Welcome to Hashtag’d, a brand social content platform operated by Xeio Ltd, a company registered in England and Wales with company number 8134729.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services. Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it. We are registered with the UK Information Commissioner’s Office, with registration reference Z3404574.
Depending on who you are and how you use our services, our privacy obligations to you will vary. We have split this document into three sections: for “Visitors” to our website, who may be future Business Users or have questions about a campaign we power; for “Business Users” and their representatives, who are using our technology to power their campaigns; and for “Participants” whose content may be featured in a Business User campaign:
Last updated: November 2024
Xeio Ltd. is the Data Controller for the personal data of visitors to the Hashtag’d website.
We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy or as required by law.
Xeio Ltd. acts as the Data Processor for personal data processed on behalf of our Business Users and their representatives in connection with campaigns using the Hashtag’d platform. The Business User company is the Data Controller.
We retain Business User-related data for as long as necessary to provide our services or as required by the Business User or law.
We collect data from participants who upload content directly to a Business User campaign or whose data is gathered from Instagram or Twitter as part of a Business User campaign.
We retain participant data for the duration of the campaign or as required by the Business User or law.
Hashtag’d works with a number of third parties to deliver our products and services. We have detailed each below with a description of how we use their services. Our service providers are subject to contract terms designed to ensure that these service providers process personal data only for the purposes of providing services to Hashtag’d and in accordance with our commitments to Business Users and applicable data protection laws.
Google Cloud EMEA Limited, a company registered in Ireland: We contract with Google Cloud EMEA Limited to provide website hosting and associated technical services as part of their Google Cloud Platform offering. In delivering this functionality they may have access to Personal Data from Business Users, their Representatives, and Visitors. Their privacy policy can be found at https://cloud.google.com/terms/cloud-privacy-notice
Cloudflare, Inc., a company registered in Delaware, USA. We contract with Cloudflare to provide technical services associated with serving our website and application, including DNS resolution, security and server functionality. In delivering this functionality they may have access to Personal Data from Business Users, their Representatives, and Visitors. Their privacy policy can be found at https://www.cloudflare.com/en-gb/privacypolicy/
Chaport LLC, a company registered in California, USA. We contract with Chaport LLC to provide live chat services on our website and application. We do not routinely share Personal Data with them, however they process conversations between ourselves and our Business Users and their Representatives, and Visitors which may include Personal Data. In addition, given their live chat service is loaded by visitors to our website they will have access to IP address and other metadata which may be considered Personal Data. Full details of their privacy policy can be found at https://www.chaport.com/privacy
OpenAI LLC, a company registered in Delaware, USA. We contract with OpenAI LLC to provide content analysis services. We do not routinely share Personal Data with them, however they process uploaded content which Participants have shared with our Business Users and this could include Personal Data if the Participant included it. Their privacy policies are available at https://openai.com/policies/privacy-policy/
Stripe (various legal entities; see https://stripe.com/gb/legal/privacy-center) We interact with Stripe to handle payment processing’ personal data which Stripe may pass on to us on behalf of our Business Users may include name, email address, and other metadata related to purchases. Stripe may also pass on personal data about Business Users and their Representatives subject to their privacy policy at https://stripe.com/gb/privacy which is used on the basis of contractual obligation to our customers.
We set and use the following first-party cookies:
XSRF-TOKEN: A random string used to ensure requests are made by a user intentionally and not by a third party.
hashtagd_session: A random string used to ensure your session is maintained, allowing you to sign in to Hashtag’d and use our services.
chaport-XYZ (Where XYZ is various character combinations.): Used by our live chat provider Chaport LLC to provide chat support, subject to their privacy policy at https://www.chaport.com/privacy
You have the right to access, correct, or delete your personal data. If you wish to exercise these rights where we act as the Data Controller, or have any questions about this Privacy Policy, please contact us at info@hashtagd.net
We may update this Privacy Policy from time to time. We will notify Business Users of significant changes by email or through a notice on our website.
If you have any questions about this Privacy Policy, please contact us via live chat or by email to info@hashtagd.net