Effective Date: May 31, 2025
HoaHippo ("we", "our", "us") provides a platform that enables Homeowners Associations (HOAs) to connect with service providers, manage community offers, and empower HOA representatives to oversee listing activity and verification. We are committed to protecting your privacy and ensuring transparency about how your personal information is collected, used, and protected.
This Privacy Policy explains what information we collect, how we use it, and the choices you have regarding your data.
When you sign up as an HOA member or representative, we collect:
Name
Email address
HOA affiliation (via signup code or manual linking)
Password (encrypted)
HOA administrators or managers may provide:
Verification data
Contact details
HOA-related content (e.g. rules, offers, branding assets)
When submitting or editing listings:
Offer titles, descriptions, categories
Uploaded images (stored via Amazon S3)
Timestamps and moderation metadata
If you undergo identity verification via Didit (for HOA reps):
We do not receive full PII or identity documents
We store the session ID and verification URL for audit and session tracking
The verification itself is handled securely by Didit and governed by their privacy policy
When interacting with our platform:
We may send transactional emails (e.g. verifications, approval alerts)
We log delivery and open data via Amazon SES
You can opt out of non-essential emails
IP address
Browser type
Device data
Session cookies
Redis session tokens and anti-forgery tokens for security
To authenticate users and secure account access
To manage and moderate service listings and offers
To link users with their correct HOA
To facilitate identity verification and protect against fraud
To power search and filtering tools for HOA members
To send email notifications about listing status or account activity
To improve user experience through analytics and debugging
We do not sell or rent your personal information.
We only share limited data under the following circumstances:
With Didit, for the purpose of identity verification for HOA reps
With service providers, such as AWS (S3, SES, Redis), for infrastructure needs
With your HOA administrator, if required for community moderation
To comply with legal obligations, such as valid subpoenas or law enforcement requests
Account and listing data is retained as long as your account is active
Verification session data is kept for audit trail purposes and automatically expires after a set period
Session cookies and Redis tokens expire based on activity timeout policies
You may:
Request a copy of your data
Request correction of inaccurate data
Request deletion of your account
Opt out of certain communications
To exercise these rights, please contact: [email protected]
We use industry-standard security protocols:
HTTPS encryption
Secure Redis-based session management
Anti-forgery and CSRF tokens
Access-controlled administrator interfaces
S3-stored assets with restricted access
HoaHippo is not intended for individuals under the age of 18. We do not knowingly collect data from minors.
We may update this Privacy Policy from time to time. Updates will be posted on this page with an updated "Effective Date."
If you have questions about this Privacy Policy or how we handle your data, contact:
HoaHippo Privacy Team
[email protected]