Privacy Policy

1.Who we are

PeekHive provides a digital experience analytics platform — session replay, heatmaps, funnels, form analytics, surveys, live view, and visitor profiles. This policy covers our marketing website and our product. Where we process data on behalf of a customer, that customer is the data controller and we act as their processor under our Data Processing Agreement.

2.Information we collect

• Account data: name, work email, company, and billing details when you sign up or contact sales.
• Product telemetry captured on behalf of our customers: anonymized interaction events, masked DOM snapshots, performance metrics, and device/browser metadata from their websites.
• Website data: basic analytics about how you use peekhive.com, such as pages viewed and referrer.
• Support communications you send to us.

3.Zero-knowledge PII masking

PeekHive's tracker redacts sensitive inputs, keystrokes, and any elements a customer marks as sensitive on the end-user's device, before telemetry is transmitted. Patterns such as payment card and government-ID formats are masked by default.

As a result, raw personally identifiable information is not designed to reach our network, servers, or storage. Customers remain responsible for configuring masking appropriately for their site.

4.How we use information

• To provide, secure, and improve the PeekHive product and website.
• To process billing and manage your subscription.
• To respond to sales and support requests.
• To detect, prevent, and address fraud, abuse, or security incidents.
• To comply with legal obligations.

5.Legal bases (GDPR)

Where the GDPR applies, we rely on: performance of a contract (to deliver the service you request), legitimate interests (to operate and improve our business in a way that does not override your rights), consent (where required, e.g. certain cookies), and legal obligation.

6.Sharing and sub-processors

We do not sell personal data. We share data only with vetted sub-processors that help us run the service (for example, cloud hosting and payment processing), each under contractual data-protection obligations. A current list of sub-processors is available on request and in our DPA.

7.Data retention

Account data is retained for the life of your account and as required by law. Product telemetry is retained according to the customer's plan — from 30 days on Free up to 12 months on higher tiers, with custom retention available on Enterprise. Customers can export or request deletion of their data at any time.

8.International transfers and residency

We support regional data residency for product telemetry. Where data is transferred internationally, we use appropriate safeguards such as Standard Contractual Clauses.

9.Your rights

• Access, correct, or delete your personal data.
• Object to or restrict certain processing.
• Data portability where applicable.
• Withdraw consent at any time, without affecting prior processing.
• Lodge a complaint with your local supervisory authority.

10.Cookies

Our website uses a small number of essential and analytics cookies. You can control non-essential cookies through your browser or our cookie banner where shown.

11.Security

We protect data with encryption in transit (TLS 1.3) and at rest, role-based access controls, audit logging, and least-privilege practices. No system is perfectly secure, but our zero-knowledge design minimizes the sensitive data at risk in the first place.

12.Changes and contact

We may update this policy from time to time; material changes will be posted here with a new date. Questions or requests? Email privacy@peekhive.com.