Effective Date: August 28, 2025 Last Updated: July 8, 2026

At Helix, we are committed to protecting your privacy and ensuring the security of your information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our data exchange platform.

1. Information We Collect

1.1 Account Information

We collect information necessary to create and maintain your account, including business identification, contact details, and billing information.

1.2 Usage Data

We automatically collect information about how you use our platform, including access patterns, data volumes, and technical information about your connection.

1.3 Dataset Information

We collect metadata about the datasets you upload, such as file properties and access permissions.

Dataset Content Processing: We do not access your dataset contents for our own purposes. Any processing of your actual data (such as analytics, AI/ML services, or enrichment) only occurs with your explicit authorization and remains under your control.

1.4 Billing Information

We collect information necessary to process payments and track usage for billing purposes.

1.5 Security and Abuse Prevention Data

To protect our forms against bots and automated abuse, we use Cloudflare Turnstile. When you interact with protected forms, Cloudflare may collect device and network metadata (such as IP address, browser details, and challenge information) solely for the purpose of detecting malicious activity. This data is processed according to Cloudflare's privacy policy and is not used for advertising.

2. How We Use Your Information

We use collected information to:

  • Provide and maintain the data exchange platform
  • Process payments and manage subscriptions
  • Calculate and bill infrastructure usage
  • Send service notifications and updates
  • Monitor platform performance and security
  • Provide customer support
  • Generate usage analytics and billing reports
  • Comply with legal obligations
  • Prevent fraud and abuse
  • Improve our services

3. Information Sharing and Disclosure

We do NOT sell, trade, or rent your personal information. We share information only in these circumstances:

3.1 With Your Consent

When you explicitly authorize sharing (e.g., granting data access to specific consumers)

3.2 Service Providers

We share limited information with third-party service providers who help us operate our platform, including cloud infrastructure providers, payment processors, and business tools. These providers are contractually bound to protect your information.

  • Cloudflare Turnstile validates contact form submissions to prevent spam and abuse. It receives the minimal telemetry needed to confirm that a real person submitted the form.

3.3 Business Partners

  • We share your company name and dataset metadata with authorized consumers
  • Consumers can see producer company names for datasets they're authorized to access
  • We never share billing information between users

3.4 Legal Requirements

We may disclose information when required by:

  • Law, regulation, or court order
  • Government requests (with valid legal process)
  • To protect our rights or prevent fraud
  • Emergency situations involving safety

3.5 Business Transfers

In case of merger, acquisition, or sale, information may transfer to the successor entity

4. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

4.1 Technical Safeguards

  • Industry-standard encryption for data in transit and at rest
  • Access controls and authentication mechanisms
  • Isolated data storage environments
  • Security monitoring and incident response procedures

4.2 Organizational Safeguards

  • Personnel training and confidentiality obligations
  • Access restrictions based on business need
  • Regular security assessments

4.3 Your Data's Security

Your uploaded datasets remain encrypted and isolated. We only access dataset contents when you explicitly authorize us to do so for specific services you request (such as support, analytics, or data enrichment services).

5. Data Retention

5.1 Active Accounts

We retain your information as long as your account is active and as necessary to provide our services.

5.2 After Account Termination

We delete or anonymize your information after account closure, except where we need to retain certain information for legal, tax, or legitimate business purposes.

5.3 Legal Requirements

We may retain certain information for longer periods when required by law or regulation.

6. Your Rights and Choices

You have the right to:

6.1 Access and Portability

  • Download your account information
  • Export your datasets at any time

6.2 Correction and Deletion

  • Update account information via dashboard
  • Request correction of inaccurate data
  • Request account deletion (subject to legal retention)

6.3 Communication Preferences

  • Opt-out of marketing emails (service emails required)
  • Choose notification preferences
  • Set data sharing permissions

6.4 Do Not Track

We don't respond to browser "Do Not Track" signals, but you can control cookies via browser settings

7. Children's Privacy

  • Our service is not directed to individuals under 18
  • We don't knowingly collect data from children
  • If we discover child data, we will delete it
  • Business accounts must ensure authorized users are 18+

8. Third-Party Links

Our platform may contain links to third-party services. We're not responsible for their privacy practices. Please review their policies separately.

9. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information we collect
  • Right to delete personal information
  • Right to opt-out of sale (we don't sell data)
  • Right to non-discrimination

To exercise these rights, contact contact@helix.tools

10. European Privacy Rights (GDPR)

EU/UK residents have additional rights:

  • Right to access and rectification
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

Legal Basis for Processing:

  • Contract performance (providing services)
  • Legal obligations (billing, taxes)
  • Legitimate interests (security, fraud prevention)

11. Changes to This Policy

  • We'll notify you of material changes 30 days in advance
  • Notification via email and platform dashboard
  • Continued use after changes indicates acceptance
  • You can always access the current version at helix.tools/privacy.html

12. Contact Information

For privacy-related inquiries or to exercise your rights, please contact us at:

Email: contact@helix.tools Website: https://helix.tools

We review all privacy inquiries and respond within a reasonable timeframe.

13. Additional Information

Depending on your location, you may have additional rights under local data protection laws. We comply with applicable privacy and data protection laws in the jurisdictions where we operate.


Your Privacy Matters

We're committed to transparency and protecting your information. If you have questions about our privacy practices, please contact us.