Legal
Last updated: February 2026
Hermez ("we", "us", or "our") is committed to protecting your privacy. This policy explains what data we collect, why we collect it, and how you can control it.
When you connect your Facebook account to Hermez, we receive and store the following data from Facebook Login:
We also collect standard account information such as your email address and a hashed password if you register directly.
Hermez does not store Facebook Messenger conversations or message content in our database. Every conversation and message you view in Hermez is fetched live from the Facebook Graph API at the moment you request it and is never written to our servers.
We do not sell, rent, or share your personal data with third parties for marketing or advertising purposes.
Hermez uses Facebook Login and the Graph API under Facebook's Platform Policies. Data received through these APIs is used only as permitted by those policies and only to provide the Hermez service to you.
Your data is retained for as long as your account remains active. You can disconnect Hermez from your Facebook account at any time via Facebook's App Settings, which triggers automatic deletion of your Facebook data from our servers. You may also delete your Hermez account entirely by contacting us.
See our Data Deletion page for full details on how to remove your data.
Access tokens are stored encrypted at rest. We use HTTPS for all data in transit. We limit access to personal data to authorized personnel only.
Hermez is not directed at children under 13. We do not knowingly collect data from children.
We may update this policy periodically. Continued use of Hermez after changes constitutes acceptance of the updated policy. We will note the "Last updated" date at the top of this page.
Questions about this Privacy Policy? Contact us at privacy@hermez.app.