April 2024

Privacy Policy

1. Introduction

This Privacy Policy (this “Privacy Policy”) outlines how Hailo Technologies Ltd. and its subsidiaries (together “Hailo,” “we,” “us,” or “our”) collect, use, and disclose information that is provided to us, as well as the choices you may have with respect to such information.

Capitalized terms which are not defined herein, shall have the meaning ascribed to them in our Website Terms of Use (the “Site Terms of Use”) which this Privacy Policy is incorporated thereto by reference. This Privacy Policy supplements and shall be read in conjunction with our Site Terms of Use and our Cookie Policy (the “Cookie Policy”), and may be amended from time to time by additional privacy statements, terms or notices provided to you.

2. Scope and Applicability

This Privacy Policy applies to information that is shared through accessing and using the Hailo website(s), located at https://hailo.ai/, https://community.hailo.ai/ and any of their subdomains (each, a “Website” and collectively, the “Websites”), any use of our artificial intelligence processors and their associated software (the “Solution”), and any services provided by Hailo related to the Websites (the Websites and Solution, shall be collectively regarded herein as the “Services”).

This Privacy Policy governs and is intended to describe our practices regarding information (including Personal Data as defined below) that we may collect from or about you when you use or access the Services, the ways in which we may use such information, and the choices and rights available to you.

Users of our Services (referred to, unless otherwise specifically indicated, as “Users” or “you” collectively) may include (i) individuals who use our Solution in their capacity as employees or other personnel of our business customers (our business customers are hereafter a “Customer”) including individuals identifying as a Customer “admin” users or a Customer’s end-users, using or accessing the Services on a Customer’s behalf (each, a “Customer End-User”); (ii) visitors of the website (each, a “Visitor”); and (iii) Candidate(s) (as defined below).

IMPORTANT NOTE: where we process Personal Data of or about Customer End-Users, we do so on behalf of and under the instruction of the respective Customer (where such a Customer may be your employer, or other corporation on behalf of which you perform services, or otherwise are using our Service), Hailo does so in our capacity as a “data processor” on behalf of such a Customer. See below for more information about our practices as a data processor and the impact on your Personal Data in our possession.

The provisions of this Privacy Policy as they relate to Hailo’s independent privacy and data processing activities as a “data controller” – with respect to Users who are Visitors or Candidates – do not apply to the processing of Personal Data of Customer End-Users. If you are using our Services (including the Solution) as a Customer End-User, or if you otherwise have any questions or requests regarding Customer End-Users’ Personal Data, please contact the Customer on behalf of which you use the Solution (usually this will be your employer or corporation for which you provide a service).

3. Your Acknowledgement

PLEASE READ THIS PRIVACY POLICY BEFORE ACCESSING AND/OR USING OUR SERVICES OR ANY PART/COMPONENT THEREOF. BY ACCESSING OR USING THE SERVICES OR ANY PART/COMPONENT THEREOF, YOU AGREE TO THE TERMS SET FORTH IN THIS PRIVACY POLICY, INCLUDING TO THE COLLECTION AND PROCESSING OF YOUR PERSONAL DATA (AS DEFINED BELOW). IF YOU DISAGREE WITH ANY TERM PROVIDED HEREIN, YOU MAY NOT ACCESS OR USE THE SERVICES.

PLEASE NOTE: YOU ARE NOT OBLIGATED BY LAW TO PROVIDE US WITH ANY PERSONAL DATA. YOU HEREBY ACKNOWLEDGE AND AGREE THAT YOU ARE PROVIDING US WITH PERSONAL DATA AS DESCRIBED IN THIS PRIVACY POLICY AT YOUR OWN FREE WILL. YOU HEREBY AGREE THAT WE MAY COLLECT AND USE SUCH PERSONAL DATA PURSUANT TO THIS PRIVACY POLICY AND ANY APPLICABLE LAWS AND REGULATIONS.

TO THE EXTENT THAT YOU PROVIDE US WITH ANY PERSONAL DATA RELATED TO ANY THIRD PARTY OR ANY OTHER PERSON OR ENTITY THAT IS NOT YOU, INCLUDING INFORMATION RELATED TO ANY OF YOUR PERSONNEL, COLLEAGUES OR CUSTOMERS, YOU ARE SOLELY RESPONSIBLE FOR RECEIVING AND HEREBY REPRESENT THAT YOU HAVE AND UNDERTAKE THAT YOU SHALL HAVE AT ALL TIMES, MAINTAINED AND RECEIVED, THE CONSENT, AUTHORITY, PERMISSION AND APPROVAL OF SUCH PERSONS OR ENTITY AND PROVIDED THEM WITH SUFFICIENT DISCLOSURES, TO ALLOW HAILO TO ACCESS, STORE, COLLECT, ANALYZE AND PROCESS SUCH PERSONAL DATA AS DETAILED HEREIN.

