Privacy Policy

1. Who We Are

Operator: Tyler Ericcsen / HYPHO
Washington State, United States
Privacy contact: tyler.ericcsen@gmail.com

2. What We Collect and Why

Account Information

When you create a HYPHO account we collect:

• Email address — to identify your account
• Display name, if provided by your sign-in provider
• Authentication provider (email/password, Google, or Apple)
• A unique user ID generated by Firebase Authentication

Sign-In Data from Google and Apple

If you sign in with Google or Apple, those services share a limited profile with us as part of the authentication handshake. We never receive your Google or Apple password.

• Google Sign-In: name and email address
• Sign in with Apple: name and email address (or Apple's private relay email if you hide your real address)

Learning and Progress Data

To save your place and track what you have learned, we store the following in Firestore, linked to your user ID:

• Lessons and courses you have completed
• Your overall learning progress and lesson completion state
• App settings and preferences you have chosen
• Subscription and entitlement status

In-App Purchase and Subscription Status

If you subscribe to HYPHO, the transaction is processed entirely by Apple through the App Store using StoreKit. HYPHO receives only a confirmation of whether your subscription is active. We never receive your credit card number or any full payment details.

Crash and Diagnostic Data

The app uses Firebase Crashlytics to collect crash reports and basic app diagnostic data (device type, operating system version, app version, and a stack trace when a crash occurs). This data is used solely to identify and fix bugs. It is not linked to your name or email address.

Website Visitors (hypho.ai)

The HYPHO website does not directly collect personal information. Two services involved in running the site may process limited data automatically:

• Google Fonts — loads typography. Google may log your IP address and browser type when fonts are requested from Google's servers.
• Vercel — our website host. Vercel retains standard server access logs (IP address, browser type, pages visited, timestamps) for security and operational purposes.

3. What We Do Not Collect

• Phone numbers — the app does not support phone-based sign-in
• User-uploaded files or saved user content
• Advertising identifiers or ad-targeting data
• Third-party ad tracking or cross-app tracking
• Location data
• Contacts or camera access

We do not sell personal information. We do not use your data for advertising.

4. How We Use Your Information

• Create and manage your account
• Save and sync your learning progress across your devices
• Verify and process in-app purchase entitlements
• Maintain the technical operation and security of the app
• Identify and fix crashes and bugs
• Respond to your support requests
• Comply with legal obligations

5. Third Parties Who Receive Your Data

We share data only with the service providers required to operate HYPHO. We do not share data with advertising networks, data brokers, or any other third parties.

6. Account Deletion and Data Erasure

You have the right to delete your account and all associated personal data at any time.

• Use the account deletion option in the HYPHO app settings, or
• Email tyler.ericcsen@gmail.com with the subject line "Delete My Account"

We will process your request within 30 days. Deleting your HYPHO account removes the account data under our control, subject to any legal retention requirements. Firebase may retain anonymized technical logs for a limited period under Google's standard data retention policies.

7. Your Rights and Choices

Access and Correction

You can view and update your account information within the HYPHO app settings at any time.

Revoking Third-Party Sign-In

If you signed in with Google or Apple, you can revoke HYPHO's access through your Google or Apple account settings. Revoking access signs you out but does not delete your stored HYPHO data. Contact us to request full data deletion.

Washington State Residents

Under the Washington Privacy Act, you have the right to know what personal data we hold, correct inaccurate data, delete your personal data, and obtain a portable copy. To exercise any of these rights, contact us at tyler.ericcsen@gmail.com.

8. Data Retention

We retain your account data for as long as your account is active. When you delete your account, your account information and learning progress are deleted from Firestore. Crashlytics diagnostic data is anonymized and not linked to your account. Server logs retained by Vercel are governed by Vercel's own data retention policies.

9. Children's Privacy

HYPHO is not directed at children under 13. We do not knowingly collect personal information from anyone under 13. If you believe we have inadvertently collected information from a child under 13, contact us at tyler.ericcsen@gmail.com and we will delete it promptly.

10. Data Security

We rely on the security infrastructure provided by Google Firebase, which includes encryption at rest and in transit. No system is completely secure. If you believe your account has been compromised, contact us immediately at tyler.ericcsen@gmail.com.

11. Third-Party Links

The HYPHO website and app may contain links to external websites and social platforms. This Privacy Policy does not apply to those third-party services. We encourage you to review their privacy policies before sharing any personal information with them.

12. Changes to This Policy

We may update this Privacy Policy when the app changes. When we do, we will revise the "Last Updated" date at the top of this page. If changes materially affect how we handle your data, we will notify you via the app or by email. Continued use of HYPHO after changes take effect constitutes your acceptance of the updated policy.

13. Contact Us

For any privacy-related questions, data requests, or deletion requests: