hopout Privacy Policy

 Effective Date: April 21, 2025

Hop.out(“hopout,” “Hopout,” “we,” “us,” or “our”) is a social mobile application designed for verified college students (ages 18 and over) using a valid .edu email address. We value your privacy and are committed to protecting your personal information. This Privacy Policy explains what information we collect, how we use and share it, and your rights regarding that information. This policy applies to all users of the Hopout mobile app and any related services. By using Hopout, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the app.

Note:Hopout is an independent platform not affiliated with any university or educational institution. Verification of a .edu email is solely to confirm student status and age eligibility. We do not share your information with any college or university. 

1. Information We Collect

We only collect information that is necessary to provide and improve our services, and we do not collect certain data (such as your location or microphone data) that is not needed. The information we collect falls into a few categories:

Account Information

When you sign up, we collect:

· Birthday – to confirm you’re 18 or older

· Email address (must be a valid .edu email) – for login, verification, and account recovery

· Gender (optional) – for personalization and optional profile fields

· Username (required) – your unique handle within Hopout

· Display Name (optional) – the name shown to others

· Account Note (optional) – any personal note or status you choose to share

We do not collect your real name, student ID, precise location, microphone data, contacts, calendar, or health data.

• Profile      Content: You may choose to add a      profile picture or other details to your profile. Profile images that you      upload are stored securely in our database (via Firebase Storage). Any      profile information you provide (such as a bio or profile photo) will be      visible to other users in the app.
• User-Generated      Content: Hopout allows users to post      content and engage in chats. This includes any text, images, or other      media that you post in the app (for example, posts on forums/feeds, chat      messages to other users, and any comments or reactions). Please note:     These posts and messages are shared with other users of the app by design.      For example, when you send a chat message, the recipient will have access      to that message. Content you share may be stored and displayed within the      app to other users as intended.
• Reports      and Moderation Data
  • If       you report offensive content or another user, or if you block someone, we       collect and store that information. This includes the identity of the       reported user, the content or reason for the report, and any additional       details you provide. We use this information to investigate and take       appropriate action (e.g. content removal or user suspension) as part of       our manual moderation process. Our team may review user‑generated content       (including chat messages or posts) that are reported to ensure they       comply with our community guidelines. We log blocks and reports to       prevent the blocked user from contacting you and to keep a record of       abusive behavior.
• Automated      Content Screening
  • We       employ automated, algorithmic tools to scan all user‑generated text (plans       for spam, hate speech, harassment, or other content that may violate our       Community Guidelines. Text flagged by these systems may be automatically       hidden and/or sent to our moderation team for manual review. At present,       we do not apply automated screening to images.
• Automatically      Collected Data: When you use Hopout, certain      technical information is collected automatically to help us run the app      securely and efficiently. This includes:
  • Device       and Usage Information: We may collect data about the       device and app usage, such as your device type/model, operating system       version, app version, and unique device identifiers (for example, a       device installation ID or a Firebase Cloud Messaging token for       push notifications). We also log basic events like when you last used the       app or received a message, and diagnostic data like crash reports (if the       app crashes) to troubleshoot issues.
  • Log       Information: Like most online services,       our servers (and third-party services we use) automatically record       certain information (“log data”) when the app is used. This log data may       include your device’s IP address, dates and times of access, app features       used, and error logs. We use IP addresses and similar identifiers for       security purposes (for example, to prevent abuse, fraud, or unauthorized       access) . This information is generally used in aggregate form to analyze       usage trends or ensure reliable service, and is not typically tied to       your identity except as needed to enforce this policy or the Terms of       Service.
  • Crash Reporting (Firebase Crashlytics): We use Firebase Crashlytics, a service provided by Google, to collect anonymized crash data and technical performance metrics. This helps us identify and fix bugs, improve stability, and monitor app performance. Crashlytics may collect information such as the device model, operating system version, and app state at the time of a crash, but it does not collect personally identifiable information or link data to individual users.
• Information      We Do Not Collect: We do not collect      precise location data (GPS coordinates) from your device, and the      app does not access your device’s microphone or record audio.      Hopout does not track your location in the background, and we have no      features that continuously collect location or audio information.      Additionally, we do not collect sensitive device data like your phone’s      contact list, calendar, or health data. The app also does not run any      background processes aside from those necessary for delivering push      notifications.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Providing      and Improving the Service: We use your information to      operate Hopout and provide you with its core features. For example, your      email and password (or other authentication credentials) are used to log      you into your account, and your age and .edu email help us verify that you      are an eligible user (18+ student). The content you provide (posts,      messages, profile info) is used to populate the app’s social feed and      messaging features, so that you and other verified users can interact. We      may analyze how users as a whole interact with the app (e.g. which      features are most used) to improve Hopout’s functionality and user      experience.
• Verification      and Safety: Your sign-up information      (email, age, gender) is used to verify your identity and      eligibility. For instance, we may send a verification link or code to your      provided .edu email to ensure it’s valid and belongs to you. Age      information is used to confirm you are 18 or older (we do not allow      underage users). These steps are taken to keep the community restricted to      verified college students and to maintain a safe environment. Gender      information, if collected, may be used for personalization (such as      showing pronouns or enabling certain optional profile fields) but is      primarily optional profile data.
• Communication:     We use your contact information to communicate with you about the service.      This includes sending you transactional emails or messages for      account verification, password resets, important updates about the app, or      notifications that are part of the service (for example, confirming when      your account is created or alerting you to important security or policy      changes). We may also send in-app notifications or push notifications     to your device to alert you about new messages, friend requests, or      relevant activity in the app. (You can control push notifications in your      device settings – see Your Choices below.) We will not send you      marketing or promotional emails unrelated to the app without your consent.
• Moderation      and Enforcement: Information from reports,      complaints, or observed rule violations is used to moderate the      platform. Our moderation team may review content that has been      reported by users or flagged by our system to determine if it violates our      community guidelines or terms. If you report another user or piece of      content, we use the information in your report to investigate and take      action (such as removing content, warning or banning a user). In some      cases, this may involve accessing the content of chats or posts that would      otherwise be private, but only for the purpose of moderation and keeping      our community safe. We also may use your information to enforce our Terms      of Service, to prevent fraud and other prohibited or illegal      activities, and to assist law enforcement if required by law.

