Hiyo Privacy Policy
Privacy Policy
Last Updated: July 11, 2026
1. About this Privacy Policy
Hiyo is a software platform operated by Hiyo App Inc. ("Hiyo," "we," "our," or "us"). Hiyo helps sports facilities manage bookings, customer records, programs, memberships, attendance, staff activities, stringing services, communications, reporting, and related day-to-day operations.
This Privacy Policy explains how we collect, use, disclose, retain, and protect personal information when people visit our website, use Hiyo, communicate with us, or have their information managed in Hiyo by a sports facility.
In this Policy, a Facility means a sports facility or organization that subscribes to Hiyo. A Facility User means an owner, manager, staff member, coach, or other person who accesses Hiyo for a Facility. A Facility Customer means a player, member, parent, guardian, or other customer whose information is entered into Hiyo by a Facility.
2. Our role and the Facility's role
For information that a Facility enters into Hiyo about its customers, staff, coaches, or operations, the Facility generally determines why and how that information is used. Hiyo App Inc. processes that information to provide the Hiyo service to the Facility.
Facilities are responsible for having the authority, notices, and consents required to collect information and use Hiyo. If your information was entered into Hiyo by a Facility, that Facility is usually the best first contact for access, correction, or deletion requests.
Hiyo App Inc. is directly responsible for information we collect for our own business purposes, such as Hiyo account administration, subscription billing, customer support, website analytics, security, and service improvement.
3. Personal information we collect
3.1 Account and business information
When a Facility or Facility User creates or uses an account, we may collect:
name, email address, telephone number, and login credentials;
Facility name, business contact information, and subscription details;
user role, permissions, account status, and authentication records; and
communications with our support or sales team.
3.2 Information entered by Facilities
Facilities may enter or generate information in Hiyo, including:
customer names, contact details, emergency or guardian contact details where provided, and membership information;
court rentals, lessons, programs, schedules, attendance, waitlists, and booking history;
coach or staff assignments, notes, credits, balances, invoices, transaction records, and payment status;
stringing service records and other operational records; and
audit logs and records of actions taken within the platform.
Facilities decide what information they enter. We ask Facilities not to enter unnecessary sensitive information into free-text notes.
3.3 Subscription and purchase information
When a Facility purchases a Hiyo subscription, SMS credits, or another product or service offered by Hiyo, payment card information is collected and processed by our third-party payment processor. Hiyo App Inc. may receive transaction details such as the purchaser name, billing contact, amount, currency, subscription status, payment status, and limited card details such as card brand and last four digits.
Hiyo App Inc. does not store complete payment card numbers or card security codes. Unless we expressly introduce and identify a separate payment feature, Hiyo does not process payments between Facilities and their customers.
3.4 Technical and usage information
When Hiyo is accessed, we may automatically collect:
IP address, browser type, device type, and operating system;
pages or screens viewed, features used, clicks, and session activity;
login timestamps, referral information, and approximate region derived from an IP address;
application logs, diagnostic data, error reports, and performance measurements; and
cookie identifiers and similar technical identifiers.
Hiyo does not collect GPS or precise device location information.
4. How we use personal information
We use personal information to:
provide, operate, maintain, secure, and support Hiyo;
create and administer accounts, permissions, subscriptions, and purchases;
process and display Facility data according to a Facility's instructions;
send service messages such as account notices, booking communications, receipts, waitlist messages, security alerts, and support responses;
understand product usage, troubleshoot problems, improve features, and develop the service;
prevent fraud, misuse, security incidents, and unauthorized access;
comply with legal obligations and enforce our agreements; and
carry out other purposes that we identify at or before collection, or that are otherwise permitted by law.
5. Communications
Hiyo or a Facility may use Hiyo to send operational messages such as booking confirmations, reminders, waitlist updates, receipts, schedule changes, and account notices. These messages may be necessary to provide a requested service.
Promotional email or SMS messages must be sent in accordance with applicable law. Where required, the sender must have consent, identify the sender, and provide a working unsubscribe method. Unsubscribing from promotional messages may not stop essential service or transactional messages.
6. Cookies and analytics
We use cookies and similar technologies to maintain login sessions, remember settings, protect the service, measure usage, and improve Hiyo.
We use third-party analytics tools for product analytics. Depending on our configuration and how Hiyo is used, those tools may process technical and usage information such as page views, feature interactions, device and browser information, session identifiers, and diagnostic information. We use this information to understand how Hiyo performs and how features are used.