4. What Categories and Types of Data do we Collect?

We collect both personal data, and non-personal data. “Personal Data” is information that identifies an individual or may with reasonable efforts or together with additional information we have access to, enable the identification of an individual, or may be of a private or sensitive nature relating to an identified or identifiable natural person. Identification of an individual also includes the association of such individual with a persistent identifier such as a name, an identification number, persistent cookie identifier etc. Personal Data does not include information that has been anonymized or aggregated, provided however that such information can no longer be used to identify a specific natural person.

Non-Personal Data” is collected without particular reference to the identity of the applicable User from or about whom such information was collected and is available to us while such User is using the Services. Non-personal Information which is being collected consists of technical, behavioral and aggregated information, and may contain the activity of the User on our Website, type of operating system, User’s ‘click-stream’ on the Website, type of browser and keyboards features, User demographics, traffic patterns, etc.

Most of the information that we collect when you use or access our Services is Non-Personal Data, however we collect and process different types of Personal Data through the respective methods of collection discussed below.

If we combine Personal Data with non-Personal Data, the combined data will be treated as Personal Data. Further Personal Data will only be stored and processed if you voluntarily provide it to us, e.g., through a contact form.

5. How We Collect Your Information

In the course of accessing or otherwise using our Services, we receive your Personal Data through the following sources:

  • Data actively provided by you: Generally, this category refers to any information, data, or content you actively and/or voluntarily create, upload, or provide through our Services. For example, we collect the Personal Data that You actively input when you submit your information through the “Product Inquiry” or “Contact Us” options or any similar contact forms available on the Websites, when you correspond with our customer support team, when you apply for a job with us on the “Careers” page, or when you use our Solution, over the course of such use you may be asked to input Personal Data such as first and last names, professional email address, the identity of your employer or the Customer on behalf of which you use or otherwise access the Services, the Industry you work for, role and job title, and any other Personal Data which may be contained in the content you actively and/or voluntarily create or provide to us through the use of the Services.

  • Data collected when you use our Services: When operating our Services, we may use (and authorize third parties to use) various tools and methods to collect information regarding your use of the Services. These tools include web beacons, cookies (including essential, non-essential, and functionality cookies), pixel tags, scripts, tags and other technologies (“Tracking Technologies”). Tracking Technologies allow us and third parties to automatically collect information such as IP addresses, device unique identifiers, and click-stream behavior. You can learn more about our use of Tracking Technologies by reading our Cookie Policy.
    • Usage and Impression Data: Details about how you use or interact with our Services, such as session time and duration, pages you visited, methods used to browse away from a page, as well as information about your impressions of, and reactions to, products and advertisements that appear on the Website, such as your clicks and views.
    • Device and Technical Information: We collect information from and about the device(s) you use to access or use our Services, as follows:
      • Identifiers: Identifiers such as IP address, device identifiers and ad identifiers, etc., the country or region that you are browsing from can be derived from your IP address.
      • Device signals: Wi-Fi access points, connection speed, etc.
      • Cookie data: Data from cookies stored on your device, including cookie IDs and settings.

Please review the “USING COOKIES AND OTHER TRACKING TECHNOLOGIES” section below to learn more about how we use cookies and other tracking technologies.

  • Personal Data collected from other sources: We may also collect Personal Data concerning you, from other third parties who have assured us that they have obtained your consent for such provision of information. For example, we may collect and use your contact information which we may have received from our Customer, your employer or from another User who invited you to use our Services, as allowed by applicable national laws

6. Our Legal Basis for Use of Your Data

a. Legal Grounds for the collection and processing of Personal Data:

