Privacy Policy

Privacy Policy

Protecting your privacy is important to us. This Privacy Policy (“Policy”) explains how Powertask, Inc. (“Hopfia”, “we”, “us”, or “our”) collects, uses, shares, and protects information, including Personal Information (as defined below), in connection with your use of our platforms, websites, products, services, and any AI-powered features or agents (collectively, the “Services”).


By accessing, registering for, or using the Services, you acknowledge that you have read, understood, and agree to this Policy.


IF YOU DO NOT AGREE WITH OUR POLICIES AND PRACTICES, DO NOT REQUEST, ACCESS, REGISTER WITH, OR USE THE SERVICES.


If you have any questions regarding this Privacy Policy or your rights, please contact us at privacy@hopfia.ai.

 

INFORMATION THAT WE COLLECT

We collect the following categories of information from you (collectively, “Personal Information”)—that is, information that identifies, relates to, describes, or could reasonably be associated with you as an individual or, in some cases, as a representative of an organization.


Please note that “Personal Information” may be known as personally identifiable information (“PII”) under US law, or personal data under European data protection laws. Throughout this Privacy Policy, we refer to all such data as “Personal Information,” except where otherwise required under local regulations.

We collect information in the following categories:


1. Account and Registration Information: 
When you create an Hopfia account (“User Account”), you provide information such as your name, password, email address, contact information, roles, and organization affiliation. We use this information to register and verify your account.


2. Payment and Transaction Information: 
When signing up for paid Services, you may provide your first name, last name, billing address, phone number, and tax-related identifiers. Payment card and related billing details are processed securely by approved third-party payment processors; you will enter these details directly with them, and Hopfia does not store your full payment card number.


3. Service and Technical Information: 
When you use the Service, we automatically collect:  

  • Information about your use (user history, logs, and Service activity data)  

  • Administrative and support correspondence  

  • Data necessary to monitor the Service for fraud, misuse, and security, as well as for legal compliance


4. AI Interaction and Content Data: 
When you use features powered by AI—including generating text, code, recommendations, conversing with AI agents, or uploading files—we may store:  

  • The prompts, queries, or requests you submit (including uploaded files, images, text, or media)  

  • AI-generated outputs, results, or suggestions  

  • Metadata (timestamps, feature usage details, session history) 
    These may contain personal or sensitive information, and are processed in accordance with this Privacy Policy.

Such data are used for maintaining and providing the normal operation of the Service, and are not used for any other purposes, such as model training.


5. Third-Party Integration and Credentials: 
If you connect third-party services (for example, integrating with your own applications or using external APIs), we collect the authentication credentials (“Access Credentials”) you provide, as well as related configuration data and interaction logs, for the purpose of providing and securing integrations.


6. Uploaded Files and Media: 
When you upload files, images, documents, audio, or other content through the Service, this content is collected as part of your account data, and may be processed as necessary to deliver or improve the Service or as required by law.


7. Cookies and Similar Technologies: 
We use cookies and similar technologies for essential functionality, performance/analytics, personalization, and advertising. Where required, we obtain consent and honor global privacy control signals (GPC). You can manage preferences through our cookie banner and settings. Our Cookie Policy discloses vendors, data collected, retention periods, and opt-out options, including “My Privacy Choices” for targeted advertising where applicable.


8. Children’s Data: 
We do not knowingly collect personal data from individuals under the age of 18. We apply an age threshold of 18 consistent with applicable law (e.g., 18 in all applicable jurisdictions). If we learn that personal data from anyone under 18 has been collected, we will promptly delete it and terminate the associated account.


9. Other Sources: 
We may also collect information about you from publicly available sources, marketing partners, or other parties as permitted by law—for example, to verify your identity or compliance status.


If you do not agree to this information collection, please do not use Hopfia Services.

 

INFORMATION PROCESSED ON BEHALF OF USERS (CUSTOMER DATA)

The Company may act either as a data controller or a data processor depending on the context of processing. For any data that Customers upload, input, generate, or otherwise process within their own environments, integrations, or applications (Customer Data), the Customer is the data controller and the Company acts solely as a data processor in accordance with the Customer’s documented instructions. For data that the Company independently collects and uses for its own purposes (e.g., website, account, billing, security logs, customer support, marketing, product analytics), the Company acts as a data controller and processes such data pursuant to the purposes, legal bases, retention, and disclosures set out in this Policy and applicable regional addenda.

