1. Introduction
Welcome to Hexa, a product of Hexa Inc. (“Hexa,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you access or use our website, platform, and services (collectively, the “Service”).
If you do not agree with any part of this policy, please refrain from using the Service.
2. What Data We Collect
We collect two types of data:
a. Personal Data (Personally Identifiable Information)
Information you voluntarily provide or we collect via your use of the Service:
Full name
Email address
Company name
Job title
Profile photo (if added)
Login credentials (hashed)
IP address and location
Billing and payment information (via Stripe or other processors)
b. Usage Data
Automatically collected data when you interact with Hexa:
Log files, pages visited, session durations
Clicks, navigation flows, feature usage
Timestamps of activity
Browser type, OS, and device identifiers
3. Special Notes on AI-Powered Features
Hexa uses AI models to generate:
Call summaries
Follow-up drafts
Sales insights and recommendations
Forecast scoring
Smart Q&A responses
When using these features, conversational data (text, call transcripts, notes) may be processed by Hexa's AI systems. This data is:
Not shared with external AI providers
Not used to train public or third-party models
Encrypted at rest and in transit
You control and retain ownership of your data.
4. How We Use Your Information
We use your data to:
Purpose | Legal Basis |
|---|---|
Provide the Service | Contract fulfillment |
Personalize your experience | Legitimate interest / Consent |
Analyze platform usage | Legitimate interest |
Improve product performance | Legitimate interest |
Send transactional emails | Contract fulfillment |
Send marketing communications | Consent (you can opt out anytime) |
Ensure security & fraud detection | Legal obligation / Legitimate interest |
5. How We Share Your Data
We do not sell your personal information.
We may share limited data with:
Service providers (e.g., Stripe, Intercom, analytics tools)
Cloud infrastructure partners (e.g., AWS)
CRM, analytics, or support systems used internally
Authorities or legal entities, if required by law
All third-party vendors are subject to data processing agreements (DPAs) and security reviews.
6. International Transfers
Hexa may store and process data on servers located in the United States or other jurisdictions. If you are located in the EU/EEA, we use approved legal mechanisms (e.g., Standard Contractual Clauses) to ensure lawful transfer of your personal data.
7. Data Retention
We retain your personal data only as long as necessary to:
Deliver the Service
Comply with legal obligations
Resolve disputes
Enforce our agreements
Inactive or deleted accounts may be anonymized or purged after a defined period (e.g., 12 months).
You can request deletion of your data at any time (see Section 9).
8. Your Privacy Rights
Depending on your location, you have rights under applicable laws (e.g., GDPR, CCPA):
RightDescriptionAccessRequest a copy of your personal dataCorrectionRequest correction of inaccurate dataDeletion (“Right to be Forgotten”)Ask us to delete your dataObjectionObject to certain types of processingData PortabilityRequest export of your dataWithdraw ConsentOpt out of previously granted permissions
To exercise your rights, email: privacy@hexa.so
We respond to verified requests within 30 days.
9. Security Practices
We implement technical and organizational security measures to protect your data, including:
Data encryption (at rest & in transit)
Access control and authentication
Role-based permissions
Continuous monitoring and vulnerability patching
Annual security audits and penetration testing
While no system is 100% secure, we take strong precautions to minimize risks.
10. Children’s Privacy
Hexa is not intended for use by individuals under 18 years old. We do not knowingly collect personal data from minors.
11. Third-Party Links
Our Services may include links to third-party websites or tools. This policy does not apply to those platforms. Always review their privacy practices before interacting.
12. Changes to This Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with an updated “Effective Date.” If material changes occur, we will notify users via email or in-app notice when required.
13. Contact Us
For any privacy-related questions, requests, or complaints:
Email: privacy@hexa.so
Postal:
Hexa Inc.
[Insert Mailing Address]
[City, State, ZIP, Country]