Browser settings may allow you to block or delete cookies. Some essential Hiyo features may not work correctly if required cookies are disabled.
7. Monitoring and reliability
We use monitoring systems to visualize service health, logs, performance, availability, and operational metrics. Monitoring information may include technical identifiers, timestamps, error details, and other information necessary to diagnose and resolve service issues.
8. When we disclose information
We do not sell personal information. We may disclose information in the following circumstances:
Service providers: to companies that provide hosting, analytics, monitoring, communications, payment processing, authentication, security, customer support, or other services necessary to operate Hiyo;
At a Facility's direction: where a Facility instructs Hiyo to make information available to its authorized users or service providers;
Legal and safety reasons: where reasonably necessary to comply with law, legal process, or a lawful request, or to protect Hiyo, Facilities, users, or the public from fraud, security threats, or harm;
Corporate transactions: in connection with a financing, merger, acquisition, reorganization, sale of assets, or similar transaction, subject to appropriate confidentiality and legal safeguards; and
With consent: where the relevant individual or Facility has authorized the disclosure.
Service providers may use information only for the purposes for which it was provided to them, subject to their agreements with us and applicable law.
9. International processing
Hiyo and our service providers may process or store information in Canada, the United States, or other countries. Information processed outside your province or country may be subject to the laws of that jurisdiction and may be accessible to courts, law-enforcement authorities, or national-security authorities in accordance with local law.
We use contractual, technical, and organizational measures that we consider appropriate for the nature of the information and the services involved.
10. Retention and deletion
We retain personal information only for as long as reasonably necessary for the purposes described in this Policy, to provide the service, meet contractual commitments, maintain security and audit records, resolve disputes, and satisfy legal, tax, accounting, or regulatory requirements.
Retention periods depend on the type of information, the Facility's instructions, the sensitivity of the information, and legal requirements. When information is no longer required, we may delete, anonymize, or securely dispose of it. Backup copies may remain for a limited period until they are overwritten or deleted through normal backup cycles.
11. Safeguards
We use administrative, technical, and organizational safeguards designed to protect personal information against loss, theft, unauthorized access, disclosure, copying, use, modification, or destruction. These safeguards may include access controls, authentication, encryption in transit, logging, monitoring, backups, and restrictions on personnel and service-provider access.
No online service or storage system can be guaranteed to be completely secure. Facilities and users are responsible for protecting their login credentials and notifying us promptly of suspected unauthorized access.
12. Access, correction, deletion, and questions
Depending on applicable law and the circumstances, individuals may have rights to request access to personal information, request correction of inaccurate information, ask questions about our handling practices, or withdraw consent where consent is the legal basis for processing.
If a Facility provided or controls the information, please contact that Facility first. We will assist Facilities with appropriate requests as required by our agreements and applicable law.
To make a request directly to Hiyo App Inc., email hello@hiyo.app. We may need to verify your identity before completing a request. Certain information may be retained or withheld where permitted or required by law.
13. Children and youth
Hiyo is a business service for sports facilities and is not designed for children to create independent Facility administration accounts. Facilities may use Hiyo to manage programs, bookings, and records involving children or youth. The Facility is responsible for obtaining any authorization or consent required from a parent, guardian, or other authorized person.
If you believe information about a child was collected or used improperly, contact the relevant Facility or email hello@hiyo.app.
14. Privacy incidents
If we identify a privacy or security incident involving personal information, we will investigate and take steps that we consider appropriate to contain and address it. We will notify affected Facilities, individuals, regulators, or others where required by applicable law.
15. Changes to this Privacy Policy
We may update this Privacy Policy to reflect changes to Hiyo, our business practices, service providers, or legal requirements. We will post the updated Policy and revise the "Last updated" date.
If a change is material, we will provide additional notice where appropriate or required by law. Where applicable law requires consent for a new use or disclosure of personal information, we will seek that consent rather than relying only on publication of an updated Policy.
16. Contact us
Questions, requests, or complaints about privacy may be directed to the person responsible for privacy at Hiyo App Inc.:
Hiyo App Inc.
Attention: Privacy Officer
Email: hello@hiyo.app
Website: https://hiyo.app
We will review privacy concerns and respond within a reasonable period. If you are not satisfied with our response, you may have the right to contact the privacy regulator in your jurisdiction.