Our Service allows users (including organizations and developers) to create, store, and process various types of information, including Personal Information, within their own environments, integrations, or applications. In such cases, you (as the user or customer) act as the primary “Data Controller” for any information you process or store using the Service, and Hopfia acts solely as a “Data Processor.”

Hopfia does not control, own, or determine the use, disclosure, or processing of Personal Information that you or other users input, upload, or process via the Services. The responsibility for complying with all applicable data protection laws—including the collection, legality, consent, accuracy, and onward sharing of such information—rests with the respective user (Controller).

Examples of information that may be processed through the Service (under your control) include:

  • Names, email addresses, billing addresses, photographs, and similar personal information  

  • Location, organization, and contact details  

  • Authentication and security credentials  

  • [When using OAuth integrations or external authentication/partnership services:]  

    • User IDs provided by OAuth service providers (e.g., Google, Microsoft etc.)  

    • Registered email addresses and usernames (nicknames/aliases) as provided through OAuth  

    • Authentication tokens or credentials issued by the OAuth service  

    • Payment-related information (payer’s name, billing address, payment details, relationship to the contract holder, etc.)  

  • Purchase, order, payment, and billing records    

  • Corporate, financial, and tax-related data  

  • Taxpayer IDs, etc.  

  • Cookie identifiers, social media profile IDs, and related links

This Privacy Policy does not apply to Personal Information processed or collected by you, your end users, or any third party through your use of the Service or through any third-party integrations or links accessible from the Service. If you wish to exercise your rights regarding such Personal Information (including access, correction, or deletion), please contact the relevant user or organization directly. Hopfia will cooperate as required by law to support any lawful requests from data subjects.

 

HOW WE USE THE INFORMATION WE COLLECT FROM YOU

Hopfia uses the Personal Information we collect for the following business, operational, and legal purposes:

  1. Service Delivery and Performance

  • To provide, operate, maintain, improve, and personalize the Hopfia Services for your use;

  • To enable creation, configuration, and management of user accounts and profiles;

  1. Communication and Support

  • To contact you with information about our products, services, events, updates, marketing or promotions (only where you have consented to such communications);

  • To respond to your questions, requests, and provide technical or customer support;

  1. Transaction Processing and Contract Fulfillment

  • To process payments, manage billing, subscriptions, and other contractual obligations with you;

  1. Service Announcements and Policy Updates

  • To notify you about changes to our Services, Terms, or Privacy Policy;

  1. Analytics, Personalization, and Service Improvement

  • To analyze usage patterns, performance metrics, and trends related to your use of the Services;

  • To monitor, audit, and improve the quality, functionality, usability, and security of our Services;

  • To personalize content, offerings, or recommendations, including AI-powered features; 

  1. Security, Fraud Defense, and Legal Compliance

  • To detect, prevent, and address fraud, misuse, illegal activity, security incidents, and violations of our Terms of Service or legal requirements;

  • To comply with applicable laws, regulations, and enforce our legal rights;

  1. AI-Powered Features and Content Generation

  • To provide AI-powered features, we may process prompts, uploaded files, conversation history, and AI-generated outputs strictly to deliver the requested functionality, ensure quality, and troubleshoot issues. We do not use your inputs or outputs to train or fine-tune large language models unless we obtain your explicit consent. Where we integrate with external AI APIs, we configure or contractually require those providers not to use your data for model training or improvement.

  1. Third-Party Integrations and Access

  • To facilitate connections, authentication, and secure data exchange with your applications or Third-Party Services you’ve chosen to integrate with Hopfia (e.g., by collecting and managing Access Credentials, and transmitting or receiving data between integrated tools, as required to provide the Service);

  1. Record Keeping and Audit

  • To maintain records of communications, support interactions, and Service usage for dispute resolution, audit, compliance, and security purposes;

  1. Aggregation and De-identification

  • To generate aggregated, anonymized, or de-identified data for research, analytics, and improving our products and services; such data cannot reasonably identify you.

