PRIVACY POLICY

Last Updated: February 13th, 2025

1. Introduction

This Privacy Policy (this "Policy") is issued by Circles App, Inc. ("Company" or "we"), a Delaware C Corporation operating under the registered Doing Business As (DBA) name hubble. This Policy governs the collection, use, disclosure, and protection of personal information when you ("User" or "you") access or use the hubble platform (the "Platform"), including our website at www.hubble.social, mobile applications, and any related services provided by the Company.

We are committed to safeguarding your privacy and ensuring the security of your personal information. By using the Platform, you acknowledge that you have read, understood, and agreed to the practices described in this Privacy Policy. If you do not agree with this Privacy Policy, you should not use the Platform.

We recognize the trust you place in us when you share your personal information, and we take this responsibility seriously. Unless otherwise defined in this Privacy Policy, terms used herein have the same meanings as those set forth in our Terms of Service. This Privacy Policy is designed to help you understand:

  • The types of personal information we collect, including information you provide directly, information collected automatically, and information obtained from third parties;
  • The purposes for which we collect and use your information, such as to provide and improve the Platform, personalize your experience, communicate with you, and comply with legal obligations;
  • How we share your information with third parties, including service providers, business partners, and in compliance with legal requirements;
  • Your choices and rights regarding your personal information, including how you can access, update, export, or delete your data; and
  • The security measures we implement to protect your personal information from unauthorized access, disclosure, alteration, or destruction.
  • Fraud Prevention & Compliance: To the best of our abilities, we monitor user activity to detect and prevent fraudulent transactions, unauthorized access, and violations of our Terms of Service.

By continuing to use the Platform, you consent to the collection, use, and sharing of your personal information as described in this Privacy Policy. If you have any questions or concerns, please contact us at info@hubble.social.

2. Important Information and Who We Are

2.1 Scope of Data Collection

Our Platform collects only the personal information necessary to provide and operate our services effectively. This includes data required to facilitate user interactions, display accurate information on the user dashboard, coordinate communications essential for the proper functioning of the Platform, and process payments securely. To ensure smooth and accurate payment transactions, we may collect and process payment-related information, including but not limited to billing details, transaction history, and necessary identifiers. We do not collect any unnecessary personal information beyond what is required for these purposes.

2.2 Third-Party Platforms and Liability Disclaimer

Our Platform enables Users to connect and communicate through third-party services, such as Google Meet and Zoom, for Consultation Calls and Subscription-based Services. However, these services are operated by independent third parties, and we do not control or assume responsibility for their functionality, availability, security, or any issues that may arise during interactions on these platforms. By using these third-party services, Users acknowledge and agree that the Company is not liable for any disputes, technical failures, data breaches, damages, or other incidents that may occur while using such external services. Any terms, conditions, privacy policies, or security measures of third-party platforms are solely the responsibility of the respective service providers.

2.3 Platform Responsibilities and Data Transfers

Our Platform's primary role is to facilitate user connections, securely process payments, and ensure that the correct information is displayed on the user dashboard. We do not sell, rent, or share personal data with third parties except when it is essential to the operation of our services. However, to enable Consultation Calls and Subscription-based Services, our Platform may need to integrate with and transmit necessary user data to third-party services such as Google and Zoom. These integrations are strictly limited to what is required for functionality and do not constitute an endorsement or assumption of liability for the actions of these third parties.

2.4 Legal Compliance and Data Disclosure

We may be required to disclose personal information if mandated by law, legal process, or governmental request. Such disclosures may be necessary to comply with applicable laws, respond to legal claims, enforce our Terms of Service, protect the rights, property, or safety of our Users, or detect and prevent fraud or security issues. Any disclosure will be carried out in accordance with applicable legal requirements and to the minimum extent necessary.

2.5 User Acknowledgment

By using our Platform, you acknowledge that third-party platforms operate independently and that our involvement is limited to facilitating connections and ensuring payment processing. You understand and agree that any use of external services is at your own risk, and any issues or disputes arising from the use of third-party platforms should be resolved directly with the respective service provider. Additionally, you acknowledge that we may be legally required to share personal data under certain circumstances as outlined in this Policy.

