HidenAI HIDENAI Back to Home

Privacy Policy

Last updated: April 05, 2026

1. Introduction

HIDENENTERPRISES SL, trading as HidenCloud ("we", "our", "us"), operates HidenAI. This Privacy Policy describes how we collect, use, and protect your personal data when you use our Service.

2. Data We Collect

We collect the following types of data:

  • Account Data: Name, email address, and authentication provider details (Google, Discord).
  • Usage Data: Message counts, token usage, model preferences, and session information.
  • Conversation Data: Messages exchanged with the AI, stored encrypted to provide the Service.
  • Payment Data: Processed by Paddle (our Merchant of Record). We do not store credit card details directly.
  • Technical Data: IP addresses, browser type, and device information for security and analytics.

3. How We Use Your Data

  • To provide and maintain the Service
  • To process your subscription and billing
  • To enforce usage limits and prevent abuse
  • To send service-related notifications (usage warnings, plan expiry)
  • To improve the Service through aggregated, anonymized analytics
  • To comply with legal obligations

4. Data Sharing

We do not sell your personal data. We share data only with:

  • AI Providers: Your messages are forwarded to Azure AI Foundry for processing. These providers have their own privacy policies.
  • Payment Processor: Paddle.com Market Limited acts as the Merchant of Record and processes payments on our behalf. See Paddle's Privacy Policy at paddle.com/legal/privacy.
  • Infrastructure: We use Hetzner for hosting and Cloudflare for security/CDN.

5. Data Retention

We retain your data for as long as your account is active. Conversation data is stored to provide continuity of service. Upon account deletion, all personal data and conversations are permanently erased. Usage logs are retained in anonymized form for up to 90 days for operational purposes.

6. Data Security

We implement industry-standard security measures including: encryption at rest and in transit (TLS 1.3), hashed API keys (SHA-256), encrypted sensitive fields, rate limiting and abuse detection, and regular security audits.

7. Your Rights

Under GDPR and applicable laws, you have the right to: access your personal data, request correction or deletion, export your data, object to processing, and withdraw consent. To exercise these rights, contact us at noreply@hidenai.com or use the account deletion feature in Settings.

8. Cookies

We use essential cookies for authentication and session management. See our Cookie Policy for details. Cookie Policy

9. Children

The Service is not intended for users under 18. We do not knowingly collect data from minors.

10. Contact

For privacy inquiries, contact us at noreply@hidenai.com.