Features and Functionality:

Certain features of the app require limited user information or device permissions in order to function as intended. These features are entirely optional and are only accessed when you choose to use them. Specifically:

• Image      Search Functionality (Pexels API): If you      choose to use the image search tool within Hopout—available when creating      posts—we use the search term you enter to request publicly available image      results from the Pexels API. This request is sent from our application and      does not include your name, email, or any other personally identifiable      information. Only the search keyword is transmitted, along with basic      technical request information (such as the API key and device metadata      like IP address, if required by Pexels for usage limits or abuse      detection). We do not store search terms in a way that is tied to your      personal identity, and any logs are either not retained or anonymized for      aggregate trend analysis (e.g., popular image themes). Pexels may      separately log this activity according to its own privacy policy.
• Push      Notification Support (Firebase Cloud Messaging):     If you enable notifications, we generate and store a Firebase Cloud      Messaging (FCM) device token. This token is linked to your unique device      installation and allows us to send real-time alerts, such as new messages,      plan invitations, status updates, and community notifications. This token      is not tied to your name or email, and is used solely to deliver      app-specific notifications. You may opt out of notifications at any time      through your device’s operating system settings (iOS or Android), and      disabling them does not affect your ability to access or use other app      features.
• Photo      Library Access (Optional Media Upload): If you      choose to upload an image—such as adding a profile picture or attaching a      photo to a post—Hopout will request permission to access your device’s      photo library. This access is prompted and managed by your operating      system and is granted solely at your discretion. Hopout does not access      your photo library unless you initiate the upload process, and we do not      scan, monitor, or collect photo metadata or content from your gallery. You      may deny or revoke this permission at any time, and you will still be able      to use all other features of the app, including our built-in image search      alternative.

Note: Hopout does not request access to your device’s camera, microphone, precise location (GPS), contacts, calendar, or background activity. We only request the minimum necessary permissions to support specific, user-initiated features. All permission requests are made transparently through the app and managed through your device’s settings.

These features and their related data usage exist solely to enable functionality that users actively choose to engage with. We do not collect or use any device information for advertising or tracking purposes, and we will never access device data without your knowledge or consent.

3. How We Share Your Information

We do not sell or rent your personal information to third parties. We only share your information in limited circumstances, described below, and always with appropriate safeguards and legal bases:

• Sharing      with Other Users: Hopout is a social platform,      so some information is shared with other users by default. This      includes the content you post or share in the app. For example, when you      make a post, other users of the app (at your school or in the community      forums, depending on how Hopout is structured) will see that content along      with your profile name or avatar. When you send a chat message to another      user or a group, the recipients will see your message and know it came      from you (your profile). Please remember that any information or      content you share with other users or in a public forum can be seen,      saved, or re-shared by those users. We encourage you to be mindful of      what you share. Hopout is not responsible for how other users may use the      information you make available to them.
• Service      Providers: We use certain trusted      third-party services to operate and support Hopout. These service      providers process data on our behalf as needed to provide the app’s      functionality. The primary third-party services we use are Google      Firebase and the Pexels API:
  • Google       Firebase (Auth, Firestore, Storage, Cloud Messaging):      Firebase is a platform by Google that we use for user authentication,       database storage, file storage (for images), and push notifications. This       means your personal data and content are stored on Google’s servers via       Firebase. Google, as our processor, may also collect certain technical       data about app usage as described in Automatically Collected Data      above (for example, Firebase may record your IP address or device ID when       you use the app) . We have configured Firebase services in a way that       your data is kept secure: data is encrypted in transit and at rest      on Firebase’s servers . However, Firebase (and by extension, Google) can       access the data in our Firebase databases as needed to provide the       service to us (for example, for backup, or to prevent abuse). Firebase       acts under our instructions and in accordance with Firebase’s privacy and       security terms. (For more information on Firebase’s privacy practices,       you can refer to Google’s Firebase Privacy information .) We do not      use Firebase to collect location or any data beyond what is described in       this policy.
  • Pexels       API (Image Search): Hopout integrates the Pexels       image search API to allow you to search for free images (e.g., to add an       image to a post). When you use the image search feature, your search       query is sent to Pexels in order to retrieve matching images. This is       done through our application’s API request – we do not share your       account identity or any personal details with Pexels, only the search       term is transmitted . Pexels may receive some technical information like       the API key and request details, and possibly device information such as       an IP address as part of the request, but it does not receive your name,       email, or other identifying info from us. The image results are returned       to the app for you to view and select. We do not store your search       queries in a way that is tied to your account; any logs of image searches       are either not kept or are anonymized (only used in aggregate to see       popular search terms, if at all). Pexels is a third-party content       provider, and any images you select via the search are subject to Pexels’       licensing terms. For more details on how Pexels may handle information,       you can review the Pexels Privacy Policy on their website.
  • Other       Service Providers: Besides Firebase and Pexels,       we may use other providers for ancillary services such as sending       transactional emails (e.g., an email service to send verification codes       or support emails), or cloud functions to perform certain tasks. In all       cases, we will ensure any service provider has a legitimate need to       access the data (for example, your email address to send you a       verification link) and that they are contractually obligated to protect       it and use it only for the purposes we specify. We do not share       your data with any advertisers or social media companies, and we have no       advertising SDKs or social network integrations collecting your data       behind the scenes.
• Compliance      with Laws and Law Enforcement: We may disclose information if      we believe in good faith that such disclosure is necessary to comply with      a legal obligation under applicable law (for example, responding to a      valid subpoena, court order, or legal process). Because our servers are in      the U.S. and we are based in New Hampshire, any legal requests will be      assessed under U.S. law (and specifically the laws of the State of New      Hampshire, to the extent they apply). We may also disclose information if      we believe it’s necessary to investigate or enforce our terms and      policies, to protect the rights, property, or safety of Hopout, our users,      or the public. This could include sharing information with law enforcement      or relevant authorities in cases of threats, self-harm situations, or      investigations of illegal activities. We will only do this as permitted or      required by law, and we will try to notify you of any such requests when      possible (and if we are not legally barred from doing so).
• Business      Transfers: If Hopout or its development      team is involved in a merger, acquisition, investment, or sale of      all or a portion of our assets, your information may be transferred as      part of that transaction. We will ensure the new owner continues to honor      the commitments we have made in this Privacy Policy. We will notify you      (for example, via email or a notice in the app) of any such deal and      outline any choices you may have regarding your information.
• With      Your Consent: In cases where we want to      share your information for any purpose not covered above, we will ask for      your consent. For instance, if we ever wanted to use your information in a      testimonial or share data with a research partner, we would only do so if      you agree. As of now, the only sharing that occurs is what’s described in      this policy.

