Privacy Policy

Last updated: April 4, 2026

This Privacy Policy explains how GetHug collects, uses, stores, and discloses personal data when you create an account, use the platform, run workflows, save content, or otherwise interact with the service. It also explains your choices and rights in relation to that information.

Please read this Privacy Policy together with our Cookie / Storage Notice, which explains cookies and similar technologies used on your device or browser.

1. Who we are

GetHug is an online platform that allows users to work with Python-based workflows and graph workflows, including generating, modifying, running, and saving scripts, graphs, graph recipes, and generated files.

Depending on the feature used, users may also upload scripts or input files, run temporary workflow sessions, and choose whether to save certain outputs or projects for later reuse through the dashboard.

For the purposes of applicable privacy law, the controller of your personal data is:
[COMPANY / LEGAL NAME]
[OFFICE ADDRESS]
[CONTACT EMAIL]

2. Personal data we collect

a. Account and signup information

When you create an account, we may collect information such as your email address, password (stored in hashed form), country, account verification status, and related account administration data. If you choose to provide optional profile information, we may also collect items such as profession, professional interests, or other account-related preferences you voluntarily submit.

Please do not include sensitive personal information in optional free-text profile fields unless we specifically ask for it and provide a lawful basis for doing so.

b. Workflow and user-submitted content

When you use GetHug workflows, we may collect and process content that you submit or generate through the Service. This may include Python scripts, MATLAB scripts, uploaded input files, graph data, graph settings, prompts, workflow inputs, execution parameters, generated outputs, and other content necessary to provide the requested workflow. Where you use AI-assisted features, including code generation, code modification, code repair, explanation, summarization, translation, or MATLAB-to-Python conversion, relevant content may be transmitted to third-party AI service providers, including OpenAI, for the purpose of providing the requested feature.

c. Saved content

If you choose to save content in your account, we may store saved scripts, uploaded scripts, saved generated files, saved graph projects, saved graph recipes, and other user-selected outputs so that you can reopen, reuse, modify, download, or manage them later through your dashboard or related areas of the service.

d. Technical, operational, and security data

We may collect technical and operational information such as login activity, job metadata, request data, security events, device or browser-related information, IP-address-related logs, and other records needed to secure the service, detect abuse, troubleshoot problems, maintain availability, or defend legal claims.

3. How we use personal data

We use personal data to:

4. Lawful bases for processing

Depending on the context, we rely on one or more of the following lawful bases:

a. Contract or steps taken at your request before entering a contract

We process personal data where necessary to create your account, provide login functionality, operate requested workflows, store content you choose to save, and otherwise provide the core GetHug service you request.

b. Legitimate interests

We process personal data where necessary for our legitimate interests in operating, securing, improving, and administering the service, including fraud prevention, abuse monitoring, troubleshooting, service reliability, and protection of our legal rights, provided those interests are not overridden by your rights and freedoms.

c. Legal obligation

We may process and retain personal data where necessary to comply with applicable law, lawful requests, regulatory requirements, or recordkeeping obligations.

d. Consent

If we rely on consent for any specific processing activity, such as optional communications or future non-essential tracking technologies, we will request that consent where required and explain how it can be withdrawn.

5. Temporary workflow storage

To operate user-requested workflows, GetHug creates temporary workflow-related storage on our systems. Depending on the workflow, this may include temporary session folders containing scripts, uploaded input files, graph data, prompts, execution parameters, intermediate files, and output files created during processing.

This temporary storage is used only to provide the requested workflow, deliver results, maintain service continuity, support limited troubleshooting, and protect the security and integrity of the platform. Temporary workflow storage is not intended as permanent user storage unless you explicitly save the relevant content through platform features designed for ongoing access.

Temporary workflow folders and related transient processing files are scheduled for deletion automatically under our workflow cleanup rules after a limited retention period. In limited cases, some temporary records may be retained longer where reasonably necessary for security, fraud prevention, error investigation, service integrity, or legal compliance.

You acknowledge that we do not independently verify your ownership, license status, or other rights in content submitted through the Service, and that you remain solely responsible for obtaining any required permissions from third parties before submitting such content for processing.

6. Saved and persistent content

If you choose to save content through the platform, we may store that content on a more persistent basis so that it remains available in your account or dashboard. This may include saved generated output files, saved Python scripts, saved graph projects, saved graph recipes, and similar user-selected content.

Persistent saved content remains stored until one of the following happens:

7. How long we keep personal data

We keep personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

In practice, this means:

Where a fixed retention period is not stated, we determine retention by considering the nature of the data, the purpose for which it was collected, the sensitivity of the information, the risk of harm from unauthorized use or disclosure, and any legal or operational requirements that apply.

8. Sharing of personal data

We do not sell personal data as that term is commonly understood. We may share personal data only as necessary in the following circumstances:

If you use third-party integrations or payment-related features, additional privacy terms from those providers may apply to the information they process.

When you use AI-assisted features, relevant content may be processed by OpenAI through its API as a service provider to help us deliver those features. Depending on the feature used, this may include prompts, source code, converted code, uploaded files, workflow instructions, and related content submitted for processing. We encourage users not to submit sensitive personal data, confidential information, trade secrets, or other highly sensitive material to AI-assisted features unless doing so is necessary and lawful for the requested use. According to OpenAI’s current public documentation for business and API services, API customer data is not used to train OpenAI models by default unless the customer affirmatively opts in to data sharing or a similar program.

9. International transfers

Your personal data may be processed or stored in countries other than the country in which you are located, including where our service providers or infrastructure providers operate. Where applicable law requires it, we will take appropriate measures intended to protect personal data transferred internationally.

10. Security

We use technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. However, no internet-based service can guarantee absolute security. You are responsible for keeping your account credentials confidential and for using the platform responsibly.

11. Your rights

Depending on the law that applies to you, you may have rights such as the right to request access to personal data, correction of inaccurate data, deletion, restriction, objection to certain processing, portability, or withdrawal of consent where processing is based on consent.

To exercise any applicable rights, please contact us at [CONTACT EMAIL]. We may need to verify your identity before responding to a rights request.

If you are in the United Kingdom, you may also have the right to lodge a complaint with the Information Commissioner’s Office. If you are in California or another jurisdiction with specific privacy rights, you may have additional rights subject to applicable law.

12. Children

GetHug is not directed to children, and we do not intend to knowingly collect personal data from children where doing so would violate applicable law. If you believe a child has provided personal data to us in error, please contact us so that we can review and take appropriate action.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the service, our processing practices, or legal obligations. When we do, we will update the “Last updated” date at the top of this page.

14. Contact

If you have questions about this Privacy Policy or wish to exercise an applicable privacy right, please contact us at:
[COMPANY / LEGAL NAME]
[CONTACT EMAIL]