HiPepper← Back to home

Privacy Policy

Last updated: May 24, 2026

This Privacy Policy explains how Hi Pepper(“Hi Pepper,” “we,” “us”) collects, uses, and protects information when you use our WhatsApp-native CRM and related services (the “Service”). By using the Service, you agree to this Policy.

1. Who we are

Hi Pepper provides an AI assistant that lets businesses run their CRM, scheduling, invoicing, and customer messaging through chat. For privacy questions, contact us at hello@hipepper.app.

2. Information we collect

  • Account information — your name, phone number, email, business name, and login details.
  • Business data you create — contacts, companies, deals, invoices, appointments, notes, and similar records you enter or generate.
  • Messages & media — the content of WhatsApp/SMS messages, voice notes, and images you send through the Service so the AI can act on them.
  • Usage data — log data, device/browser information, and how you interact with the Service.
  • Payment information — processed by our payment provider (Stripe). We do not store full card numbers.

3. How we use your information

  • To provide, operate, and improve the Service.
  • To process your messages and power AI features (entity extraction, replies, automations).
  • To process payments, manage subscriptions, and send service-related communications.
  • To provide support, ensure security, and comply with legal obligations.

4. AI processing

To power its features, the Service sends relevant message content to third-party AI providers (such as Anthropic and OpenAI) for processing. We do not sell your data, and your business data is not used to train public third-party AI models.

5. How we share information

We share information only with service providers that help us run the Service, including:

  • Supabase — database & authentication
  • Vercel — hosting
  • Stripe — payment processing
  • Meta / WhatsApp Business & messaging partners — message delivery
  • Anthropic & OpenAI — AI processing

We may also disclose information to comply with the law or protect our rights. We do not sell personal information.

6. Data retention

We retain your information for as long as your account is active or as needed to provide the Service. You may request deletion of your data at any time (see “Your rights”).

7. Security

We use industry-standard measures (encryption in transit, access controls, row-level data isolation) to protect your information. No method of transmission or storage is 100% secure, but we work to protect your data.

8. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. Residents of the EEA/UK (GDPR) and California (CCPA) have additional rights. To exercise any of these, email hello@hipepper.app.

9. International transfers

Your information may be processed in countries other than your own. Where required, we rely on appropriate safeguards for such transfers.

10. Cookies

We use essential cookies to keep you signed in and to operate the Service. We may use limited analytics to understand usage.

11. Children

The Service is intended for businesses and is not directed to individuals under 18.

12. Changes to this Policy

We may update this Policy from time to time. We will post the updated version here with a new “Last updated” date.

13. Contact

Questions? Email hello@hipepper.app.