Importantly, we do not share your personal data with any university or educational institution. Even though you sign up with a .edu email, that information remains with us and is used strictly for verification and contact purposes – we do not report or provide any user data to your school.

4. Data Storage and International Transfer

All personal data and content collected through Hopout is stored on secure servers located in the United States (for example, on Google Firebase servers in U.S. data centers). Our development and moderation team operates out of New Hampshire, USA. This means your information will be processed and protected under United States law. Furthermore, this Privacy Policy (and any related disputes) are governed by the laws of the State of New Hampshire, without regard to conflict of law principles.

If you are accessing Hopout from outside the United States, be aware that your information will be transferred to and stored in the U.S. By using Hopout (which is intended primarily for U.S.-based college students), you consent to this transfer and storage of your information in the United States. We will handle your information in accordance with this Privacy Policy regardless of where you are. If local laws require different data protection standards, we will comply with applicable law in cooperation with you (for example, honoring any known international privacy rights you might have, as described below in Your Rights).

We retain your data on our U.S. servers as described in the next section (Data Retention). We and our service providers (like Firebase) employ physical, technical, and administrative measures to safeguard your data while it is stored or processed in the U.S. (See Data Security for more details on security measures.)

5. Data Retention and Deletion

We retain your personal information and content only for as long as necessaryto fulfill the purposes outlined in this Privacy Policy, or as required by law. The length of time we keep different types of data is determined as follows:

• Account      Information: We keep your basic account      details (email, age, gender, and profile info) for as long as your account      is active. This allows you to log in and use the app. If you choose to      delete your account or if it is terminated, we will remove or anonymize      personal information associated with your account (such as your email and      profile details) from our active user database. Typically, when you delete      your account, we will deactivate it immediately and then proceed to delete      personal data within a reasonable time frame (for example, within 30 days)      from our live systems.
• User-Generated      Content: Content you have posted or      shared (posts, messages, images) may persist in the app or on our      servers even after account deletion in some cases. For instance,      messages you sent to other users will remain in their inboxes or chat      history even if you delete your own account – those communications are      part of their account’s data. Similarly, if you made posts that were      reshared or replied to by others, copies of those posts or your comments      might still be visible to other users or retained in our logs. We generally      do not remove content that you contributed to communal areas of the app      (like group chats or forum posts) just because you delete your account, as      other users may have interacted with that content. However, we will      disassociate that content from your profile and cease displaying your name      or profile alongside it. In most cases we may turn the author name into      “Anonymous” or a generic label once the account is deleted.
• Backup      and Residual Copies: Please note that due to the      nature of cloud services and backups, there might be residual copies     of your information in our backup systems or Firebase’s backups for some      time after deletion. For example, Firebase retains deleted data in backups      for up to 180 days . Such backups are stored securely and are only      accessed if needed for disaster recovery. We will not use backup data      except for restoration purposes if needed, and we will purge or overwrite      backups containing your data in the ordinary backup rotation cycle.
• Reported      Content and Moderation Records: If you were involved in a      policy-violating incident or if other users have reported your content, we      may retain certain data as necessary for legal and safety purposes.      For example, if your account was banned for misconduct, we might retain      your email or device identifier in a suppression list to prevent you from      evading the ban. If you sent threatening messages or unlawful content, we      may keep copies of that content (even if you delete your account or the      messages) to cooperate with law enforcement or to have a record in case of      future disputes. Likewise, records of reports and our responses are kept      to document how we handled the situation. We store these pieces of      information for as long as needed to protect us and our users, or as      required by law.
• Inactive      Accounts: If your account is inactive      for an extended period, we may contact you to see if you want to keep it.      If we decide to remove inactive accounts to free up resources, we will      notify the affected accounts in advance via email or push notification with      instructions on how to keep the account active or retrieve data.

