How Hyke protects your data

Hyke (Association Hyke Culture et Lien Social) builds public-interest tools that map cultural life and community initiatives. We operate across Switzerland and France.

Privacy inquiries: support@hykefresh.com

• Interest sign-ups. Email address, language preference, and the date you asked us to keep you posted.
• Partner & venue requests. Name, email, organization, type of venue, city, approximate capacity, project notes, and consent checkbox so we can respond.
• Support & trust communications. Messages sent to support@hykefresh.com or safety@hykefresh.com, including attachments you share when reporting an issue.
• Technical telemetry. Cloudflare (our hosting provider) logs IP address, browser, device type, and basic request metadata for security, load balancing, and abuse prevention.
• Donations. Processed securely by Stripe. We receive the donor name, email, amount, and the last four digits of the card—never the full card number.

• Operate, secure, and improve the landing page and waitlists.
• Answer venue/partner requests and coordinate onboarding.
• Send opt-in updates and operational emails you explicitly asked for.
• Investigate abuse reports, protect the community, and comply with platform safety policies.
• Meet legal, tax, accounting, and regulatory obligations.

We only share data with vendors who help us run Hyke. They process information strictly under our instructions:

• Cloudflare Pages, Workers, and D1 host this site, store form submissions, and provide security telemetry.
• Stripe securely processes donations and applies its own anti-fraud controls.
• Email is routed via our provider to deliver transactional and support responses.

Depending on the interaction, we rely on different legal grounds:

• Consent when you subscribe to updates or check the partner-interest box.
• Legitimate interest to operate and safeguard the Services, detect abuse, and answer inbound requests.
• Performance of a contract when we discuss partnership terms or fulfill donations.
• Legal obligation to keep accounting records, comply with regulators, or respond to lawful requests.

• Interest sign-ups: kept until you unsubscribe or for 24 months after the last interaction, whichever comes first.
• Partner & venue forms: stored for up to 24 months so we can evaluate collaborations unless you request deletion sooner.
• Support & trust communications: retained as long as necessary to resolve the issue and uphold safety obligations.
• Security logs: retained per Cloudflare’s standard retention schedules.

Data may be processed in Switzerland, the EU, or other countries where our providers operate. When required, we use Standard Contractual Clauses or equivalent safeguards.

Depending on your location, you may have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete information.
• Request deletion of your data (subject to legal retention requirements).
• Object to or restrict processing based on legitimate interests.
• Receive a portable copy of data you provided to us.

To exercise any right, email support@hykefresh.com.

We employ encryption in transit, role-based access, audit logging, and least-privilege controls for our infrastructure. No system is perfectly secure, but we monitor continuously and remediate incidents quickly.

We revise this page when our practices change. The “Last updated” date reflects the latest revision and changes apply going forward.