Privacy Policy

Your privacy is important to us. This policy explains how HIVE Protocol collects, uses, and protects your personal information.

Last updated: January 8, 2026

Table of Contents

Introduction

Welcome to HIVE Protocol ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience when using our multi-agent AI coordination platform.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, website, and related services (collectively, the "Service"). Please read this policy carefully. By using our Service, you consent to the data practices described in this policy.

If you do not agree with the terms of this privacy policy, please do not access the Service.

Data Collection

We collect information that you provide directly to us, as well as information automatically collected when you use our Service.

Information You Provide

  • Account Information: Email address, password (encrypted), display name, and profile picture
  • Profile Data: Preferences, settings, and notification preferences
  • Content: Messages, swarm configurations, agent settings, tool definitions, and other content you create
  • Communications: Feedback, support requests, and correspondence with us
  • Payment Information: If applicable, payment details are processed by our payment provider and not stored on our servers

Automatically Collected Information

  • Usage Data: Pages visited, features used, actions taken, time spent, and interaction patterns
  • Device Information: Browser type, operating system, device identifiers, and screen resolution
  • Log Data: IP address, access times, referring URLs, and error logs
  • AI Interaction Data: Prompts sent to agents, agent responses, and tool execution logs

How We Use Your Data

We use the information we collect for the following purposes:

Service Operation

  • Provide, maintain, and improve our Service
  • Process and complete transactions
  • Authenticate users and manage accounts
  • Coordinate AI agent swarms and tool executions
  • Store and retrieve your configurations and data

Communication

  • Send service-related notifications and updates
  • Respond to your comments, questions, and support requests
  • Send promotional communications (with your consent)

Analytics & Improvement

  • Analyze usage patterns to improve user experience
  • Monitor and analyze trends and usage
  • Develop new features and services
  • Conduct research and analysis

Security & Compliance

  • Detect, investigate, and prevent fraudulent or unauthorized activity
  • Protect the rights and safety of users and third parties
  • Comply with legal obligations

Data Storage & Security

We take the security of your data seriously and implement appropriate technical and organizational measures to protect it.

Storage Infrastructure

Your data is stored on secure servers provided by Supabase, our database infrastructure provider. Supabase uses industry-standard security measures including:

  • Encryption at rest using AES-256
  • Encryption in transit using TLS 1.2+
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance
  • Data centers with physical security controls

Security Measures

  • Row Level Security (RLS) policies ensuring data isolation
  • Secure password hashing using industry-standard algorithms
  • Two-factor authentication (2FA) option for accounts
  • Regular security monitoring and incident response
  • Cryptographic message signing for agent communications

Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. We may retain certain information as required by law or for legitimate business purposes. Upon account deletion, we will delete or anonymize your data within 30 days, except where retention is required by law.

Third-Party Services

We work with trusted third-party service providers to operate our Service. Below are the key providers and how they may access or process your data:

Supabase (Database & Authentication)

Supabase provides our database infrastructure and authentication services. They process account data, application data, and authentication tokens.

View Supabase Privacy Policy

AI Model Providers

We integrate with AI providers including OpenAI, Anthropic, Google, and others to power our agent capabilities. When you interact with agents, your prompts and relevant context are sent to these providers for processing.

OpenAI PrivacyAnthropic PrivacyGoogle Privacy

Analytics & Monitoring

We may use analytics services to understand how users interact with our Service. These services collect anonymized usage data to help us improve the user experience.

Hosting & Infrastructure

Our application is hosted on cloud infrastructure providers that maintain SOC 2 compliance and implement industry-standard security measures.

We ensure that all third-party providers are bound by appropriate data processing agreements and maintain adequate security standards.

Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience on our Service.

Types of Cookies We Use

  • Essential Cookies: Required for the Service to function, including authentication and security cookies
  • Functional Cookies: Remember your preferences and settings (e.g., theme, language)
  • Analytics Cookies: Help us understand how visitors interact with our Service

Managing Cookies

Most web browsers allow you to control cookies through their settings. You can set your browser to refuse cookies or alert you when cookies are being sent. Please note that disabling cookies may affect the functionality of our Service.

Your Rights

Depending on your location, you may have certain rights regarding your personal information:

Access

Request a copy of the personal data we hold about you

Correction

Request correction of inaccurate or incomplete data

Deletion

Request deletion of your personal data

Portability

Request your data in a portable format

Restriction

Request restriction of processing in certain circumstances

Objection

Object to processing based on legitimate interests

To exercise any of these rights, please contact us using the information provided in the Contact section. We will respond to your request within the timeframe required by applicable law.

GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR).

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing necessary to perform our contract with you (providing the Service)
  • Legitimate Interests: Processing for our legitimate business interests (security, analytics, improvements)
  • Consent: Where you have given explicit consent (e.g., marketing communications)
  • Legal Obligation: Processing required to comply with legal requirements

International Data Transfers

Your data may be transferred to and processed in countries outside the EEA. When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions.

CCPA Compliance

For California residents, we comply with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).

Your California Privacy Rights

  • Right to know what personal information is collected
  • Right to know whether your personal information is sold or disclosed
  • Right to say no to the sale of personal information
  • Right to access your personal information
  • Right to request deletion of your personal information
  • Right to equal service and price, even if you exercise privacy rights

Do Not Sell My Personal Information

We do not sell personal information to third parties. We may share information with service providers who assist us in operating our Service, but this is not considered a "sale" under the CCPA.

Children's Privacy

Our Service is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we discover that we have collected personal information from a child under 16, we will delete that information promptly.

Policy Changes

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we may also send you an email notification. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

HIVE Protocol

Data Protection Inquiries

For general inquiries, visit our Contact Page

Cookie Preferences

We use cookies to enhance your experience, analyze site traffic, and for marketing purposes. By clicking "Accept All", you consent to our use of cookies. Read our Privacy Policy for more information.