If you wish to delete your account or specific content, you can usually do so through the app settings (if the app provides such an option) or by contacting us at our support email. See Your Choices & Rights below for details on how to request deletion and what happens when you do. Keep in mind that, as noted, certain communications or content cannot be fully erased from all systems (for example, messages in someone else’s inbox), but we will do our best to anonymize or remove personal identifiers from remaining data.

6. Data Security

We take the security of your information seriously and implement industry-standard measures to protect it. These measures are aimed at preventing unauthorized access, alteration, disclosure, or destruction of your personal data. Key security practices include:

• Encryption:     All communications between the Hopout app and our servers (Firebase backend)      are encrypted in transit via HTTPS. This means that data you send to us      (like your login credentials, posts, messages, etc.) is protected from      eavesdroppers while it travels over the internet . Additionally, the data      stored in our cloud database and storage (Firebase Firestore and Firebase      Storage) is encrypted at rest on Firebase’s servers . Encryption at rest      adds a layer of protection in case of any unauthorized access to the      storage servers. (Please note: while data is encrypted in transit and      on the server, it is not end-to-end encrypted between users. This      means that the data is decrypted on our servers so that we can, for      example, run moderation or deliver messages to recipients. Hopout and its      service providers have the technical ability to access user content if      necessary, as described in this policy.)
• Access      Controls: We limit access to personal      data strictly to personnel and service providers who need it to perform      their duties. Hopout team members who are responsible for user support or      moderation can access user data (such as account information or reported      content) only through authenticated and authorized channels. We have      administrative safeguards in place – for example, our Firebase database      rules ensure that, by default, users can only access their own data or      data intended to be public/shared, and our administrators must use secure      authentication to access broader data. Firebase itself employs strict      internal access controls: only select Google employees with valid business      reasons can access Firebase-stored data, and all such access is logged .
• Secure      Authentication: Hopout uses Firebase      Authentication for managing user logins. Passwords (if used) are never      stored in plaintext – they are processed and stored securely by Firebase      Auth using strong hashing algorithms. Where possible, we encourage you to      choose a strong, unique password for Hopout and not to share it. Hopout      uses only email and password via Firebase Authentication. We do not      support third-party or social login options (such as Google or Apple      sign-in).
• All      Firebase Auth processes adhere to Google’s security standards.
• Network      and Application Security: We regularly update our      application and backend to patch security vulnerabilities. All network      traffic goes through secure protocols. We utilize Firebase security rules      and server-side verification to prevent unauthorized data access. The      app’s code is reviewed for security issues, and we may engage in security      testing. We also monitor for suspicious activity on accounts (such as      multiple failed logins or unusual post activity) and will investigate      potential breaches or abuses.
• No      End-to-End Encryption: It is important for us to      clarify that Hopout’s chat and posting features are not end-to-end      encrypted. Unlike some messaging apps where only the users can read the      messages, Hopout’s messages and content can be accessed by us (the service      provider) because they are stored on our servers in a readable form. This      design enables features like content moderation and the ability to sync      your messages across devices. While we do not actively monitor private      chats, and we respect user privacy, content is technically accessible     to our team and could be turned over if required by law or if needed for      safety (for example, if a message is reported). By using the app, you understand      that your communications on Hopout are not e2e encrypted. However, rest      assured we treat your private communications with a high level of      confidentiality and will not read or disclose them unless absolutely      necessary as outlined in this policy.
• Device      Permissions and Security: If the Hopout app requests      permissions on your device (such as camera or photo library access), it is      only used for the intended feature (e.g. to take a profile picture or      attach a photo to a post). You are in control of granting or denying these      permissions. The app does not arbitrarily access your device data beyond      what you permit. Also, we rely on the security of your device’s operating      system – it’s important you keep your phone secure (with a passcode or      biometric) and updated, because a compromised device could lead to      unauthorized access to your Hopout account. If we learn of a security      breach that affects your data, we will notify you and take steps in line      with applicable breach notification laws.

