Legal

Privacy Policy

Effective: May 19, 2026 Last updated: May 19, 2026

Hailo LLC ("Hailo," "we," "us," or "our") operates the Hailo platform — an all-in-one application for filmmakers that manages client relationships, edits footage, and delivers final work to clients. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have.

By using Hailo, you agree to the practices described here.

1. Who we are

Hailo is a product of Hailo LLC, a Colorado limited liability company.

Questions, requests, or concerns about your data:

2. Information we collect

2.1 Information you give us directly

When you create a Hailo account or use the product, you may provide:

  • Your name, business name, and email address
  • Billing information (processed by Stripe — we do not store full card numbers)
  • Client and event records you create inside Hailo (your client's names, contact info, wedding dates, venues, etc.)
  • Files you upload (video footage, photos, brand assets, delivery covers)
  • Form responses your clients submit through embedded Hailo forms

2.2 Information from connected Google accounts

When you connect your Google account to Hailo, we request the minimum scopes needed to provide the features you turned on. We currently use:

  • gmail.send — used solely to send emails from your Gmail address on your behalf (proposals, invoices, client correspondence you compose inside Hailo). We do not read your inbox, search your mail, or access any messages you did not send through Hailo.
  • calendar.events — used to create, update, and delete calendar events for the weddings and shoots you schedule in Hailo. We only touch events Hailo creates or that you explicitly link to a Hailo event.
  • userinfo.email — used to confirm which Google account you connected so we can show it back to you and prevent accidental cross-account writes.

We store the OAuth access and refresh tokens Google issues us, plus the email address of the connected account. We do not store the contents of your inbox or your full calendar. Outgoing emails Hailo sends on your behalf are logged in your local Hailo database so you have a record of communications with each client.

2.3 Information from other connected services

If you connect Stripe, Square, or other third-party services, we receive only the data needed to operate that integration (e.g., payment status, payout records). Each integration is opt-in.

2.4 Information collected automatically

  • Basic usage telemetry (which features are used, error reports) so we can improve the product. This data is aggregated and does not identify individuals.
  • Standard server logs (IP address, browser, timestamps) retained for security and debugging.

3. How we use information

We use the information described above to:

  • Provide, maintain, and improve the Hailo platform
  • Send the emails and create the calendar events you ask Hailo to send and create
  • Process subscription payments
  • Respond to your support requests
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations

We do not use data from Google APIs to develop, improve, or train generalized AI and/or machine-learning models.

4. Google API Services User Data Policy — Limited Use

Hailo's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  1. We use Google user data only to provide and improve the user-facing features that are prominent in the Hailo interface and that the user explicitly enabled.
  2. We do not transfer Google user data to third parties except as necessary to provide or improve user-facing features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to users.
  3. We do not use Google user data for advertising.
  4. We do not allow humans to read Google user data unless we have your affirmative consent for specific messages, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or for internal operations where the data has been aggregated and anonymized.

5. How we share information

We share information only as needed to run the service:

  • Service providers (e.g., cloud hosting, Stripe for payments, email delivery infrastructure) under contracts that bind them to confidentiality and the use restrictions in this policy
  • Your clients, when you choose to share something with them (e.g., publishing a delivery page or sending them a proposal)
  • Legal authorities, when required by valid legal process
  • In a business transfer, if Hailo is acquired or merged, subject to the protections in this policy

We do not sell your personal information. We do not sell or share your clients' personal information.

6. Data retention

  • Account and client data: retained for as long as your Hailo account is active. If you cancel, we retain it for 30 days to allow reactivation, then delete unless legal obligations require longer retention.
  • Google OAuth tokens: stored as long as the integration is connected. Revoking the integration in Hailo immediately deletes the tokens from our systems. Revoking access at myaccount.google.com/permissions also invalidates them.
  • Server logs: 90 days.
  • Backups: rolling 30-day window.

7. Your choices and rights

You can:

  • Access, update, or delete your account information from inside Hailo, or by emailing support@hailo.studio
  • Disconnect any integration at any time from Hailo's Settings → Integrations page
  • Revoke Hailo's access to your Google account at any time at myaccount.google.com/permissions
  • Request a copy of the personal data we hold about you
  • Request deletion of your account and associated data

If you are in California, the EU, the UK, or another jurisdiction with specific data-protection rights (CCPA, GDPR, etc.), those rights apply and you may exercise them by emailing support@hailo.studio.

8. Security

We use industry-standard measures to protect information, including encryption in transit (TLS), encryption at rest for sensitive credentials, scoped OAuth tokens, and access controls limiting who on the Hailo team can see customer data. No system is perfectly secure; we will notify affected users of any confirmed breach as required by applicable law.

9. Children

Hailo is not directed to children under 16 and we do not knowingly collect information from them. If you believe a child has provided information to Hailo, contact support@hailo.studio and we will delete it.

10. International data transfers

Hailo is operated from the United States. If you access Hailo from outside the U.S., your information will be transferred to and processed in the U.S. By using Hailo, you consent to that transfer.

11. Changes to this policy

We may update this policy from time to time. Material changes will be announced inside the Hailo app and via email to the address on file. The "Last updated" date at the top reflects the most recent revision.

12. Contact

For any privacy-related question or request:

Hailo LLC

Email: support@hailo.studio

Web: hailo.studio