  • Provision of the Services: Following your acceptance of this Privacy Policy, we collect and process your Personal Data to provide our Services (in accordance with this Privacy Policy, while using technical and organizational measures, and in accordance with contractual obligations pursuant to applicable law); to maintain and improve our Services; to develop new services and features for our users; and to personalize the Services in order to provide better user experience.
  • Legitimate interests: We process your Personal Data for our legitimate interests while applying appropriate safeguards that protect your privacy. Our legitimate interests may span things like detecting, preventing, or otherwise addressing fraud, abuse, security, usability, functionality, or technical issues with our Services, protecting against harm to the rights, property or safety of our properties, users, or the public as required or permitted by law; or enforcing legal claims, including investigation of potential violations of this Privacy Policy or defending against legal claims made by you or on your behalf.
  • With your consent: We ask for your agreement to process your Personal Data for specific purposes and you have the right to withdraw your consent at any time. For example, we ask for your consent to send you our marketing offers and communications;
  • Compliance with legal obligations: We may use your Personal Data in order to comply with any applicable law, rule, regulation, guidelines, industry standards or other governmental authority; respond to or defend against legal proceedings brought against us or our affiliates; prevent fraud; or investigate violations, and enforce our policies, including but not limited to our Terms & Conditions.

b. We may use your Personal Data for the following Purposes:

  • To provide, operate and improve the Services and manage our business;
  • To enable us to optimize and personalize our Services for you and for the device that you are using;
  • To send you updates, notices, notifications, announcements, and additional information related to the Services;
  • To create aggregated statistical data and other aggregated and/or inferred Non-Personal Data, which we may use to provide and improve our respective services;
  • If you are a Customer End-User to be able to contact you for the purpose of managing the engagement with you on behalf of the Customer and providing you with technical assistance, support and complaints and collect feedback, if you approach us with such requests and provide us with your contact details for such purpose;
  • If you are a Visitor to be able to contact you for the purpose of responding to any of your communications, providing you with support and information about our Websites, our Solution and any related services.
  • To verify your identity when we are approached with a request to exercise any rights available to you under this Privacy Policy or applicable law;
  • To prevent, detect, mitigate, and investigate fraud, security breaches or other potentially prohibited or illegal activities, including any breaches of this Privacy Policy or of our Site Terms of Use;
  • To perform functions or services as otherwise described to you at the time of collection;
  • To market our Services to Users or potential Users, and to be able to track and evaluate our marketing activities and their results and attribute different marketing achievements to the respective marketing efforts; and
  • To comply with any applicable rule or regulation, to protect our legal interests and/or respond to or defend against (actual or potential) legal proceedings against us or our affiliates.
  • To facilitate your candidacy to work for Hailo as further elaborated in Section 8 (“Job Candidates”) below.

We also analyze and use the Personal Data that we collect on an anonymized or aggregated basis for product development, to analyze the performance of our Services, to troubleshoot and to improve and optimize the Services and to ensure the best User experience for our users as a whole.

7. With Whom Do We Share Your Personal Data?

We may share your Personal Data with third parties (or otherwise allow them access to it) only in the following manners and instances:

  • Internal Concerned Parties: We share your Personal Data with our family companies, as well as our employees, for the purposes described in this Privacy Policy and in accordance with the terms of this Privacy Policy. In addition, should Hailo or any of its affiliates undergo any change in control, including by means of merger, acquisition, or purchase of substantially all of its assets, your Personal Data may be shared with the parties involved in such event under strict security conditions, for the purpose of evaluating such event and in accordance with the terms of this Privacy Policy. If we believe that such change in control might materially affect your Personal Data then stored with us, we will notify you of this event and the choices you may have via e-mail and/or prominent notice on our Services.
  • Protecting Rights and Safety: We may share Personal Data to enforce this Privacy Policy and/or the Site Terms of Use or any other contract signed with the Customer, including investigation of potential violations thereof; to detect, prevent, or otherwise address fraud, security or technical issues; to respond to claims that a content available on the Service violates the rights of third-parties; or otherwise if we believe in good faith that this will help protect the rights, property or personal safety of Hailo, any of our users, or any member of the general public.
  • Third Parties & Business Partners: When using our Services as a Customer End-User we will share your Personal Data with the applicable Customer with which you are affiliated (on behalf of whom we process your information), in accordance with the contractual obligations set forth between Hailo and the respective Customer.  We partner with certain third parties to provide selected services that are used to facilitate and enhance the Services and your use thereof (“Service Providers“). Such Service Providers may have access to, or process on our behalf Personal Data which we collect, hold, use, analyze, process and/or manage. These Service Providers include among others, hosting, database, and server co-location services (e.g., Amazon Web Services), data analytics services (e.g., Google Analytics), marketing and customer management services (e.g., Salesforce, Hubspot, N.rich, LinkedIn, Google), Internal workflow and communication services (e.g., Slack, Google Workspace, Microsoft Teams, Jira) payment processing services  (e.g., Stripe), user registration generation services (e.g., WordPress), Community platform (e.g., Discourse) and our business, legal and financial advisors. We remain responsible for any Personal Data processing done by a Service Provider on our behalf, except for events outside of our and/or their reasonable control, and except with respect to Service Providers with whom you are contractually engaged, either through a prior separate contractual engagement and/or through acceptance of their privacy policy and terms of use.
  • Law Enforcement Entities: We cooperate with government and law enforcement officials to enforce and comply with the law. We will disclose any data about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including but not limited to subpoenas), to protect our or a third party’s property and rights, to protect the safety of the public or any person, or to prevent or stop any activity we may consider to be, or to pose a risk of being, illegal, unethical, inappropriate or legally actionable.