Despite all measures we take, no system can be 100% secure. The internet and digital systems come with inherent risks. Therefore, while we strive to protect your information, we cannot guarantee absolute security. Please understand that you share and transmit data at your own risk. If you have reason to believe your data has been compromised or your account is no longer secure, please contact us immediately (see Contact Us at the end of this policy). We will work with you to address any issues.

7. Your Choices and Rights

We believe it’s important that you have control over your personal information. Here are the choices and rights you have regarding the data you provide to Hopout:

• Access      and Update Your Information: You can access and update most      of your account information directly in the app. For example, you can edit      your profile details, change your profile picture, or update optional      information. If any of the personal information we have about you is      inaccurate or changes (such as you have a new email address associated      with your .edu status), you have the ability to correct or update it. In      case you cannot modify some information yourself (for instance, if you      need to change the email address on your account or correct your date of      birth), you can contact us at our support email and request the change. We      may need to verify your identity before making certain changes for      security reasons.
• Account      Deletion: You have the right to delete      your Hopout account at any time. The app may provide a “Delete Account”      option in the settings. Using that will mark your account for deletion.      Alternatively, you can send a deletion request to team@hopout.app     from the email address associated with your account. Upon receiving a      verified deletion request, we will deactivate your account and begin the      deletion process for your personal data as described in Data Retention     above. Keep in mind, as noted, that certain content (like messages you      sent to others, or posts that were shared) will remain accessible to      others even after your account is deleted, and some data may be retained      in backups or for legal purposes. However, your profile will no longer be      visible, and other users will not see your account in the app after      deletion. If you simply uninstall the app without deleting your account,      your account will remain active on our servers (but you can contact us      later for deletion).
• Communication      Preferences: You can manage your push      notification preferences through your device’s settings. If you no      longer wish to receive push notifications from Hopout (for example, new      message alerts or event reminders), you can disable notifications for      Hopout in your iOS settings. However, please note you may miss important      updates from friends or community activity if you do so. For any email      communications, you can opt out of non-essential emails by following      unsubscribe instructions (if it’s a newsletter or announcement) or by      contacting us. We do not send promotional emails without consent, so      primarily you will only get account-related emails from us. If you do not      want even those (aside from necessary ones like password resets), let us      know, but note we may not be able to provide certain services without the      ability to contact you.
• Blocking      and Reporting: Within the app, you have the      ability to block other users or report content that you find      offensive or that violates our guidelines. Blocking a user means they      cannot message you or interact with you in the app, and we enforce that by      preventing their content from reaching you. When you report content or      users, you are helping keep the community safe. We will review reports and      take appropriate action. While this is more of a community safety feature      than a privacy control, it does give you a say in what you’re exposed to      on the platform.
• Do Not      Track: “Do Not Track” (DNT) is a      preference you can set in some web browsers to signal that you do not want      to be tracked across websites. Since Hopout is a mobile app without web      tracking and we do not use cross-site tracking, DNT is not particularly      applicable. We do not engage in tracking users across third-party apps or      websites for advertising purposes. If in the future we integrate a web      interface or website analytics, we will honor DNT signals as required, but      as of now we have no such tracking.
• California      Privacy Rights: If you are a California      resident, you have specific rights under the California Consumer      Privacy Act (CCPA) and its amendments (like CPRA). These include the right      to know what personal information we collect, the right to access it, the      right to request deletion (which you can already do as noted), and the      right to not be discriminated against for exercising these rights. Hopout      does not sell your personal information to third parties (we don’t provide      data to data brokers or for advertising), and we don’t share your data      with third parties for their direct marketing purposes. If you want to      exercise your California privacy rights, you may contact us with your      request (see Contact Us below). We will verify your identity and      respond as required by law. For more information about CCPA, you can also      visit the California Attorney General’s website at oag.ca.gov/privacy/ccpa.
• EU/UK      Data Subject Rights: Although Hopout is not      specifically marketed outside the U.S. and requires a .edu email (typically      U.S.-based), if you are using Hopout in the European Union, United      Kingdom, or other regions with data protection laws (GDPR, etc.), you      may have additional rights. These can include the right to access a      copy of the personal data we hold about you, the right to rectify     any incorrect data, the right to erase your data (the “right to be      forgotten”), the right to restrict or object to our      processing of your data, and the right to data portability (to      receive an electronic copy of your data for transfer to another service).      You also have the right to withdraw consent if we are processing your data      based on consent (with Hopout, we mainly process data to fulfill our      contract with you to provide the service, and for legitimate interests      like ensuring community safety, rather than relying solely on consent). To      exercise any of these rights, please contact us. We will consider and act      upon any such request in accordance with applicable laws. Note that some      data may be exempt from such requests (e.g., we might retain certain data      for legal compliance, and erasing some data might not be feasible if it’s      integral to the service or shared with others). We will explain the      reasoning if we cannot fulfill a request in part or in full. If you have      concerns about our data practices, you also have the right to lodge a      complaint with a supervisory authority in your country, but we encourage      you to reach out to us first so we can address your concerns directly.