3. Information We Collect

3.1 Personal Information

We collect personal information that you provide directly when using our Platform. This information is necessary to create and manage your account, facilitate interactions, and enable secure transactions. The types of personal information we collect include:

  • Account Information: First name, last name, email address, and username.
  • Profile Information: Profile image (optional), phone number (optional for Learners, required for Experts), and LinkedIn URL (Experts only).
  • Expert-Specific Details: Headline text, advice list, About Me section, personal quote, quote image, and time availability.
  • Payment Information: If necessary for payment processing, we securely collect and store bank account numbers and routing numbers to facilitate transactions.

We collect only the information required to operate our Platform effectively and do not request or store unnecessary personal data.

3.2 Automatically Collected Personal Information

When you interact with our Platform, we automatically collect certain technical and usage information to enhance security, improve functionality, and optimize user experience. This data is gathered through cookies, log files, and other tracking technologies. The types of information we collect include:

  • Device and Technical Information: Your IP address, browser type and version, operating system, time zone setting, language preferences, screen resolution, and device type (e.g., desktop, mobile, or tablet).
  • Usage and Interaction Data: The URLs of pages you visit, the date and time of your access, time spent on pages, navigation patterns, clicks, scrolls, and interactions with Platform features.
  • Performance and Diagnostic Data: Error logs, loading times, and crash reports to help us identify and resolve technical issues.
  • Location Data: Approximate geolocation based on your IP address to tailor content and services based on regional availability, where permitted by law.

4. Information We Use

We use the information we collect to provide and improve our Platform, personalize your experience, communicate with you, and comply with legal obligations. The specific purposes for which we use your information include:

  • Account Management: To create and manage your account, facilitate interactions, and enable secure transactions.
  • Platform Improvement: To enhance security, improve functionality, and optimize user experience.
  • Communication: To communicate with you, including responding to your inquiries and providing updates about the Platform.
  • Legal Compliance: To comply with legal obligations and respond to legal claims.

5. Information We Share

5.1 Third-Party Service Providers

We may share your information with third-party service providers who assist us in providing and operating our Platform. These providers are contractually obligated to protect your information and are prohibited from using it for any other purpose.

5.2 Business Partners

We may share your information with business partners who assist us in providing and operating our Platform. These partners are contractually obligated to protect your information and are prohibited from using it for any other purpose.

5.3 Legal Compliance

We may disclose your information if required by law, legal process, or governmental request.

5.4 Payment Processing

  • Stripe – We use Stripe as our payment processor to securely handle transactions. Stripe processes payment details such as credit card information, billing address, and payment history in order to facilitate secure payment transactions for Consultation Calls and Subscription-based Services.
  • Stripe's privacy practices are governed by its own privacy policy, which Users can review for more details on how their payment information is processed and stored.

We only share the minimum necessary data with third-party providers to ensure Platform functionality. Our integrations comply with relevant data protection laws, and we take measures to ensure that external services meet industry security standards.

For more information on how these providers handle your data, please review their respectiveprivacy policies.

6. Data Security

We take the security of your personal information seriously and have implemented robust security measures to safeguard against unauthorized access, use, alteration, or destruction of your data. These measures include, but are not limited to:

  • Encryption: We utilize industry-standard encryption protocols (including TLS) to protect data in transit and encryption at rest to secure your data when it is stored.
  • Access Control: We apply strict access controls to ensure that only authorized personnel have access to personal information. These controls are regularly reviewed and updated.
  • Security Monitoring: We employ continuous security monitoring to detect and respond to potential security incidents. This includes the use of automated tools to detect vulnerabilities and suspicious activities.
  • Regular Security Audits: We conduct periodic security assessments and audits to identify potential weaknesses and improve our security posture, ensuring compliance with industry best practices and data protection regulations.
  • Data Minimization: We ensure that only the minimum necessary personal data is collected, stored, and processed to reduce the risks associated with data exposure.