8. Job Candidates

Hailo welcomes all qualified candidates (“Candidates”) to apply to any of the open positions posted on our Website, Facebook, LinkedIn, or other social networking platforms, by sending us their contact details, name and CV, LinkedIn profile, your Portfolio and any additional information you voluntarily provide us via your personal note, cover letter or similar documents (“Candidate Information”). We are committed to keeping Candidate Information private and use it solely for our internal recruitment purposes (including for identifying Candidates, evaluating their applications, making hiring and employment decisions, and contacting Candidates by phone or in writing).

Please note that Hailo may retain Candidate Information submitted to it even after the applied position has been filled or closed for a reasonable time period. This is done so we could re-consider Candidates for other positions and opportunities at Hailo; so, we could use their Candidate Information as reference for future applications submitted by them; and in case the Candidate is hired, for additional employment and business purposes related to their work. If you previously submitted your Candidate Information to Hailo, and now wish to access it, update it or have it deleted from our systems, please contact us at [email protected].

9. Storage and International Data Transfer

Information regarding the Users may be maintained, processed, and stored by us and our authorized affiliates and Service Providers in the EU. Where Hailo processes Personal Data on behalf of a Customer (including without limitation, Personal Data of Customer End-Users), such Personal Data will be processed in the locations as permitted and required by the Customer (as further described below).

While the data protection laws in the above jurisdictions may be different than the laws of your residence or current location, please know that we, our affiliates, and our Service Providers that store or process your Personal Data on our behalf, are each committed to keep it protected and secured, pursuant to this Privacy Policy and industry standards, regardless of any lesser legal requirements that may apply in our respective jurisdictions.

Specifically, each of our third party Service Providers which store or process your Personal Data have either:

  • (i) assured us that they provide adequate safeguards to protect your rights to privacy including, where applicable, by undertaking to comply with the EU Standard Contractual Clauses;
  • (ii) where applicable, hold and process such Personal Data on our behalf in jurisdictions which have been determined to ensure an adequate level of protection by the EU Commission;
  • (iii) perform such processing pursuant to your consent and acceptance of their privacy policy as detailed in this Privacy Policy.

By providing your Personal Data, you expressly consent to the place of storage and transfer described above, including transfers outside of the jurisdiction in which the information was provided.

10. Data Retention

We retain the Personal Data we collect or receive from you for as long as needed in order to provide the Services and as otherwise necessary to comply with applicable laws and regulations.

If you withdraw your consent to us processing your Personal Data, including by deleting your account, we will delete your Personal Data from our systems (except to the extent such data in whole or in part is required to comply with any applicable rule or regulation and/or to respond to or defend against legal proceedings brought against us or our affiliates), except where we process your information as a Processor on behalf of our Customer (such as your employer is a Customer who makes use of our Services, in which case data retention is subject to such Customer’s instructions). 

11. Data Security

We take great care in implementing and maintaining the security of the Services and of your Personal Data. We have implemented administrative, technical, and physical safeguards to help prevent unauthorized access, use or disclosure of your Personal Data. Your Personal Data is stored on secure servers and is not publicly available. We limit access of your Personal Data only to those employees, third-party Service Providers or other partners on a “need to know” basis, and strictly in order to enable us to perform our agreement with you.

Despite these measures, Hailo cannot provide absolute information security or eliminate all risks associated with Personal Data, and security breaches may happen. If there are any questions about security, please contact us at [email protected].

12. Your Rights

If for any reason you wish to exercise any rights to which you are entitled, you may do so by contacting us at [email protected]. When handling these requests, we may ask for additional information to confirm your identity and your request.

