Privacy Policy

1. Introduction

FyleHub, Inc. (“FyleHub,” “we,” “us,” or “our”) is a financial data operations platform headquartered in New York, NY. We provide data aggregation, transformation, and distribution services exclusively to institutional financial clients.

This Privacy Policy applies to information collected through our website (www.fylehub.com), our platform, and in connection with our services. Please read this policy carefully.

2. Information We Collect

FyleHub collects information in the following categories:

• Account and contact information: Names, email addresses, job titles, and institutional affiliation provided by clients and prospective clients during onboarding, demo requests, or contact form submissions.
• Platform usage data: Information about how users interact with the FyleHub platform, including API call logs, configuration changes, and feature usage.
• Financial data processed on behalf of clients: All financial data (portfolio holdings, transactions, performance data, etc.) processed on behalf of institutional clients is governed by separate data processing agreements and is not used for any purpose other than delivering the contracted services.
• Technical and device information: IP addresses, browser type, operating system, and device information collected automatically when you visit our website.
• Communications: Email correspondence, demo request forms, and other communications you initiate with FyleHub.

3. How We Use Information

FyleHub uses collected information to:

• Provide and operate the FyleHub data operations platform
• Process financial data on behalf of institutional clients as contractually instructed
• Respond to demo requests, inquiries, and support tickets
• Maintain security, compliance, and immutable audit records
• Communicate with clients regarding platform operations, maintenance, and updates
• Improve platform performance and develop new features
• Comply with applicable legal and regulatory requirements
• Enforce our Terms of Service and other agreements

4. Financial Data Processing

FyleHub processes financial data solely on behalf of and under the instructions of our institutional clients. We act as a data processor, not a data controller, with respect to client financial data. We do not use, sell, or share client financial data for any purpose other than providing the contracted services.

All financial data processing is governed by a Data Processing Agreement (DPA) executed with each client. If you require a DPA, please contact privacy@fylehub.com.

5. Data Security

FyleHub employs enterprise-grade security measures including:

• AES-256 encryption for all data at rest
• TLS 1.3 for all data in transit
• Enterprise-grade security controls
• Role-based access controls and multi-factor authentication
• Immutable audit logs for all data operations
• Complete tenant isolation — no data shared between clients
• Annual third-party penetration testing

See our Security page for complete security documentation.

6. Data Retention

FyleHub retains client data for the duration of the service agreement and for such additional period as required by applicable law or as specified in the Data Processing Agreement.

Website visitor data and contact information is retained for a reasonable period to support business operations and communicate with prospective clients. You may request deletion of your contact information by emailing privacy@fylehub.com.

7. Third-Party Services

FyleHub uses carefully vetted third-party infrastructure providers (cloud hosting, monitoring, security tooling) all of which are bound by appropriate data processing agreements and security requirements consistent with our enterprise security controls. FyleHub does not sell personal information to third parties for advertising or marketing purposes.

8. GDPR Rights

If you are located in the European Economic Area (EEA) or United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

• Right of access — request a copy of your personal data
• Right to rectification — correct inaccurate personal data
• Right to erasure — request deletion of your personal data
• Right to data portability — receive your data in a structured format
• Right to object — object to processing of your personal data
• Right to restrict processing — request restriction of how we process your data

To exercise any of these rights, contact privacy@fylehub.com.

9. CCPA Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to know — what personal information we collect and how it is used
• Right to delete — request deletion of your personal information
• Right to opt-out — FyleHub does not sell personal information
• Right to non-discrimination — exercise CCPA rights without penalty

10. Cookies

FyleHub's website uses essential cookies required for basic site functionality. We do not use third-party advertising or tracking cookies. Session cookies are used to maintain authenticated sessions in the platform. You can configure your browser to reject cookies, though this may affect platform functionality.

11. Changes to This Policy

FyleHub may update this Privacy Policy from time to time. Material changes will be communicated to existing clients via email with reasonable advance notice. The “Last updated” date at the top of this policy reflects the most recent revision.