In the event of a data breach that is likely to result in a high risk to your rights and freedoms, we have established incident response procedures to manage and mitigate the breach. We will notify affected Users without undue delay and, where feasible, provide information regarding the nature of the breach, the data affected, and the measures we are taking to address it. Our commitment is to ensure transparency and take swift action to protect your information.

We also review and update our security practices regularly in line with evolving threats and technological advancements.

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy and to comply with our legal, contractual, and operational obligations. Our data retention practices are guided by the following principles:

  • Purpose of Data Collection: We retain personal information only as long as it is required to provide our services, fulfill contractual obligations, and meet the specific purposes for which the information was collected.
  • Legal and Regulatory Requirements: We retain data to comply with applicable laws and regulations, including tax, financial, and legal obligations. Retention periods may vary depending on the specific regulatory requirements for the services we offer.
  • Statutes of Limitations: We retain personal data for the duration of any applicable statutes of limitations for legal claims, disputes, or investigations, which may vary by jurisdiction.
  • Legitimate Business Interests: We retain information where it is necessary for the pursuit of our legitimate business interests, such as maintaining accurate records, ensuring compliance with legal obligations, and improving our Platform.

8. Cookies and Tracking Technologies

We use cookies and other tracking technologies to enhance your experience on our Platform. Cookies allow us to collect information about your usage patterns, preferences, and device information to improve our services and deliver personalized content. You can control or disable cookies through your browser settings, but please note that some features of our Platform may not function as intended if cookies are disabled.

9. Children's Privacy

Our Platform is not intended for users under the age of 18 and we do not knowingly collect or process personal data from children. If we become aware that we have inadvertently collected personal information from a child, we will take immediate steps to delete that information. If you are a parent or guardian and believe that we have collected data from a child, please contact us immediately.

10. Changes to the Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify users of any material changes to this Privacy Policy by posting a notice on our Platform or by sending an email to the address associated with your account. Please review this Privacy Policy periodically to stay informed about how we are protecting your personal information.

11. Your Privacy Rights and Choices

11.1 Access and Control

You have significant rights regarding your personal information under applicable data protection laws, including:

  • Access: You may request access to the personal information we hold about you.
  • Correction: If any of your personal information is inaccurate or incomplete, you may request it be updated or corrected.
  • Erasure or Restriction: In certain circumstances, you have the right to request the deletion or restriction of the processing of your personal information.
  • Data Portability: You may request a copy of your personal information in a structured, commonly used, and machine-readable format for transfer to another service provider.

11.2 Data Subject Rights (for California Residents)

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA), including:

  • Right to Access: You have the right to request access to your personal information.
  • Right to Deletion: You have the right to request that we delete your personal information.
  • Right to Opt-Out: You have the right to opt-out of the sale of your personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your rights.

11.3 GDPR Data Subject Rights (for EU Residents)

If you are an individual located in the European Union (EU) or European Economic Area (EEA), you have specific rights under the General Data Protection Regulation (GDPR), including:

  • Right to Access: You have the right to request a copy of your personal information.
  • Right to Rectification: You have the right to correct any inaccurate information.
  • Right to Erasure: You have the right to request deletion of your personal information.
  • Right to Restriction: You have the right to request restriction of processing.
  • Right to Data Portability: You have the right to receive your data in a portable format.
  • Right to Object: You have the right to object to certain processing activities.

11.4 Exercising Your Rights

To exercise any of your privacy rights, please contact us at info@hubble.social. We will respond to your request within the applicable timeframe required by law.

11.5 Cross-Border Data Transfers

Your personal information may be transferred to, stored, and processed in countries outside your country of residence, including the United States. We take appropriate steps to ensure that your personal information remains protected, including implementing safeguards for international transfers as required by applicable data protection laws.

Contact Information

If you have any questions or concerns about this Privacy Policy or wish to exercise any of your data subject rights, please contact us at:

Circles App, Inc. (DBA hubble)

Headquarters: at 237 Watson Drive Campbell, CA 95008 United States

Email: info@hubble.social

© 2025 hubble. All rights reserved.