Privacy Policy

Last updated: April 11, 2026 | Effective date: April 11, 2026

HIVEMIND YT LLC ("Hivemind," "we," "us," or "our") operates the website hivemind.yt and its associated services (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Display name
  • Profile photo (if provided via Google/YouTube OAuth)
  • Account type (Creator or Viewer)
  • Authentication credentials (hashed, never stored in plaintext)

1.2 YouTube Data (Creator Accounts)

If you connect your YouTube channel, we access the following via the YouTube Data API v3 with your explicit authorization:

  • Channel metadata (name, description, subscriber count, video count)
  • Channel thumbnail
  • Video metadata (titles, descriptions, view counts, publish dates)
  • Video captions/transcripts (only for your own channel, with youtube.force-ssl scope)
  • Public comment data
  • Audience retention analytics (with YouTube Analytics API scope, if authorized)

We never post, edit, delete, or modify any content on your YouTube channel. All access is strictly read-only. You can revoke access at any time through your Google Account settings at myaccount.google.com/permissions.

1.3 Usage Data

  • Knowledge Base configurations and metadata
  • RAG chat queries and conversation history
  • Deep Research queries and results
  • Retention Lab analyses
  • Writers Room generated content
  • Sponsor Insight reports
  • Community Brain portal configurations
  • Feature usage patterns and interaction logs

1.4 Payment Information

Payment processing is handled entirely by Stripe, Inc. We do not store credit card numbers, CVVs, or full payment credentials on our servers. We store only:

  • Stripe Customer ID (for subscription management)
  • Subscription status and tier
  • Payment history (amounts, dates, status)

1.5 Cookies and Tracking Technologies

See our Cookie Policy for details on what cookies we use and how to manage them.

2. How We Use Your Information

  • Service Delivery: To provide, maintain, and improve the Hivemind platform
  • AI Processing: To generate knowledge bases, power RAG chat, run analyses, and create AI-assisted content
  • Personalization: To customize your experience based on your account type and preferences
  • Billing: To process payments and manage subscriptions
  • Communications: To send transactional emails (password resets, billing confirmations, security alerts)
  • Security: To detect, prevent, and address fraud, abuse, and security incidents
  • Legal Compliance: To comply with applicable laws, regulations, and legal requests

3. Third-Party Services

We use the following third-party services that may process your data:

  • Google Firebase: Authentication, database (Firestore), hosting, and Cloud Functions
  • Google Cloud: AI/ML services (Gemini API) for knowledge extraction and analysis
  • YouTube Data API v3: Channel and video metadata retrieval
  • Stripe: Payment processing and subscription management
  • Firecrawl: Web crawling for Deep Research features
  • Pinecone: Vector database for semantic search

Each third-party service has its own privacy policy. We encourage you to review them.

4. Data Retention

  • Account data: Retained while your account is active. Deleted within 30 days of account deletion request.
  • Knowledge Bases: Retained until you delete them or your account. Video embeddings and transcripts are purged on KB deletion.
  • Chat history: Retained until you clear it via Account Settings or delete your account.
  • Payment records: Retained for 7 years for tax and legal compliance.
  • YouTube OAuth tokens: Encrypted and stored server-side. Revoked on channel disconnect or account deletion.
  • Stripe webhook events: Event IDs retained for idempotency. No sensitive payment data stored.

5. Data Security

We implement industry-standard security measures:

  • All data transmitted over HTTPS/TLS 1.3
  • Firebase Authentication with secure token management
  • Firestore Security Rules enforce zero-trust access (users can only read their own data)
  • Sensitive fields (tier, billing, admin status) are write-protected and only modifiable server-side
  • OAuth tokens stored in private Firestore subcollections inaccessible to client code
  • Stripe webhook signatures verified for all payment events
  • Input validation and sanitization on all API endpoints
  • Rate limiting on all public-facing endpoints

6. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and associated data
  • Portability: Export your data in a machine-readable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdrawal of Consent: Withdraw consent for YouTube data access at any time

To exercise these rights, contact us at contact@hivemind.yt.

7. California Privacy Rights (CCPA)

California residents have specific rights under the California Consumer Privacy Act (CCPA). You have the right to know what personal information is collected, whether it is sold or disclosed, and to whom. You have the right to request deletion and to opt-out of any sale of personal information.

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

8. International Data Transfers

Your data may be processed in the United States, where our servers and third-party service providers are located. By using the Service, you consent to having your data transferred to and processed in the United States. We ensure that any transfers comply with applicable data protection laws.

9. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information immediately. If you believe a child under 16 has provided us with personal data, please contact us at contact@hivemind.yt.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions about this Privacy Policy, please contact us:

HIVEMIND YT LLC
Email: contact@hivemind.yt
Website: hivemind.yt