H Company Privacy Policy
This Privacy Policy describes the privacy practices of H.AI SAS (“we”, “us”, “our” or “H Company”) and how we handle personal information that we collect through our website (https://www.hcompany.ai), marketing initiatives, our interactions with you or otherwise in connection with H Company’s AI Agent offering (collectively, the “Service” or “Services”).
This Privacy Policy does not apply to personal information we process on behalf of users of our AI Agent to provide services to them as a processor. In that case, such a user will act as the controller and its privacy policy will apply to the processing of your personal information.
Definitions
- “AI Agent” means H Company’s AI models that use AI features to perform tasks for you based on your Inputs.
- “Action(s)” means any and all content, decisions, recommendations, interactions, actions and transactions generated or executed by the AI Agent in response to an Input.
- “Input(s)” means data you input into the AI Agent, including text commands or other instructions, queries or textual cues. This includes data you provided to the AI Agent for the purpose of personalizing, prompting, fine-tuning or customizing the AI Agent to a specific need or use-case.
Personal information we collect
- Information you provide to us, including through forms and questionnaires, your use of our website, and through our communications with you.
- Contact and identification details, such as your first and last name, email address, and phone number, company and any other information that you may provide when you contact us through the website, via email, or otherwise, or when you register your interest in using our AI Agent, or create an account with us, including your password.
- Communications that we exchange with you, including when you contact us with questions, feedback, or otherwise.
- Content of Inputs that you input into our AI Agent, and the content of resulting Actions to the extent such Inputs and Actions contain personal information. You have control over the personal information you provide to us. You must refrain from providing any sensitive personal information (including information about an individual’s health, race, ethnicity, political opinions, religious or philosophical beliefs, sex life or sexual orientation, trade union membership, or genetic data) in the Inputs. If you provide us with information about another person, you must ensure they agree to you including their personal information in an Input, and you are responsible for providing them with this Privacy Policy.
- Usage information, such as information about how you use the Services and interact with us.
- Marketing data, such as your preferences for receiving our marketing communications, and details about your engagement with them.
Information we obtain from third parties
- Social media. We may maintain pages on social media platforms, such as LinkedIn. When you visit or interact with our pages on those platforms, the platform provider’s privacy policy will apply to your interactions and their collection, use and processing of your personal information. You or the platforms may provide us with information through the platform, and we will treat such information in accordance with this Privacy Policy.
- Users. Our users control the information they provide to us. Users might provide us with personal information about you.
- Other sources. We may obtain your personal information from other third parties, such as publicly-available sources and data providers, for marketing purposes.
Automatic data collection
- User ID. When you use our Services you will be assigned a H Company user ID.
- Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, language settings, mobile device carrier, radio/network information (e.g., WiFi, LTE, 3G), and general location information such as city, state, or geographic area.
- Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the website, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access, and whether you have opened our marketing emails or clicked links within them.
- We use cookies, web beacons (e.g., pixel tags), and local and session storage technologies to collect some of this information. For more information on how we use these technologies, please visit our Cookie Policy.
How we use personal information
Provision of the Services. It is in our legitimate interests to operate and allow you to use our Services, or to register your interest in using our AI Agent. When we provide such Services under our API Licence Terms, we use your personal information to perform our contractual obligations. For example, we generate Actions based on your Inputs, both of which may contain personal information. In addition, we may use your personal information, including that contained in Actions, when we provide, operate, maintain, secure, and improve our Services and respond to your requests, questions, and feedback, including providing support to you in relation to our Services.
Train our algorithms, and otherwise for research and development. Our AI Agent is trained on your and other users’ Inputs and Actions (which are otherwise separated from any identifying user data, such as your user ID, so we cannot identify you as the origin of the Input or Action). It is in our legitimate interests to train our AI Agent to improve our Services for you and other users, and otherwise to use your personal information for research and development. As part of these activities, we may create aggregated, de-identified, or other anonymous data from personal information we collect. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyse and improve the Services and promote our business.
Enrichment. It is in our legitimate interests to use personal information we obtain from third parties to enrich and verify personal information we process about you.
To monitor and analyse trends and use of our Services, and to improve our Services. It is in our legitimate interests to analyse the use of our Services, and to use your personal information to improve our existing Services and create new products and services.
Direct marketing. We may send you direct marketing communications as permitted by law via email and other means. Where you tag H Company on social media, we may reach out to you, including to request information from you about your experience and interactions with H Company. Except where consent is required, we do so where it is in our legitimate interests to market to you. You may opt out of our marketing communications as described in the “Opt out of marketing communications” section below.
Interest-based advertising. We engage our advertising partners, including third-party advertising companies and social media companies, to display ads around the web. These companies may use cookies and similar technologies to collect information (including the automatically collected data described above) about your interactions over time across our Services, our communications, and other online services, and use that information to serve online ads that may interest you. Where required by law, we will undertake such advertising activities on the basis of your consent; otherwise, we will do so only if it is in our legitimate business interests to undertake such activities.
