Legal

Privacy Policy

Last Updated: 2026-03-08  ·  Effective Date: 2026-03-08

This Privacy Policy explains how PyHall collects, uses, discloses, and safeguards information when you access or use pyhall.dev and related applications, APIs, SDKs, and services (collectively, the "Service").

1. Scope

This Policy applies to information processed through the Service. It does not apply to third-party websites, services, or tools that we do not control.

2. Information We Collect

2.1 Account and Identity Data

Name, username, organization name, email address, and account identifiers. Authentication data and account security metadata.

2.2 Billing and Transaction Data

Plan, subscription status, invoices, billing events, and payment processor metadata. We do not intentionally store full payment card numbers; payments are handled by third-party payment processors.

2.3 Service Usage and Technical Data

Log data, timestamps, request metadata, device/browser metadata, IP-derived coarse location, and diagnostics. API usage, rate-limit events, error events, security events, and abuse-prevention telemetry.

2.4 Namespace, Worker, and Registry Data

Namespace records, worker registration metadata, attestation metadata, verification outcomes, and governance/audit event data. Hashes, signatures, decision/event identifiers, and related technical evidence records.

2.5 Customer Content

Data, files, configurations, and content submitted, stored, routed, or processed by you through the Service.

2.6 Communications Data

Support requests, notices, feedback, and communications sent to us (including via legal@pyhall.dev or support channels).

3. How We Use Information

We use information to:

  1. Provide, maintain, and improve the Service.
  2. Authenticate users and secure accounts.
  3. Process billing, payments, and subscription operations.
  4. Operate registry, attestation, verification, and governance workflows.
  5. Detect, prevent, investigate, and respond to abuse, fraud, and security incidents.
  6. Enforce Terms, policies, and legal rights.
  7. Provide support and service communications.
  8. Generate de-identified and aggregated analytics.
  9. Comply with legal obligations.

4. Legal Bases (Where Applicable)

Where required by applicable law, we process personal data based on one or more of the following:

  • Performance of a contract.
  • Legitimate interests (security, fraud prevention, service operations, product improvement).
  • Legal obligations.
  • Consent (where required and obtained).

5. How We Share Information

We may share information:

  1. With service providers/processors performing services on our behalf (hosting, analytics, billing, communications, support, security).
  2. With professional advisors (legal, accounting, audit) under confidentiality obligations.
  3. In connection with mergers, acquisitions, financing, reorganization, or asset sales.
  4. To comply with law, legal process, or valid governmental requests.
  5. To protect rights, safety, security, and integrity of PyHall, users, and the public.
  6. With your direction or consent.

We do not sell personal information for monetary consideration.

6. Data Retention

We retain information for as long as reasonably necessary to provide and secure the Service, maintain required records (including security and billing records), resolve disputes, enforce agreements, and meet legal and compliance obligations. Retention periods may vary by data category, account status, and legal requirements.

7. Security

We implement administrative, technical, and organizational safeguards designed to protect information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. International Data Transfers

If information is transferred across borders, we take reasonable steps to ensure appropriate safeguards consistent with applicable law.

9. Your Rights and Choices

Depending on your location and applicable law, you may have rights to access or request a copy of personal data, correct inaccurate data, delete certain data, restrict or object to certain processing, request portability (where applicable), and withdraw consent where processing is based on consent.

To exercise rights, contact: legal@pyhall.dev. We may need to verify your identity and may decline requests where permitted by law.

10. Cookies and Similar Technologies

We and our providers may use cookies and similar technologies for authentication and session management, security and abuse prevention, performance and analytics, and preferences and functionality. You can control cookies through browser settings; some features may not function properly if cookies are disabled.

11. Children's Privacy

The Service is not directed to children under 13 (or higher age where required by local law), and we do not knowingly collect personal information from children in violation of applicable law.

12. Third-Party Services and Links

The Service may link to or integrate third-party services. Their privacy practices are governed by their own policies, not this Policy.

13. Automated Processing and AI Workflows

PyHall supports technical governance workflows involving automated checks (for example, attestation and integrity verification decisions). You are responsible for deployment decisions and for review/validation of outputs in your environment.

14. Changes to This Privacy Policy

We may update this Policy from time to time. Changes become effective when posted (or on stated effective date). Continued use after changes take effect constitutes acceptance of the updated Policy.

15. Contact Us

For privacy questions or requests, contact:

View Terms of Service →