Privacy Policy

Last Updated: October 31, 2025

Introduction

Hippo ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, including our website and AI-powered voice agents for healthcare practice lead generation.

Information We Collect

Information You Provide

We collect information that you voluntarily provide to us, including:

  • Contact information (name, email address, phone number)
  • Practice information (practice name, specialty, location)
  • Account credentials
  • Payment information (processed securely through third-party providers)
  • Communications with us

Information Collected Automatically

When you use our services, we automatically collect:

  • Device information (IP address, browser type, operating system)
  • Usage data (pages visited, features used, time spent)
  • Cookies and similar tracking technologies
  • Call recordings and transcripts (with consent, for quality assurance)

Patient Information

Our voice agents may collect patient information on behalf of healthcare providers. This information is collected with consent and handled in compliance with HIPAA and other applicable healthcare privacy regulations.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send administrative information, updates, and security alerts
  • Respond to your inquiries and provide customer support
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and fraudulent activity
  • Comply with legal obligations
  • Send marketing communications (with your consent)

How We Share Your Information

We may share your information with:

  • Service Providers: Third-party vendors who perform services on our behalf (hosting, analytics, payment processing)
  • Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition
  • Legal Requirements: When required by law or to protect rights, property, or safety
  • With Your Consent: When you authorize us to share information

We do not sell your personal information to third parties.

Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

HIPAA Compliance

For healthcare providers using our services, we act as a Business Associate under HIPAA. We maintain appropriate safeguards for Protected Health Information (PHI) and will enter into Business Associate Agreements (BAAs) as required. Patient information is handled in accordance with HIPAA Privacy and Security Rules.

Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When information is no longer needed, we will securely delete or anonymize it.

Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your information
  • Portability: Request a copy of your information in a portable format
  • Opt-Out: Opt out of marketing communications
  • Restriction: Request restriction of processing

To exercise these rights, please contact us at privacy@tryhippo.ai

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our services and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our services.

Third-Party Links

Our services may contain links to third-party websites. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

International Data Transfers

Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. By using our services, you consent to such transfers.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy, please contact us:

State-Specific Privacy Rights

California Residents

Under the California Consumer Privacy Act (CCPA), California residents have additional rights, including the right to know what personal information we collect, use, and disclose, and the right to request deletion of personal information. California residents also have the right to opt-out of the sale of personal information (we do not sell personal information).

Other U.S. States

Residents of Virginia, Colorado, Connecticut, Utah, and other states with comprehensive privacy laws may have additional rights regarding their personal information. Please contact us to exercise these rights.