Privacy Policy
Your Privacy Matters
At Heeka, we believe in transparency and respect for your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website (heeka.ai) or use our AI-powered chatbot services. By using Heeka, you consent to the practices described here.
We comply with applicable privacy laws, including the California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR), and other relevant regulations. If you're in the EU or California, you have additional rights outlined below.
Information We Collect
We collect minimal data to provide our services effectively and securely. Here's what we gather:
- Chat and Usage Data: Text queries and AI responses. This is processed in real-time and not stored long-term.
- Technical Data: IP address, browser type, device info, and usage analytics (e.g., pages visited) to improve our site.
- Cookies and Tracking: We use essential cookies for functionality and optional analytics cookies to understand site performance. You can manage these in your browser settings.
We do not collect sensitive health data beyond what's needed for your query, and we anonymize it where possible.
How We Use Your Information
Your data helps us:
- Deliver personalized, helpful responses via our AI (powered by xAI's Grok models).
- Generate affiliate links based on suggestions—no tracking of purchases.
- Improve our services through aggregated, anonymized analytics.
- Respond to support inquiries or legal requests.
We never use your data for marketing without explicit consent.
How We Share Your Information
We don't sell or rent your data. Sharing is limited to:
- Service Providers: Trusted third parties like xAI (for AI processing) and cloud hosts (e.g., AWS) under strict data protection agreements. They only access what's necessary.
- Affiliate Partners: Anonymized query data may inform product suggestions, but no personal details are shared.
- Legal Compliance: If required by law, subpoena, or to protect rights/safety.
- Business Transfers: In case of merger or acquisition, your data would be transferred securely.
For EU users, transfers outside the EEA use Standard Contractual Clauses.
Data Retention
- Chat sessions: Deleted after processing (typically within 24 hours); no long-term storage of health-related content.
- Analytics: Aggregated data kept up to 2 years for improvement.
Your Rights and Choices
You control your data:
- Access/Update/Delete: Request a copy, correction, or deletion of your info.
- Opt-Out: Disable cookies or analytics via browser; withdraw consent anytime.
- CCPA Rights: California residents can request disclosure, deletion, or opt-out of "sales" (we don't sell data).
- GDPR Rights: EU users can access, rectify, erase, restrict, or object to processing; right to data portability.
To exercise these, contact us through our website. We'll respond within 30 days (or 45 for complex requests).
Security
We use industry-standard measures like encryption (HTTPS, data in transit/rest), access controls, and regular audits to protect your info. However, no system is 100% secure—please avoid sharing sensitive details.
Children's Privacy
Heeka is not intended for children under 13 (or 16 in some jurisdictions). We don't knowingly collect data from minors. If we discover such data, we'll delete it promptly. Parents/guardians: Contact us if you believe your child has provided info.
International Users
Heeka is hosted in the US. By using our site, you consent to data transfer to the US, governed by US law.
Changes to This Policy
We'll update this policy as needed and notify you via site notice. Continued use after changes means acceptance.
Last updated: November 13, 2025
Questions? Contact us at info@heeka.ai