Compliance and protection, including:
- To comply with applicable laws, lawful requests, and legal process, such as to respond to requests from government authorities.
- In our legitimate interests to protect our, your, or others’ rights, privacy, safety, or property (including by making and defending legal claims).
- Auditing our internal processes for compliance with legal and contractual requirements and internal policies. Where we do not have a legal obligation, we do so in our legitimate interests.
- Enforce the terms and conditions that govern our Services.
- In our legitimate interests to prevent, identify, investigate, and deter fraudulent, harmful, unauthorised, unethical, or illegal activity, including cyberattacks and identity theft.
Artificial Intelligence
H Company leverages third-party AI technology provided by our service providers. This technology is trained to generate intelligent responses in conversations with you and when performing tasks on your request. Its Actions are based on information collected through the Services, including your Inputs.
H Company shares your information with the AI service providers that power H Company. They will only use your personal information to respond to and action your prompts and instructions; they will not use your data to train their AI models.
How we share personal information
We may share your personal information with:
Affiliates. Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
Service providers. Companies and individuals that provide services on our behalf or help us operate the Services or our business (such as hosting, information technology, AI technology providers, customer support, email delivery, and website analytics services).
Advertising partners. Third party advertising companies, including for the interest-based advertising purposes described above.
Professional advisors. Professional advisors, such as lawyers, auditors, bankers, and insurers, where necessary in the course of the professional services that they render to us.
Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
Business transferees. Acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganisation, sale, or other disposition of all or any portion of the business or assets of, or equity interests in H Company (including, in connection with a bankruptcy or similar proceedings).
Your rights and choices
Opt out of marketing communications. You may opt out of marketing-related communications by following the opt-out or unsubscribe instructions contained in the marketing communications we send you.
Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.
Personal information requests. Depending on your location and the nature of your interactions with our Services, you may request the following in relation to your personal information:
- Information about how we have collected and used your personal information. We have made this information available to you without having to request it by including it in this Privacy Policy.
- Access to a copy of the personal information that we have collected about you. Where applicable, we will provide the information in a portable, machine-readable, readily-usable format.
- Correction of personal information that is inaccurate or out of date.
- Deletion of personal information that we no longer need to provide the Services or for other lawful purposes.
- Additional rights, such as to object to and request that we restrict our use of personal information, and where we rely on consent for our processing, you may withdraw your consent to our processing of your personal information.
To exercise the above rights, contact us as set out in the “How to contact us” Section below. Prior to responding to your requests, we may verify your identity by matching any requested identifying information you provide against the information we have about you.
In some instances, your rights and choices may be limited, such as where fulfilling your request would impair: the rights of others, our ability to provide a service you have requested, or our ability to comply with our legal obligations and enforce our legal rights.
Right to complain. Depending on where you reside, such as if you reside in the European Economic Area (EEA) or United Kingdom (UK), you may have the right to complain to a data protection regulator where you live or work, or where you feel a violation has occurred. Click here to find your local supervisory authority in the EEA. In the UK, the competent authority is the Information Commissioner’s Office.
Other sites and services
Our Services may contain links to websites and other online services operated by third parties. In addition, our content may be integrated into web pages or other online services that are not associated with us. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites or online services operated by third parties, and we are not responsible for their actions.
Retention
Where required under applicable laws, we retain personal information only for as long as is necessary to fulfill the purposes for which it was collected and processed, in accordance with our retention policies, and in accordance with applicable laws and regulatory obligations or until you withdraw your consent (where applicable). To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of personal information, the purposes for which we use personal information and whether we can achieve those purposes through other means, and the applicable legal and regulatory requirements.
Data security
We employ a number of technical, organizational, and physical safeguards designed to protect the personal information we collect. However, no security measures are failsafe and we cannot guarantee the security of your personal information.
International data transfers
We may transfer personal information to our affiliates and service providers in the United States and other jurisdictions. Please note that such jurisdictions may not provide the same protections as the data protection laws in your home country.
When we engage in cross-border data transfers, we will ensure that relevant safeguards are in place to afford adequate protection for personal information and we will comply with applicable data protection laws, in particular by relying on an EU Commission or UK government adequacy decision or on contractual protections for the transfer of personal information. For more information about how we transfer personal information internationally, please contact us as set out in the “How to Contact Us” section below.
Children
The Services is not intended for use by children under 18 years of age. If we learn that we have collected personal information through the Services from a child under 18 without the consent of the child’s parent or guardian as required by law, we will delete it.
Changes to this privacy policy
We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the website.
How to contact us
Responsible entity. H.AI SAS is the entity responsible for the processing of personal information under this Privacy Policy (as a controller, where provided under applicable law).
Contact us. If you have any questions or comments about this Privacy Policy, our privacy practices, or if you would like to exercise your rights with respect to your personal information, please contact us by email at privacy@hcompany.ai or at the following mailing address:
H.AI SAS
22 Rue Drouot
Paris France 75009
If you are based in the United Kingdom, you can also contact us at:
H.AI Technology Limited
23 Copenhagen Street,
London UK N1 0JB