The rights which you may be able to exercise may include, but are not limited to, the following:

  1. Right of access. You may have a right to know what Personal Data we hold about you and, in some cases, to have the information communicated to you. We reserve the right to ask for reasonable evidence to verify your identity before we provide you with any information.
  2. Right to correct Personal Data. We endeavor to keep the information that we hold about you accurate and up to date. Should you realize that any of the Personal Data that we hold about you is incorrect, please let us know and we will use our best efforts to correct it as soon as we can.
  3. Data deletion. In some circumstances and under certain laws and regulations, you may have a right to request that some portions of the Personal Data that we hold about you be deleted or otherwise anonymized/de-identified.
  4. Data portability. In some circumstances and under certain laws and regulations, you may have the right to request that Personal Data which you have provided to us is provided to you, so you can transfer or port it elsewhere.

13. Children Privacy

To accept this Privacy Policy and use our Services, Users must be over eighteen (18) years of age. Therefore, we do not knowingly collect Personal Data from individuals under the age of eighteen (18) and we do not wish to do so. We reserve the right to request proof of age at any stage so that we can verify that individuals under the age of eighteen are not using the Services.

If you believe that we might have any information from or about an individual under the age of eighteen (18), please contact us at [email protected]. Should it come to our attention that a person under the age of eighteen (18) is using the Services, we may prohibit and block such User from using the Services and will make all efforts to promptly delete any Personal Data with respect to such User.

If you are submitting any Personal Data pertaining to any minor to the Services, you hereby represent and warrant that you have received all the necessary legal consents or approvals or that you are the parent or legal guardian and have the actual authority and legal right to upload, submit, disclose or otherwise share such Personal Data and/or any other form of sensitive information, on the minor’s behalf.

14. Data Controller/Processor

Under various privacy, data protection or similar laws, regulations, or additional legal frameworks, such as the GDPR or the CCPA, two separate roles for parties involved in the processing Personal Data typically apply:

  • The “data controller” (or under the CCPA, a “Business”), who determines the purposes and means of processing; and
  • The “data processor” (or under the CCPA, a “Service Provider” or “Contractor”), who processes such data on behalf of the data controller (or business). Below we provide additional information into how these roles apply to our Services, where such laws and regulations apply.

Hailo is the “data controller” of its Visitors and Candidates’ Personal Data, as detailed above. Accordingly, we assume the responsibilities of a data controller (solely to the extent applicable under law), as set forth in this Privacy Policy.

Hailo is the “data processor” of personal data contained in Customer End-Users’ Personal Data, as submitted or otherwise provided to us by our Customers and/or Customer End-Users. We process such data on behalf of our Customer (who, in turn, is the “data controller” of such data) and in accordance with its reasonable instructions, and our commercial agreements with such Customer.

Our Customers are solely responsible for determining whether and how they wish to use our Services, and for ensuring that all individuals using the Services on the Customer’s behalf or at their request, as well as all individuals whose personal data may be included in any Personal data processed through the Services, have been provided with adequate notice and given informed consent to the processing of their personal data, where such consent is necessary or advised, and that all legal requirements applicable to the collection, use or other processing of data through our Services are fully met by the Customer. Our Customers are also responsible for handling data subject rights requests under applicable law, by their Customer End-Users and other individuals whose data they process through the Services (and accordingly, if you are a Customer End-User or other individual whose Personal Data was provided to us in connection with Customer’s use of the Services, Hailo does not provide to you the rights set forth in Section 10 above).

If you would like to make any requests or queries regarding personal data we process as a data processor on our Customer’s behalf, including accessing, correcting, or deleting your data, please contact the Customer and/or an applicable Customer End-User directly.

15. General Information

a. CHANGES TO THE PRIVACY POLICY

This Privacy Policy is subject to changes from time to time, at our sole discretion. The most current version will always be posted on our Services (as reflected in the “Last Revised” heading). You are advised to check for updates regularly.

We will provide notice of substantial changes of this Privacy Policy on the homepage of the Website and/or we will send you an e-mail regarding such changes to the e-mail address that you may have provided to us. Such substantial changes will take effect seven (7) days after such notice was provided on our Services or sent by e-mail. Otherwise, all other changes to this Privacy Policy are effective as of the stated “Last Revised” date and your continued use of the Services after the Last Revised date will constitute acceptance of, and agreement to be bound by, those changes.

b. CONTACT US

If you wish to exercise your rights or receive more information regarding our privacy protection practices, please contact us using the details provided below:

Hailo Technologies Ltd.

[email protected]

 82 Yigal Alon Rd. Tel Aviv-Yaffo, Israel, 6789124