Back to HomepageView Terms of Service

Legal

Privacy Policy

This page explains what information Heym may collect, why we use it, how long we keep it, and what rights you have. If you self-host Heym entirely on your own infrastructure, you remain responsible for the data processed inside your own deployment.

Last updated: March 29, 2026Need the rules for using Heym? Read our Terms of Service.

1. Scope

This Privacy Policy applies to the Heym homepage, our newsletter, support channels, community interactions, and any hosted or managed Heym services that we directly operate. It does not replace the privacy obligations of users who deploy Heym on their own infrastructure.

If you self-host Heym and do not use a service operated by us, you control the data collected in that environment and act as the primary controller for that deployment.

2. Information We Collect

2.1 Contact and account details

We may collect the following when you interact with us directly:

  • Email address and contact details you submit through forms, newsletters, or support.
  • Name, company, and role when you request enterprise information or demos.
  • Account credentials and profile details for services we directly host.

2.2 Product and workflow data

When you use a Heym service operated by us, we may process:

  • Workflow definitions, prompts, logs, uploaded files, and generated outputs.
  • Configuration data, node settings, and audit information needed to run workflows.
  • Support attachments or samples you voluntarily share while requesting help.

2.3 Technical and usage data

We may collect technical information to keep the service secure and reliable, such as:

  • IP address, browser type, device information, and approximate region.
  • Referral pages, crash data, request timing, and abuse-prevention signals.
  • Cookie and consent preferences required to remember privacy choices.

2.4 Analytics data

We only enable website analytics when analytics is configured and you grant consent. In that case, Heym may record page views and related measurement data in a privacy-aware configuration.

3. How We Use Information

We use personal information to:

  • Operate, secure, and improve the Heym website and any services we provide.
  • Respond to support requests, sales inquiries, and partnership conversations.
  • Deliver newsletters or product updates when you explicitly opt in.
  • Prevent fraud, abuse, spam, and unauthorized access.
  • Comply with legal obligations and enforce our agreements.

4. Legal Bases for Processing

Where GDPR or similar laws apply, we process personal data under one or more of the following bases:

  • Your consent, such as analytics or newsletter subscriptions.
  • The performance of a contract, such as providing support or hosted services.
  • Our legitimate interests in operating, securing, and improving Heym.
  • Compliance with legal obligations.

5. How We Share Information

We do not sell personal information. We may share information only when necessary with:

  • Infrastructure, hosting, and email service providers acting on our instructions.
  • Payment processors if you purchase enterprise services or support.
  • Analytics providers when analytics is enabled and you have granted consent.
  • Authorities or counterparties when required by law or to protect legal rights.
  • Successors in the context of a merger, acquisition, or asset transfer.

6. Retention

We keep personal data only for as long as needed for the purposes described in this policy, including security, legal, and operational needs.

  • Newsletter records are kept until you unsubscribe or request deletion.
  • Support records may be retained for continuity, compliance, and dispute handling.
  • Hosted workflow data is generally retained while the related account or service remains active, plus a limited backup period.

7. Security

We apply reasonable technical and organizational safeguards designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. No service can guarantee absolute security, so you should also use strong credentials and protect your own environments.

8. International Transfers

Your information may be processed in countries other than your own. When that happens, we use appropriate safeguards and contractual measures where required by law.

9. Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to the processing of your personal data, and in some cases request portability. You may also withdraw consent where processing is based on consent.

To exercise these rights, contact us at [email protected].

10. Children's Privacy

Heym is not directed to children under 16, and we do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date on this page. Continued use of our services after an update takes effect means the revised policy applies going forward.

12. Contact and Related Pages

Questions about this Privacy Policy can be sent to [email protected].

For the rules that govern use of Heym, please review our Terms of Service. You can also return to the homepage at any time.