If we intend to use your Personal Information for any purpose not described above, we will seek your consent in advance (where required by law).

 

SHARING OF PERSONAL DATA WITH THIRD PARTIES

Hopfia does not sell, rent, or otherwise make your Personal Information available to third parties for marketing, advertising, or commercial purposes.

We share your Personal Information only in the following situations, to the minimum extent necessary, and with appropriate security and contractual safeguards:

  1. Service Providers and Subprocessors: 
    We may share Personal Information with carefully selected third-party service providers (such as cloud hosting, technical support, payment processors, security, or analytics providers) solely for the purpose of operating, maintaining, supporting, or securing the Service on our behalf. All such service providers are contractually required to protect your data, use it only for the specified purpose, and comply with applicable privacy and security laws. We engage carefully vetted subprocessors to operate, secure, and support the Services. Each subprocessor is bound by written terms limiting processing to the documented purpose, mandating confidentiality, security, deletion/return, and restricting onward transfers. We publish a current list of subprocessors, including purpose, location, and transfer mechanism (e.g., SCCs), and provide reasonable prior notice of material changes. In the event of corporate reorganization (e.g., merger, acquisition, asset transfer), we will provide notice regarding any resulting data transfers and your applicable choices.


  1. External AI API Providers: 
    When you use features of the Service that integrate with external AI APIs (including but not limited to OpenAI, Google Gemini, Anthropic Claude), your input and relevant data (such as prompts, uploads, files, and conversational content) may be transmitted, only as necessary, to those providers in order to deliver the requested AI-powered functionality.  To provide AI-powered features, we may process prompts, uploaded files, conversation history, and AI-generated outputs strictly to deliver the requested functionality, ensure quality, and troubleshoot issues. We do not use your inputs or outputs to train or fine-tune large language models unless we obtain your explicit consent. Where we integrate with external AI APIs, we configure or contractually require those providers not to use your data for model training or improvement.
    We have configured these integrations so that your data is not stored or used by these API providers for model training or improvement. See each provider’s specific privacy policy for further details.  



  1. At Your Direction and With Your Consent: 
    We may share your Personal Information with third parties if you request, authorize, or consent to such sharing (for example, by enabling integrations, plugins, or connections with third-party applications). In each case, the data will be shared only for the specified purpose and subject to your control.


  1. For Legal or Regulatory Reasons: 
    We may disclose Personal Information if required to do so by law, court order, valid government request, or to:  


  • Enforce or comply with applicable laws and regulations;  

  • Respond to lawful requests from law enforcement, regulatory authorities, or courts;  

  • Detect, address, or prevent fraud, security breaches, or technical issues;  

  • Protect the rights, property, safety, or security of Hopfia, our users, or the public, as permitted or required by law.


  1. Customer Support and Service Improvement: 
    Authorized Hopfia personnel and trusted support partners may access your Personal Information as needed to troubleshoot technical issues, resolve your requests for assistance, perform analytics, and improve the Services. Such access is strictly controlled and monitored.


  1. Business Transfers: 
    In connection with any merger, acquisition, restructuring, or sale of assets, your Personal Information may be transferred to a successor organization, subject at all times to this Privacy Policy and the same or greater level of data protection.


We will never sell your Personal Information to anyone. We do not use your data in AI model training or improvement, and we require third-party AI providers we integrate with to apply the same controls wherever possible. Whenever we share information with third parties, we take all reasonable steps to ensure data minimization, security, and compliance with applicable laws and your rights.

 

THIRD-PARTY COLLECTING DATA ON BEHALF OF US

We partner with trusted third-party payment gateway providers—including but not limited to Toss Payments and Paddle—to process your payments securely. When you make a payment, your credit card information and relevant billing details are collected directly by the payment processor (such as Toss Payments for KR-based payments, or Paddle for global payments), and not by Hopfia.

Hopfia does not store or have direct access to your full credit card number or CVV/CVC information at any time.


All payment gateway providers we partner with are required to comply with strict industry security standards and to use your information solely for processing payment transactions and necessary security checks. We encourage you to review the privacy policy of the payment service you choose, such as:

If you wish to know which provider is being used for your particular payment, or if you have any questions about the handling of your payment information, please contact us at privacy@hopfia.ai.


