Privacy Policy
Effective date: June 4, 2026 · Last updated: June 4, 2026
The Short Version
We collect what we need to run the Service. We don't sell your data. We don't use it to train AI models. You can delete everything at any time.
This Privacy Policy explains what data we collect, why, and how we protect it. It applies to myhidn.net (the "Service"), operated by hidn.ai, LLC ("we," "us," or "our"). This policy works alongside our Terms of Service.
What We Collect
Account Information
- Name and email address
- Password (stored hashed — we never see or store your plain-text password)
- Account preferences and settings
Workspace Data
This is the data you create and import as part of using the Service:
- Contacts and profiles — names, job titles, companies, email addresses, and other details you add or import
- Relationship data — connections between contacts, relationship types, and interaction history
- Documents — notes, files, and shared documents you create in your workspace
- Tasks and work items — items you create to track your work
- Activities — logged interactions like meetings, calls, and messages
LinkedIn CSV Import
When you upload a LinkedIn connections CSV file, we extract:
- First name, last name
- Email address (if included in the export)
- Company and position
- Connection date
- LinkedIn profile URL
This data is stored in your workspace and is only accessible to you (and your AI, via your token).
AI Connection and Actions
When you connect an AI client (such as Claude) to your workspace — either via OAuth or by creating an API token — we collect:
- When the connection was established and last used
- All actions performed via the connection (reads, writes, updates, deletions)
- Timestamps and action types for each API call
When you connect via a third-party AI client using OAuth, we process your login credentials for authentication only — your password is never shared with the client. The client receives a scoped API token for your workspace.
All actions in your workspace are logged with an audit trail — both yours and your AI's. Actions taken via your AI are clearly attributed so you can always see who did what.
Usage Data
- Pages visited and features used
- Browser type and device information
- IP address
- General usage patterns (to improve the Service)
Third-Party Data Enrichment
We use third-party data enrichment services to optionally enhance contact profiles with publicly available professional information. When enrichment is triggered:
- We send a social media profile URL to the enrichment provider's API
- The provider returns publicly available professional information associated with that URL (job history, education, skills, etc.)
- This data is added to the contact's profile in your workspace
- Each provider's own privacy policy governs their handling of data
Enrichment only occurs for contacts in your workspace and the results are only visible to you.
How We Use Your Data
We use your data to:
- Operate and improve the Service
- Provide your workspace features (contacts, documents, tasks, relationship graphs)
- Serve API/MCP requests from your AI assistant
- Send you service-related emails (account verification, security alerts, important updates)
- Maintain audit logs of all actions (human and AI)
- Diagnose technical issues and prevent abuse
We do not:
- Sell your personal data to anyone
- Use your data to train AI models
- Share your workspace data with other users
- Send marketing emails without your consent
Third-Party Services
We use the following third-party services to operate myhidn:
- OVH Cloud (US East/West) — hosting and data storage. Your data resides on OVH infrastructure in the United States.
- OpenAI — we use OpenAI's API to generate embeddings (numerical representations) of workspace data such as skill descriptions and profile information. This powers semantic search and matching features. Data sent to OpenAI is processed per their API data usage policy and is not used to train their models.
- Proton Mail — our email provider for service communications
- Data enrichment providers — optional professional profile enrichment (see above)
- Paddle — our authorized reseller and Merchant of Record for paid plans; Paddle processes billing, payment, and applicable taxes per their own privacy policy
Each of these providers has their own privacy policy. We choose providers who take data security seriously.
Data Security
We take reasonable measures to protect your data, including:
- Encrypted connections (HTTPS/TLS) for all data in transit
- Hashed passwords — we never store plain-text credentials
- Token-based authentication with scoped permissions
- Audit trail of actions (human and AI)
- Tenant-scoped data — your workspace data is logically isolated and only accessible to your account
No system is perfectly secure. If we discover a data breach that affects your account, we'll notify you promptly.
Data Retention and Deletion
We retain the data in your myhidn account for as long as your subscription is active. After your subscription ends — whether you cancel, it lapses, or we terminate it — we keep your data in a limited, export-only state for 30 days so you can export it or resume your subscription. We do not otherwise use your data during this period. After the 30-day window, we delete your account data — including contacts, documents, tasks, relationships, and activities — from our live systems. You may also delete all of your data at any time using the "Delete all my data" control in your account settings, which begins deletion immediately. In all cases, residual copies may persist in our encrypted backups for up to 30 days after deletion, after which they are permanently purged. We may retain limited information where required by law (for example, transaction and tax records held by our payment processor), and we may keep anonymized, aggregate usage statistics that do not identify you.
Cookies
We use essential cookies to keep you logged in and maintain your session. We don't use third-party tracking cookies or advertising cookies.
Children's Privacy
myhidn is not intended for anyone under 18. We don't knowingly collect data from minors. If you believe a minor has created an account, or if contact/profile data for a minor has been stored in any workspace, please contact us at team@hidn.ai and we'll promptly delete it.
Your Rights
You can:
- Access your data — everything in your workspace is visible to you
- Export your data — contact us and we'll provide a copy
- Delete your data — delete your account at any time to remove everything
- Correct your data — edit any information in your workspace directly
Changes to This Policy
We may update this Privacy Policy from time to time. If we make significant changes, we'll notify you via email or through the Service. The "Effective date" at the top of this page tells you when it was last updated.
Governing Law
This Privacy Policy is governed by the laws of the Commonwealth of Virginia, United States. Any disputes will be resolved in the courts located in Virginia Beach, Virginia.
Contact Us
Questions or concerns about your privacy? Reach us at team@hidn.ai.