Privacy Policy

Last Updated: April 2, 2026

Overview

HiveIQ ("we," "our," "us") is a Chrome browser extension that helps professionals maintain meaningful relationships through timely, relevant connection suggestions. This privacy policy explains what data we collect, how we use it, and how we protect it.

By installing and using HiveIQ, you agree to the practices described in this policy.

What Data We Collect

Account Data: When you sign in with Google, we receive your name and email address to create your account. We do not collect your Google password.

Contact Data: HiveIQ maintains a contact list on your behalf. Contacts may be added manually, via CSV upload, or automatically detected from your Gmail and Google Calendar activity. Contact information includes names, email addresses, phone numbers, company, title, and LinkedIn profile URLs.

Email Metadata: With your permission, HiveIQ reads email metadata from Gmail, including sender and recipient names and email addresses, subject lines, and dates. We do not read the body of your emails.

Calendar Data: With your permission, HiveIQ reads calendar event titles, dates, and attendee information. We do not read event descriptions or meeting notes.

LinkedIn Data: When you choose to save a LinkedIn profile to HiveIQ, we capture the profile URL, displayed name, and job title.

Professional Context Data: We may use third-party data providers (such as Apollo.io) to supplement contact records with publicly available professional information such as job title, company, and company website URL.

What We Do Not Collect

We do not collect email body content, attachments, calendar event descriptions, browsing history, or financial information. We do not read or store the content of your messages.

How We Use Your Data

We use your data solely to provide HiveIQ's core functionality:

Identifying and organizing your professional contacts. Generating relevant suggestions for when and how to reconnect. Improving the timing and relevance of suggestions based on your activity.

AI Processing: To generate personalized connection suggestions, HiveIQ transmits contact metadata (names, job titles, company names, interaction history, and email metadata such as sender names, recipient names, subject lines, and dates) to Anthropic's Claude API, a third-party AI service. No email body content is transmitted. Anthropic processes this data according to their privacy policy and does not retain it beyond the API request. We do not transmit email body content, attachments, or calendar event descriptions to any third party.

We do not use your data for advertising. We do not sell your data. We do not share your personal data with other users.

Third-Party Sub-Processors

HiveIQ uses the following third-party services to provide its functionality:

Supabase: Secure cloud database for storing your account data, contacts, and interaction history. Data is encrypted in transit and protected by row-level security. Anthropic (Claude API): AI processing for generating personalized connection suggestions. Receives contact metadata only. Does not retain data beyond the API request. Apollo.io: Professional data enrichment. Used to supplement contact records with publicly available professional information such as job title and company.

Stripe, Inc.: Payment processing for subscriptions. Collects payment information directly. HiveIQ does not store full card numbers. Stripe is PCI-DSS Level 1 certified.

All sub-processors are contractually required to protect your data and process it only as necessary to provide their services.

Payment Processing

HiveIQ uses Stripe, Inc. as our payment processor. When you subscribe to HiveIQ, Stripe collects your payment information (credit or debit card number, billing address, and name) directly on their secure checkout page. HiveIQ does not receive, process, or store your full card number.

Information shared with Stripe includes your name, email address, billing address, and subscription plan selection. Stripe processes this information in accordance with their privacy policy (https://stripe.com/privacy).

Stripe may also collect device and browser information for fraud prevention purposes.

We receive from Stripe: your name, email, billing address, last four digits of your card, subscription status, and payment history. This information is used solely for account management and billing support.

Legal Basis for Processing (UK, EU, EEA, and Swiss Users)

If you are located in the United Kingdom, European Union, European Economic Area, or Switzerland, we process your personal data under the following legal bases:

Consent: We process your Google account data (Gmail metadata, Calendar data) based on your explicit consent when you connect your Google account and authorize the requested permissions. You may withdraw consent at any time by revoking HiveIQ's access through your Google Account settings.

Contractual Necessity: We process your account data and contact data as necessary to provide the HiveIQ service you signed up for.

