App Privacy Policy


Last Updated: May 2026

This App Privacy Policy outlines the manner in which Hiveact collects, uses, maintains, and discloses information collected from users (referred to as "Users" or "you") of the Hiveact mobile  application for iOS and Android ("App"/ "application"), operated by Hiveact (“Hiveact”, “we”, “our”, or “us”)This Privacy Policy applies specifically to the application and supplements our main Privacy Policy. By using the Hiveact App, you agree to the collection and use of information in accordance with this policy.

  1. Personal Identification Information: Hiveact may collect personal identification information from Users including their name, email address, mailing address, phone number, account credentials, payment information, and other information Users choose to include in their profile. Users may, however, visit our application anonymously. We may collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personal identification information, except that it may prevent them from engaging in certain application-related activities.
  2. Activity and Performance Data: In connection with the use of the App and related fitness or training features, we may collect workout history, training session statistics, performance metrics, device interaction data and exercise session timestamps related to App functionality and connected devices.
  3. Device and Technical Information: We may collect certain technical and diagnostic information including mobile device type, operating system and version, App version, device identifiers, crash reports and diagnostic information.
  4. Bluetooth and Connectivity Data: The App may use Bluetooth functionality to connect with Hiveact hardware devices and synchronize training data thus requiring Bluetooth Permissions and Notification Permissions.  Bluetooth connectivity is used for purposes such as communication with Hiveact hardware devices. Disabling Bluetooth functionality or denying required permissions may limit or prevent certain App features from functioning properly.
  5. Analytics Information: Hiveact may use Firebase for Push Notifications and Firebase Google for Analytics to understand App usage, improve performance, and monitor service stability.
  6. Other Non-Personal Identification Information: Hiveact may collect non-personal identification information about Users whenever they interact with our application. Non-personal identification information may include the browser name, the type of computer or device, and technical information about Users' means of connection to our application, such as the operating system and the Internet service providers utilized, and other similar information.
  7. .Browser Cookies: Our application may use "cookies" to enhance User experience. Users' web browsers place cookies on their hard drives for record-keeping purposes and sometimes to track information about them. Users may choose to set their web browser to refuse cookies or to alert them when cookies are being sent. If they do so, note that some parts of the application may not function properly.
  8. How We Use Collected Information: Hiveact may collect and use Users' information for the following purposes: 
  • To process payments: We may use the information Users provide about themselves when placing an order only to provide service to that order. We do not share this information with outside parties except to the extent necessary to provide the service.
  • To send periodic emails: We may use the email address to send User information and updates pertaining to their order. It may also be used to respond to their inquiries, questions, and/or other requests.
  • To provide and maintain the App, and improve App functionality
  • To troubleshoot crashes, technical issues, and operational problems
  • To communicate important service updates
  • To protect platform security
  • To authenticate Users
  • To synchronize workout and  training history
  • To analyze usage trends

9.    Data Storage and Security: Your data is securely stored using cloud infrastructure and protected through commercially reasonable administrative, technical, and organizational safeguards. However, no method of electronic storage, transmission, or security system is completely secure.

10.   Data Sharing and Disclosure: We do not sell, trade, or rent Users' personal identification information. We may share personal or technical information with trusted third-party service providers supporting the App. We may also disclose information where required by law or where necessary to protect legal rights and  platform security. In addition, information may be shared in connection with a merger, acquisitions or restructuring events. Hiveact may share generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our business partners, trusted affiliates, and advertisers for the purposes outlined above

11.    Data Retention: Hiveact retains personal data only for as long as necessary to provide and maintain the App and related services, comply with legal and regulatory obligations, resolve disputes and enforce agreements.

12.  Third-Party Applications and Services: The App may contain links, integrations, advertising, or other content connected to third-party applications, websites, products, or services operated by our partners, suppliers, advertisers, or service providers. The App may also use third-party services including Google Firebase, Google Analytics for Firebase, and Firebase Push Notifications to support App functionality, analytics, notifications, performance monitoring, and related services. These third-party providers may process certain technical, device, and usage-related information in accordance with their own terms and privacy policies.

PERSONAL DATA PROTECTION

Our company is committed to protect the privacy of its customers and takes its obligation to protect the security of their personal data seriously. We will be clear and honest about the data we collect and the purposes for which we collect it.

Our company "HIVEACT P.C.", located at Katsimpa 27, Ag. Dimitrios, 173 42, is hereby informing you that the processing of your personal data, which is executed through the application ("application") or which are collected through the relevant form ("Form") is conducted in accordance with the current data protection legislation (Regulation (EU) 2016/679 - hereinafter referred to as "GDPR Regulation") and the application's Privacy Policy.

1.     Data Processing Manager and DPO: The Data Processing Manager is "HIVEACT P.C.", (" Processing Manager"). You can contact the Data Protection Officer ("DPO") at the following address: info@hiveact.com.

2.    Processing Data: With your consent, we process the following ordinary and sensitive personal data that you are providing when you interact with the application and are using the services and features that it offers. These data include in particular your first and last name, contact information, the content of your specific requests or reports, as well as additional data that the Data Processing Manager may obtain, including data from third parties, in the process of conducting business activity ("Data").

