Privacy Policy

Interpretation and Definitions

Interpretation

The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

• Account means a unique account created for You to access our Service or parts of our Service.
• Affiliatemeans an entity that controls, is controlled by, or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
• Company(referred to as either “the Company”, “We”, “Us” or “Our” in this Privacy Policy) refers to Save Everything. Feed Hippo.
• Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
• Country refers to: United States.
• Device means any device that can access the Service such as a computer, a cell phone or a digital tablet.
• Personal Data(or “Personal Information”) is any information that relates to an identified or identifiable individual. We use “Personal Data” and “Personal Information” interchangeably unless a law uses a specific term.
• Service refers to the Website and the Hippo Chrome browser extension.
• Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
• Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
• Website refers to Save Everything. Feed Hippo., accessible from https://feedhippo.io.
• You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:

• Email address

User-Saved Content

When You use the Service to save content, We collect the following data that You explicitly submit:

• Saved items — URLs, page titles, descriptions, thumbnails, screenshots, and image files that You choose to save using Hippo. This content is stored privately in Your account and is not shared with other users.
• Metadata — titles, descriptions, domain names, and preview images automatically extracted from pages You save.
• Organizational data — board names and tag names You create to organize Your saved items.

Usage Data

Usage Data is collected automatically when using the Service.

Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

We may also collect information that Your browser sends whenever You visit Our Service or when You access the Service by or through a mobile device.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies We use include beacons, tags, and scripts to collect and track information and to improve and analyze Our Service.

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.

• Necessary / Essential Cookies — Session Cookies administered by Us. These Cookies are essential to provide You with services available through the Website and to enable authentication. Without these Cookies, the services that You have asked for cannot be provided.
• Functionality Cookies — Persistent Cookies administered by Us. These Cookies allow Us to remember choices You make when You use the Website, such as remembering your login state.

Chrome Browser Extension

The Hippo Chrome extension allows You to save content directly from any webpage. The extension requires the following browser permissions:

• activeTab — Allows the extension to read the URL and title of the tab You are currently viewing, and capture a screenshot, only when You explicitly click the Hippo extension icon or a save button. This permission is never used passively.
• storage — Uses chrome.storage.local to cache Your authentication token locally in the browser so You remain signed in across sessions. This data is stored only on Your device and is not transmitted to Our servers.

Data sent to Our servers— the extension only transmits data to Hippo servers when You actively trigger a save action (e.g., clicking “Save this page” or right-clicking an image to save). The data sent consists of the page URL, page title, metadata, and optionally a screenshot or image URL that You chose to save.

What the extension does NOT do:

• We do not track Your browsing history.
• We do not collect data from pages You visit unless You explicitly save something from them.
• We do not run any background activity when You are not actively using Hippo.
• We do not inject ads or modify the content of pages You visit.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

• To provide and maintain our Service, including to monitor the usage of our Service.
• To manage Your Account: to manage Your registration as a user of the Service.
• For the performance of a contract: the development, compliance and undertaking of the purchase contract for the products, items or services You have purchased or of any other contract with Us through the Service.
• To contact You: To contact You by email regarding updates, security notices, or informative communications related to the Service.
• To manage Your requests: To attend and manage Your requests to Us.
• For business transfers: We may use Your Personal Data to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Our assets.
• For other purposes: We may use Your information for purposes such as data analysis, identifying usage trends, and to evaluate and improve our Service.

We may share Your Personal Data in the following situations:

• With Service Providers:We may share Your Personal Data with Service Providers to monitor and analyze the use of our Service and to process payments. See the “Third-Party Service Providers” section below for details.
• For business transfers: We may share or transfer Your Personal Data in connection with any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
• With Your consent: We may disclose Your Personal Data for any other purpose with Your consent.

Third-Party Service Providers

We use the following third-party services. Each acts as a data processor on our behalf and is subject to its own privacy policy:

• Supabase (Supabase Inc.) — authentication, database, and file storage. Supabase processes Your email address, saved items, uploaded images, and all other account data. Servers are located in the United States. Supabase Privacy Policy
• Stripe (Stripe, Inc.) — payment processing for paid subscriptions. Stripe collects and processes Your payment card information, billing address, and transaction history. We never see or store Your full card number. Stripe Privacy Policy
• PostHog (PostHog, Inc.) — product analytics. PostHog collects Usage Data including pageviews, feature interactions, device and browser information, and IP addresses to help Us understand how the Service is used and to improve it. PostHog does not sell personal data. PostHog Privacy Policy
• Sentry (Functional Software, Inc.) — error monitoring and performance tracking. Sentry automatically captures error logs, stack traces, and device/browser metadata when the Service encounters an unexpected error. This data is used solely to identify and fix bugs. Sentry Privacy Policy

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

• Account information — retained for the duration of your account relationship plus up to 24 months after account closure.
• Saved items and uploaded images — retained for as long as your account is active. You can delete individual saves at any time. Account deletion removes all associated content.
• Usage Data / analytics — up to 24 months from the date of collection.
• Error logs — up to 90 days, as retained by Sentry per their default configuration.

Usage Data is retained in accordance with the periods described above, and may be retained longer only where necessary for security, fraud prevention, or legal compliance.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. This information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of Your jurisdiction.

The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place.

Delete Your Personal Data

You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You.

You may delete individual saved items at any time from within the Hippo library. To request full account deletion and removal of all associated data, contact Us at the address below.

Please note that We may need to retain certain information when We have a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

Law Enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other Legal Requirements

The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

Lawful Basis for Processing (GDPR)

If You are located in the European Economic Area (EEA) or United Kingdom, We process Your Personal Data under the following lawful bases under GDPR Article 6:

• Contract performance (account & saved items) — email address and saved content are processed to provide the Service You signed up for.
• Contract performance (payments) — payment data is processed by Stripe to fulfill Your subscription.
• Legitimate interest — Usage Data and error logs are processed to maintain, secure, and improve the Service, provided those interests are not overridden by Your rights.
• Consent — where required by law, We rely on Your consent for non-essential cookies and analytics.

Your Privacy Rights

EEA / UK residents (GDPR)

You have the right to:

• Access the Personal Data We hold about You
• Correct inaccurate Personal Data
• Request erasure of Your Personal Data
• Restrict or object to processing of Your Personal Data
• Data portability — receive Your data in a structured, machine-readable format
• Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal

To exercise any of these rights, contact Us at hello@feedhippo.io. We will respond within 30 days.

California residents (CCPA)

We do not sell Your personal information. Under the California Consumer Privacy Act (CCPA), California residents also have the right to:

• Know what Personal Data We collect, use, disclose, or sell
• Delete Personal Data We have collected from You
• Non-discrimination for exercising Your CCPA rights

To submit a CCPA request, email hello@feedhippo.io with the subject line “CCPA Request”.

Analytics opt-out

PostHog, Our analytics provider, respects the Do Not Track browser setting. You may also opt out of PostHog analytics by enabling Do Not Track in Your browser settings. Opting out does not affect the functionality of the Service.

Security of Your Personal Data

The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially reasonable means to protect Your Personal Data, We cannot guarantee its absolute security.

Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 16 without verification of parental consent, We take steps to remove that information from Our servers.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page. We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the “Last updated” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

This Privacy Policy is part of our Terms of Service.

If You have any questions about this Privacy Policy, You can contact Us:

• By email: hello@feedhippo.io
• By visiting our website: https://feedhippo.io