Our payment gateway providers are required to comply with strict industry security standards (such as PCI DSS) and to use your information solely for processing payment transactions and related anti-fraud security checks.

Please note:

  • When entering your payment information, you are interacting directly with the payment gateway, and their own privacy policy and security practices apply.

  • We encourage you to review the privacy policy of the payment provider before submitting any sensitive payment information.

  • Hopfia remains available at  privacy@hopfia.ai to provide the name and contact information of our current payment gateway provider on request.

If you have questions about how your payment information is handled, or wish to exercise your data privacy rights regarding payment data, please contact the payment gateway provider directly.

 

AI-Generated Content

  • Any outputs, content, or materials generated by the Hopfia AI Agent (“AI Outputs”) are provided “as is” for your internal or personal use.

  • Unless otherwise expressly agreed in writing, Hopfia does not claim ownership over your prompts or any AI Outputs generated for you.

  • You may use, reproduce, modify, or distribute AI Outputs for any lawful purpose, including commercial use, subject to the following limitations:

    • Hopfia does not guarantee that AI Outputs will be unique, accurate, or free of third-party claims (such as copyright or trademark).

    • Users are solely responsible for ensuring any use of AI Outputs complies with applicable laws and does not infringe third-party rights.

    • Hopfia may, for service improvement and legal compliance, retain or analyze prompts/outputs, subject to our Privacy Policy.

    • By using the Services, you grant Hopfia a non-exclusive license to use your prompts and AI Outputs solely for internal purposes such as product improvement, research, and quality assurance, excluding use for retraining or fine-tuning of large language models (LLMs) unless you provide explicit consent.
      Hopfia may analyze prompts and outputs to monitor service quality, enhance user experience, and develop new features, but will not incorporate your data into model training pipelines without your further permission. Where available, you may opt out of such internal usage by contacting us or through your Account Settings.

 

TRANSFER OF DATA

Your Personal Information and other data related to your use of the Hopfia Services may be transferred to, processed, and stored on servers located outside your home country.

Specifically, we use reliable, widely recognized cloud service providers—including Amazon Web Services (“AWS”) and Google Cloud Platform—to host and store our databases and files. Hopfia has configured these services such that all production data is stored exclusively in certified data centers located in South Korea (Seoul) and Japan (Tokyo).

If you are accessing our Services from outside of South Korea or Japan, please be aware that your information will be transferred to, processed, and stored in these countries. This transfer is required to fulfill our contractual obligations to you and to operate, maintain, and secure the Hopfia Services.

We ensure that all data transfers and storage are conducted in accordance with applicable data protection laws. Hopfia maintains strict security controls, and our cloud providers are certified under internationally recognized standards (such as ISO 27001, SOC 2, and, where relevant, Korean ISMS-P, and APPI for Japan).

Where personal data is transferred to countries outside your jurisdiction, including our production data centers (e.g., South Korea and Japan), we implement appropriate transfer mechanisms as required by law, such as adequacy decisions, the EU Standard Contractual Clauses (June 4, 2021), and, where applicable, GDPR Article 49 derogations. We conduct transfer impact assessments and apply supplementary measures (e.g., encryption, access controls). We publish a summary table of transfer mechanisms per recipient/vendor upon request or via our site. 


YOUR CHOICE

You have the choice to decide whether to provide your Personal Information to Hopfia. However, please note that certain features or services may be unavailable if you do not provide required information.


Our Commitment to Security 
We maintain risk-based technical and organizational measures, including encryption in transit and at rest, network segregation and firewalls, access control based on least privilege, regular vulnerability scanning and independent testing, and employee security training. In the event of a personal data breach, we will assess and notify affected parties and regulators in accordance with applicable laws (e.g., GDPR within 72 hours where required).


The Personal Information you provide is protected using industry-standard physical, technical, and administrative safeguards.  

  • Hopfia's databases and files are stored on secure servers protected by advanced firewalls and encryption.

  • Access to Personal Information is strictly limited to authorized personnel, following the “least privilege” and “need to know” principles.

  • We conduct regular audits, vulnerability scans, and security assessments of our systems and infrastructure.


