Effective Date: 12 March 2026 · Last Updated: 12 March 2026
This Privacy Policy describes how HiloTools ("HiloTools," "we," "us," "our") collects, uses, discloses, and otherwise processes Personal Data in connection with: (i) the website hilotools.com (the "Website"); and (ii) any hosted software, tools, APIs, client portals, dashboards, documentation portals, or professional services that reference or link to this Privacy Policy (collectively, the "Services").
The Website and Services are operated by:
HiloTools Inc. (a corporation incorporated in Delaware, United States).
Registered office: 251 Little Falls Drive, Wilmington, New Castle County, Delaware 19808
Hilo Tools S.A.S. (Colombia), identified as NIT 901731290-4, domiciled in Bogotá D.C., Colombia.
Registered office: Cra 4 No 80-28 Of 802
We act as an independent controller for Personal Data we process to operate the Website, manage leads and enterprise relationships, administer accounts, invoice, maintain security, manage vendors, and comply with legal obligations. Where a business customer uses our Services and provides Customer Content for processing on its behalf, the customer is typically the controller and we act as a processor.
Privacy inquiries and rights requests: contact@hilotools.com
Recommended subject line: "Data Protection Rights Request"
This Privacy Policy applies to Personal Data processed when you access or use the Website, submit inquiries through forms, communicate with us, access Services that require authentication, or interact with cookies and similar technologies.
Personal Data: information relating to an identified or identifiable individual.
Customer Content: any data submitted to the Services by or on behalf of a business customer.
Subprocessor: a third party engaged by HiloTools to process Personal Data on HiloTools' behalf.
Identity and contact data (name, business email, phone, job title, company), inquiry and communications content, and commercial and contracting data.
Device and technical data (IP address, device type, OS, browser, timestamps), usage and interaction data (navigation paths, page views, session diagnostics), and security telemetry.
Business contact enrichment from public professional sources and security and fraud signals from security providers.
The Website is not designed to solicit Sensitive Data. Do not submit Sensitive Data unless explicitly requested under a secure channel within a formal engagement.
Contract: To provide requested Services, respond to inquiries, prepare proposals, and administer accounts.
Consent: For non-essential cookies and certain marketing communications where required.
Legitimate interests: Securing and improving the Website, preventing fraud, internal analytics, and B2B relationship management.
Legal obligations: To comply with applicable laws including accounting, tax, and regulatory requirements.
We may use strictly necessary cookies, functional cookies, analytics/performance cookies, and marketing cookies where enabled. Where required by law, we implement a cookie banner and preference controls to obtain and manage consent for non-essential cookies.
We engage subprocessors for cloud hosting, content delivery, communications tooling, customer support, monitoring, and professional services. All subprocessors are required by written contract to process Personal Data only on documented instructions, maintain confidentiality, and implement appropriate security measures.
Personal Data may be processed in the United States, Colombia, and other jurisdictions where our vendors operate. Where GDPR/UK GDPR cross-border rules apply, we rely on adequacy decisions, EU Standard Contractual Clauses, and supplemental measures where required.
We retain Personal Data only for the period necessary to fulfill the purposes described in this Policy, unless longer retention is required by law or contract. When data is no longer necessary, we delete it or irreversibly anonymize it.
We maintain an information security program using authentication controls, encryption in transit and at rest, logging and monitoring, secure development practices, and privacy and security training. No method of transmission or storage is absolutely secure.
Depending on your jurisdiction, you may have rights including access, correction, deletion, restriction, objection, data portability, and withdrawal of consent. To submit a request, email contact@hilotools.com with the subject line "Data Protection Rights Request."
We do not sell personal information for monetary consideration. Subject to applicable exceptions, California residents may have the right to know, access, delete, correct, and opt out of sale or sharing.
The Website and Services are not directed to children. We do not knowingly collect Personal Data from children in circumstances requiring parental consent.
We may update this Privacy Policy periodically. The "Last Updated" date indicates the effective version. If changes are material, we will provide additional notice where required by law.
Privacy-related disputes will be governed by the governing law and dispute resolution approach set out in applicable Website terms and/or the relevant Service agreement.