In summary, we strive to give you control and transparency. If you have any questions or need assistance regarding your data or rights, please reach out to us at any time. (See Contact Us.)

8. Children’s Privacy

Hopout is intended for adults aged 18 and over. We do not knowingly allow or solicit anyone under the age of 18 to use the app, and we do not knowingly collect personal data from persons under 18. Our requirement that users sign up with a college-issued .edu email and provide their age is meant to ensure minors are not on the platform. If you are under 18, you are not authorized to use Hopout, and you should not attempt to register or provide any personal information to us.

If we learn that we have inadvertently collected personal information from a child under 18, we will take prompt action to delete that information. For example, if a user is discovered to be a high school student who somehow gained access or a college student’s underage younger sibling, we will remove the account and purge any associated data as quickly as possible. Parents or legal guardians who believe that their child under 18 may have created a Hopout account can contact us to request its removal. We will ask for appropriate identification before honoring such a request, to ensure we are communicating with the parent/guardian.

Because Hopout is restricted to college students, it is also not subject to COPPA (Children’s Online Privacy Protection Act) compliance issues (which apply to services targeting under-13 users). However, we take youth protection seriously and will never intentionally maintain data about minors. If the age you provided at sign-up is below 18 or if your email does not appear to be a valid college email, you will not be able to create an account. We reserve the right to request proof of age or student status if needed.

9. Changes to This Privacy Policy

We may update or modify this Privacy Policy from time to time as our app evolves or as privacy laws change. If we make significant changes to how we collect, use, or share your personal information, we will notify you by appropriate means. This may include:

• Posting      a prominent notice in the Hopout app (such as a pop-up or banner)      informing you of the updated policy.
• Updating      the “Effective Date” at the top of this policy to the date when the      changes take effect.
• For      major changes, we might also send an email to the address associated with      your account or a push notification informing you that our privacy      practices have changed.

We encourage you to review this Privacy Policy periodically. Your continued use of Hopout after any changes signifies your acceptance of the updated policy.If you do not agree with the changes, you should discontinue use of the app and may request deletion of your data. Any older versions of the privacy policy will be archived and available upon request for your review.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please do not hesitate to contact us. We are here to help and address any issues related to your privacy and security. You can reach us at:

Email:team@hopout.app

Mailing Address (for written correspondence or legal notices):

Hopout Team – Privacy Department

Plymouth, New Hampshire, USA (ZIP Code 03264) (USA)

(Note: Hopout is developed and operated in New Hampshire, United States. For any requests, contacting us via email is typically the fastest method. If you email us, please include the phrase “Privacy Request” in the subject line and detail your concern or request, along with any relevant information like your username or registered email so we can locate your account.)

We will respond to your inquiry as soon as possible, generally within 30 days. If you are contacting us to exercise a privacy right (such as requesting data deletion or a copy of your data), we may need to verify your identity for security purposes before fulfilling the request. This could involve confirming control of your email address or asking for certain information that only the account owner would know.

Thank you for trusting Hopout with your personal information. We are committed to protecting your privacy and creating a safe, enjoyable community for college students.