Your Role in Security 
As a user of Hopfia Services, you are also responsible for the safe handling of your account information and credentials.  

  • Please do not share your username, password, or authentication information with anyone.

  • You are fully responsible for any activity carried out under your account, including cases where others gain access due to your negligence.

  • We strongly recommend using strong passwords, enabling multi-factor authentication (if available), and regularly reviewing your account activity.


Transmission Risks & Disclaimer 
While we deploy robust security measures, no method of data transmission or storage over the Internet can be fully guaranteed to be secure.  

  • Transmission of your data to and from our Services is done at your own risk.

  • Hopfia cannot be held responsible for any circumvention of privacy settings or security measures by you or by third parties acting independently.  

  • In the event of a data breach, we will notify affected users as required by applicable law and take immediate remediation actions.

By using Hopfia Services, you acknowledge and accept these limitations, and agree to follow best practices for protecting your information.

 

YOUR RIGHT
You have choices and rights relating to your Personal Information, including the right to access, correct, update, restrict, or delete information as set forth below:


  1. Access and Correction:  

    • You may access, correct, or update your Personal Information at any time through your user account settings.  

    • If you are unable to do so, or need assistance, please contact us at  privacy@hopfia.ai

  1. Request for Deletion:  


  • You have the right to request deletion of your account and associated Personal Information at any time by contacting our support team.
    Alternatively, if you log in to the Hopfia platform and delete your account through the account settings , your Personal Information and related account data will be deleted immediately from our systems, except as necessary to comply with legal obligations.

  • Upon receiving a valid request, Hopfia will delete your account and Personal Information except where retention is required by law (e.g. for tax, contractual, accounting, fraud prevention, or legal dispute reasons).

  • Once your User Account is deleted, you must create a new account to use Hopfia Services again.

  1. Retention Policy:  


  • We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, to perform a contract, or to comply with legal obligations. 

  • We maintain and publish a retention schedule by data category (e.g., account, billing, security logs, AI inputs/outputs). Inactive accounts may be disabled and deleted after prior notice. Backup data is isolated and deleted on a rolling schedule. When data is no longer needed, we delete it.

  1. Automatic Deletion for Inactive Accounts:  


  • If you do not use your Hopfia account for a continuous period of 12 months, we may treat your account as inactive and delete your User Account along with its Personal Information.

  • After deletion for inactivity, you will need to sign up as a new user to access the Service.

  1. Opt-Out from Communications:  


  • You may opt-out of marketing communications at any time by following the unsubscribe instructions included in the email, or by contacting support.

  1. Residents of EEA/UK (GDPR): 
    If you are located in the European Economic Area, United Kingdom, or Switzerland, you may have the following additional rights under the General Data Protection Regulation (GDPR) and applicable data protection laws:  


  • The right to withdraw consent  

  • The right to data portability (to receive an electronic copy of your data)  

  • The right to object to processing or restrict certain uses  

  • The right to lodge complaints with a Data Protection Authority (DPA) 
    If you wish to exercise these rights, please contact us at privacy@hopfia.ai.

  1. Access Assistance:  


  • If you need support accessing your Personal Information, please contact us at privacy@hopfia.ai.

 

 

CHOICES FOR EU, UK, AND EEA RESIDENTS
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you are entitled to the following rights under the General Data Protection Regulation (GDPR) and similar laws:


1. Right to Withdraw Consent

  • At any time, you may withdraw your consent for any processing of Personal Data where such consent was required. This includes withdrawing consent for marketing or data sharing.

  • To withdraw consent, you may change your account settings (where available), or contact us at  privacy@hopfia.ai

  • Upon withdrawal, we will cease processing your Personal Data for those purposes, except where we have another legal basis (contract, law, etc.).

2. Right to Be Forgotten (Erasure)

  • You may delete your Personal Data at any time by logging into your Hopfia account and using the “Delete Account” feature.  Your data will be deleted from our active systems immediately, except as required by law.

  • Alternatively, you can request erasure by contacting  privacy@hopfia.ai. For your protection, we will confirm your identity before processing the deletion request.

  • Please note:  

    • Certain data may be retained as necessary to comply with legal or regulatory obligations, defend legal claims, prevent fraud, or fulfill contractual duties.