Legitimate Interest: We process professional context data (enrichment from public sources) based on our legitimate interest in providing relevant and accurate contact information. This processing is balanced against your rights and does not override your interests.

Interaction Data

HiveIQ collects data about how you use the extension, such as which suggestions you act on and your general usage patterns. This data is used solely to improve the relevance of future suggestions. It is never sold or shared with third parties. You can export or delete this data at any time from Settings.

For users in the European Union, United Kingdom, or European Economic Area, collection of interaction data requires your explicit consent, which you can manage during onboarding or in Settings at any time.

Google API Services User Data Policy

HiveIQ's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

We only request access to Google API scopes necessary for the extension to function. We limit our use of Google user data to the practices disclosed in this privacy policy. We do not use Google user data for advertising. We do not allow humans to read your Google user data unless you provide consent, it is necessary for security or legal compliance, or the data has been aggregated and anonymized. We do not transfer Google user data to third parties except as necessary to provide or improve user-facing features (such as AI-generated suggestions via Anthropic's Claude API), as described in this policy.

Data Storage and Security

Your data is stored in a secure cloud database with encryption in transit and row-level security, meaning your data is only accessible to your authenticated account. Session data stored locally on your device is cleared when you sign out.

All communication between the extension and our services uses HTTPS encryption.

International Data Transfers

If you are located outside the United States, your data will be transferred to and processed in the United States where our servers are located. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where required.

Our data sub-processors (database, automation, and enrichment providers) maintain their own data processing agreements and comply with applicable data protection regulations.

Data Retention

Your data is retained as long as your account is active. If you uninstall the extension and request account deletion, we will delete your data within 30 days.

Your Rights

All users have the following rights:

Access: You can view all contacts and suggestions in the extension. Delete: You can delete individual contacts at any time. Deleted contacts will not be recreated by automated detection. Data Export: You can request a copy of your data in a portable format by contacting privacy@hiveiq.ai. Account Deletion: Contact privacy@hiveiq.ai to request complete deletion of your account and all associated data. Revoke Access: You can revoke HiveIQ's access to your Google account at any time through your Google Account security settings. Uninstall: You can remove the extension at any time.

Additional Rights for UK, EU, EEA, and Swiss Users

If you are located in the United Kingdom, European Union, European Economic Area, or Switzerland, you have the following additional rights under the General Data Protection Regulation (GDPR) and UK GDPR:

Right to Rectification: You may request correction of inaccurate personal data. Right to Restriction: You may request restriction of processing in certain circumstances. Right to Object: You may object to processing based on legitimate interest at any time. Right to Withdraw Consent: Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing. Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority. In the UK, this is the Information Commissioner's Office (ICO). In the EU, this is your country's Data Protection Authority. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format.

To exercise any of these rights, contact us at privacy@hiveiq.ai. We will respond within 30 days.

California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know: You can request details about the personal information we collect, use, and disclose. Right to Delete: You can request deletion of your personal information. Right to Opt-Out of Sale: We do not sell personal information. There is nothing to opt out of. Right to Non-Discrimination: We will not discriminate against you for exercising any of these rights.

To exercise these rights, contact us at privacy@hiveiq.ai.

Data Breach Notification

In the event of a data breach that affects your personal data, we will notify affected users by email within 72 hours of becoming aware of the breach, in accordance with GDPR requirements. We will also notify relevant data protection authorities as required by applicable law.

Children's Privacy

HiveIQ is intended for professional use by individuals aged 18 and older. We do not knowingly collect information from anyone under the age of 18. If we become aware that we have inadvertently collected such information, we will delete it promptly.

Changes to This Policy

We may update this policy from time to time. If we make material changes, we will notify users by email. The "Last Updated" date at the top of this policy reflects the most recent revision.

Contact Us

HiveIQ LLC Email: privacy@hiveiq.ai Website: https://hiveiq.ai

For UK and EU data protection inquiries, contact us at privacy@hiveiq.ai. If we appoint a representative in the UK or EU in the future, their contact information will be listed here.