In order for us to fulfil the requests you are submitting via the relevant contact form and/or to provide updates on adverse actions, it is necessary for you to consent to the processing of your data. Without these mandatory data or your consent, we cannot proceed any further. In any case, even without your prior consent, the Data Processing Manager may process your data in order to comply with legal obligations laid down in laws, regulations and EU law, to exercise rights in judicial proceedings, to pursue their own legitimate interests and in all cases provided for, as applicable by case, in Articles 6 and 9 of the GDPR Regulation.

The processing is conducted both by use of electronic computers and in paper form and always entails the application of the security measures provided for by the applicable legislation

Why and how we process your data:

Data are being processed for the following purposes

  • to handle requests, you may have submitted for the provision of information through the application and the Form. The legal basis for processing personal data for this purpose is your consent (Article 6(1)(a) and Article 9(2)(a) of the GDPR Regulation
  •  to manage reports of adverse actions that are being submitted via the application or Forms. The legal basis of processing for these purposes is your consent (Article 6(1)(a) and Article 9(2)(a) of the GDPR Regulation).

Furthermore, and only with your optional consent which constitutes the legal basis for the processing in accordance with Article 6(1)(a) of the GDPR Regulation:

  •  to receive promotional information material (direct marketing) from the Company.

By ticking the appropriate boxes, you consent to the processing of your data for these purposes.

Your data may in any case be processed, even without your consent, in order to comply with laws, Regulations, EU law (Article 6(1)(c) of the GDPR Regulation), to obtain statistics on the use of the application and its proper functioning (Article 6(1)(f) of the Regulation), and to safeguard or defend legal claims in the interest of the Company.

Personal data are entered into the Company's computer system in full compliance with the data protection legislation, including security and confidentiality profiles, and are based on principles of fair practice, lawfulness and transparency regarding their processing.

Data are being stored for as long as is absolutely necessary to achieve the purposes for which they were collected or for as long as you have consented. In any case, the criterion used to determine this period is based on the compliance with the deadlines set by law and on the principles of data minimization, storage limitation and rational management of records.

All your data will be processed in paper or automated means, ensuring in each case an appropriate level of security and confidentiality.

4.    People who have access to the data: 

The Data are being processed by electronic and manual means in accordance with the procedures and practices related to the aforementioned purposes and are accessible by the Data Processing Manager's staff that is authorized to process Personal Data and the supervisors and in particular the employees working in the following categories: technical staff, IT and administrative staff, product managers, as well as other staff members who are required to process the data for the purpose of completing their duties.

The Data may also be disclosed to countries outside the European Union ("Third Countries"): i) to institutional bodies, authorities, public bodies for institutional purposes; ii) to professionals, independent consultants - whether working individually or collectively - and other third parties and providers who provide the Data Processing Manager with commercial, professional or technical services required for the operation of the application (e.g. provision of IT services and Cloud Computing) for the purposes mentioned above and for the support of the Company in the provision of the services you have requested iii) (iii) to third parties in the case of mergers, acquisitions, transfers of businesses or their branches, audits or other extraordinary operations.

The mentioned recipients receive only the data necessary for their respective functions and duly undertake their processing only for the purposes mentioned above and in accordance with data protection laws. The Data may also be disclosed to the other legitimate recipients identified on occasion by any applicable laws. With the exception of the above, the Data will not be disclosed to third parties, natural or legal persons, who do not perform tasks of a commercial, professional or technical nature for the Data Processing Manager and will not be distributed, without your express consent. The persons receiving the Data will be processing them, as the case may be, as Data Processing Managers, executives of the Processing or persons authorized to process the personal data for the purposes indicated above and in accordance with the current Data Protection legislation.

As regards the transfer of data outside the EU, even to countries whose laws do not guarantee the same level of protection of the privacy of personal data as that provided by EU law, the Data Processing Manager shall inform that the transfer will in any case be carried out in accordance with the methods allowed by the GDPR, such as for example on the basis of the user's consent, on the basis of the standard contractual clauses that have been approved by the European Commission, by selecting parties that participate in international programs for free movement of data (e.g. EU-US Privacy Shield) or that are being implemented in countries considered safe by the European Commission. 

Your Rights:

You may contact the Data Processing Manager  using the contact details provided above,at any  time, in order to exercise the rights pursuant to Articles 15-22 of the GDPR Regulation, including the right to:, receive an up-to-date list of persons who have access to your data, to confirm of the existence or non-existence of personal data relating to you, to check their content, origin, accuracyand location (also in relation to any third country), to request a copy, to request their correction and, in the cases provided for under the GDPR Regulation, to request restriction of their processing to object to the processing of your personal data, to request data portability or deletion, to object to direct communication activities (including restriction on certain means of communication), to receive promotional material (direct marketing) from the Company. You may also submit comments regarding specific uses of your personal data that you consider incorrect or unjustified based on your relationship with the DPO, or file a complaint with the competent Data Protection Authority. You may withdraw your consent at any time, without affecting the lawfulness of any processing carried out prior to such withdrawal.

  6. Account Deletion:

Users may request deletion of their account by contacting: info@hiveact.com

Upon verification of the request, HiveAct will delete or anonymize personal data unless retention of certain information is required by applicable law or legal obligations.

      7. Data Location

Data collected through the App is stored within the European Union (EU) and is not stored outside the EU.

       8. Modifications to This Privacy Policy

Hiveact may update or modify this Privacy Policy periodically. Continued use of the App following the publication of any updates constitutes acceptance of the revised Privacy Policy.

       9. Contact Information

HIVEACT PC

Katsimpa 27, Agios Dimitrios, Greece

Email: info@hiveact.com.