    • Where possible, such retained data will be de-identified or anonymized.

3. Right to Data Portability

  • You may request a copy of your Personal Data (in a structured, commonly used, machine-readable format) or ask us to transfer it to another service provider.

  • To exercise this right, please email privacy@hopfia.ai and specify the recipient provider. We will fulfill data transfer requests as required by applicable law upon verification of your identity and coordination with the new provider.

4. Other Rights

  • Right to Access: You may request access to the Personal Data we hold about you.

  • Right to Rectification: You may request corrections to your Personal Data.

  • Right to Restrict or Object: You may ask us to restrict or stop certain processing activities.

  • Right to Lodge a Complaint: You may complain to your local Data Protection Authority (DPA) if you believe Hopfia is not complying with your legal rights.

For all requests regarding your rights, please contact us at privacy@hopfia.ai. We will respond within the timeframes set by law, and provide further explanation of any statutory limitations or exceptions as needed.

Please note:  

  • Deleting your Personal Data will result in loss of access to Hopfia Services.  

  • Some information may be retained as described above, limited to necessary legal, contractual, or security obligations.

 

 

CALIFORNIA PRIVACY RIGHTS

Under the California Consumer Privacy Act (“CCPA”) (as amended by the California Privacy Rights Act “CPRA”), California residents (“Consumers”) have specific rights regarding their Personal Information.


No Sale of Personal Information

  • Hopfia does not “sell” Personal Information as that term is defined under the CCPA/CPRA.

  • We do not disclose your Personal Information to third parties for monetary or other valuable consideration for their own commercial purposes.


Your Rights as a California Resident

Subject to certain exceptions and legal obligations, you may exercise the following rights with respect to your Personal Information:

  1. Right to Know

    • You may request information about (a) the categories and specific pieces of Personal Information we collect, (b) the categories of sources from which the Personal Information is collected, (c) the business or commercial purpose for collecting or sharing Personal Information, and (d) the categories of third parties with whom we share Personal Information.

  1. Right to Delete


  • You may request the deletion of your Personal Information, subject to certain exceptions (such as compliance with law or completion of transactions).

  1. Right to Opt-Out of Sale or Sharing (if applicable)


  • We do not sell Personal Information as defined by CCPA/CPRA. If you wish to exercise your rights regardless, please contact privacy@hopfia.ai.

  1. Right to Non-Discrimination


  • You have the right to be free from discrimination for exercising any of your privacy rights under CCPA/CPRA, including denial of goods/services, different prices, or quality of service.

  1. Right to Correct


  • You may request correction of inaccurate Personal Information we maintain about you.


How to Exercise Your Rights

  • You may be able to access, correct, or delete certain Personal Information directly through your account setting or profile.

  • Alternatively, California residents may exercise their rights by contacting us at privacy@hopfia.ai.

  • We may need to verify your identity and/or authority to make such a request (including, for example, verifying login credentials or requesting additional information).


Authorized Agents

  • You may designate an “authorized agent” to act on your behalf for the purposes of submitting requests.  Agents must provide written authorization and, in some cases, you may be required to independently verify your identity.


Verification

  • For security, we will verify your identity before responding to requests to know or delete.  

  • If we cannot verify your identity or authority, we will not fulfill the request.


Data Retention and Exceptions

  • We may retain Personal Information as permitted by law, including to complete transactions, detect security incidents, comply with legal obligations, and protect against fraudulent or illegal activity.

If you have questions or would like to exercise any of your rights, please contact privacy@hopfia.ai. For more information on our privacy practices, please refer to this Privacy Policy.

 

CHILDREN

Hopfia does not knowingly collect, solicit, or process Personal Data from children under the age of 18. 
Our Services are not directed to, and are not intended for use by, children under 18.

  • If you are under 18 years of age, please do not submit any Personal Data through the Services.  

  • We strongly encourage parents and legal guardians to supervise their children's Internet activity and to help enforce this Privacy Policy by instructing their children never to provide Personal Data on our Services.

If you have reason to believe that a child under 18 has provided Personal Data to Hopfia, please contact us immediately at privacy@hopfia.ai
Upon receiving such notice, Hopfia will take prompt steps to delete the information and terminate the related account as required by applicable law (such as GDPR, COPPA, and other relevant regulations).

