle of least privilege.

Backups: Automated backups are performed daily and retained for 30 days.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

  • Service Providers: Third parties who provide services on our behalf (hosting, payment processing, analytics)
  • Legal Requirements: When required by law, subpoena, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize us to share your data

6. Data Retention

Account Data: Retained for as long as your account is active plus 30 days after deletion.

Usage Logs: Retained for 90 days for operational and security purposes.

Billing Records: Retained for 7 years to comply with tax and accounting regulations.

7. Your Rights (GDPR & CCPA)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Object: Object to processing of your personal data
  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@hirall.com

8. Cookies and Tracking

We use cookies and similar tracking technologies for:

  • Authentication and session management
  • Remembering your preferences
  • Analytics and performance monitoring
  • Security and fraud prevention

You can control cookies through your browser settings. Disabling cookies may affect functionality.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place through Standard Contractual Clauses approved by the European Commission.

10. Children's Privacy

HIRALL is not intended for users under 18. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or dashboard notification. Continued use after changes constitutes acceptance.

12. Contact Information

For privacy-related questions or to exercise your rights:

Email: privacy@hirall.com
Data Protection Officer: dpo@hirall.com