Hopfia does not intentionally target or market to users under the age of 18. 
We take our obligations to protect children’s privacy very seriously and will always act swiftly to comply with all applicable child data protection laws.

 

‍LINKS TO OTHER WEBSITES

This Privacy Policy applies only to the Services operated by Hopfia. Our Services may include links or references to third-party websites or services (“Third-Party Sites”) that are not operated or controlled by Hopfia.

  • Please note that our Privacy Policy does not apply to these Third-Party Sites.

  • The presence of a link on our Services does not imply any endorsement, affiliation, or review of those sites by Hopfia.

  • Third-Party Sites may collect personal data from you, place or read their own cookies or tracking files, and follow their own privacy practices, which may differ from ours.

  • We do not control and are not responsible for the content, privacy policies, or practices of any Third-Party Sites.

We strongly encourage you to carefully review the privacy policies and terms of use of any third-party website you visit before providing any Personal Data to them.
Your use of such sites and submission of your information is governed solely by their policies, not those of Hopfia.

SECURITY

We take the protection of your Personal Data seriously and employ a range of organizational, technical, and administrative safeguards to help protect information entrusted to us.

Technical Measures:  

  • All Personal Data transmitted to and from our Services is protected using strong encryption standards (such as TLS/SSL for data in transit).

  • Data at rest (stored data) is encrypted using industry-standard algorithms.

  • We restrict access to Personal Data through authentication mechanisms, role-based access controls (“least privilege”), and regular access reviews.

  • Firewalls, intrusion detection systems, and network segmentation further secure our infrastructure.

  • Data, logins, and metadata are monitored for abnormal activity and protected against unauthorized access or leakage.

Organizational & Administrative Measures:  

  • Only trained and authorized personnel may access Personal Data, and only when required for their job duties.

  • Employees undergo regular security and privacy training, and sign confidentiality agreements.

  • We conduct regular security assessments, penetration testing, and vulnerability scans—both internally and with relevant third-party auditors.

  • Security incidents are handled through well-defined response protocols, with affected customers notified where required by law.

Operational Practices:  

  • We continuously monitor systems for threats and update our defenses in response to the evolving risk landscape.

  • Our security controls are reviewed and improved on an ongoing basis.

  • Hopfia strives to comply with recognized security standards such as ISO 27001, SOC 2, and, where applicable, ISMS-P.

Despite our robust security measures, no system is completely immune to risks. We encourage users to follow security best practices—such as using strong passwords and protecting login credentials—to further secure your accounts.

If you suspect any unauthorized access to your account or data, please contact us immediately at privacy@hopfia.ai.

 

CHANGES TO OUR PRIVACY POLICY

Hopfia may update, revise, or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or as our Services evolve.
If we make material changes to this Policy, we will notify you by email, through a prominent notice on our website, or by other reasonable means at least 15 days before the changes take effect (unless a shorter period is required by law).

The updated Privacy Policy will be posted on this page with a new “Last Updated” date at the top of the Policy.
Where required by law, your continued use of our Services following such changes will constitute your acceptance of the updated Policy.

You are encouraged to review this Policy periodically to stay informed about how we protect your information.

We also reserve the right to change, suspend, or discontinue any aspect of the Hopfia Services at any time, with or without notice and without liability, except to the extent required by law.

If you have questions about changes to our Privacy Policy or their impact on your rights, please contact us at privacy@hopfia.ai.‍


CONTACTING US

If you wish to review, update, correct, or delete your Personal Data, or if you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

privacy@hopfia.ai

We will take reasonable steps to process your request as promptly as possible, and to ensure that your Personal Data is accurate, current, and complete to the best of our ability.

For your security, we may require verification of your identity before fulfilling certain requests (such as deletion or access to sensitive data).

You may also use this contact email to:

  • Request more details about our privacy practices

  • Exercise your rights under data protection laws (e.g., access, correction, deletion, portability, consent withdrawal)

  • Report suspected unauthorized access or data breaches

  • Provide feedback or raise any concerns regarding how we handle your Personal Information

We value your trust and will respond as quickly as we reasonably can, in accordance with applicable data protection laws.