Privacy Policy
Effective date: May 15, 2026 · Last updated: May 15, 2026
This Privacy Policy applies specifically to the HubGuard product operated at hubguard.app and describes how we handle your HubSpot portal data. The AVSaaS company-wide Privacy Policy also applies and governs any areas not specifically addressed here.
1. What Data HubGuard Accesses from HubSpot
HubGuard connects to your HubSpot portal using OAuth with read-only scope. Specifically, HubGuard reads: your total HubSpot contact count (a single integer). It does not read, store, or process individual contact records, contact properties, email addresses, company data, deals, tickets, or any other HubSpot object.
The only HubSpot data we store is: your portal ID, the contact count at each daily snapshot, and the timestamp of each snapshot. We do not store any personally identifiable information from your HubSpot contacts.
2. Archive Feature
If you use the archive feature, HubGuard generates a CSV export of contacts you select. This CSV is created using a separate HubSpot API call that you initiate, stored in encrypted object storage in your chosen region, and linked via a 7-day presigned URL. The CSV is deleted automatically after 90 days. We do not analyze or process the contact data in the CSV for any purpose other than making it available for your download and potential restoration.
3. Data Residency
Snapshot data and archive files are stored in the region you select at account creation: EU-Central (Frankfurt) or US-East (Virginia). Data does not replicate across regions.
4. HubSpot OAuth Permissions
HubGuard requests only the minimum OAuth scopes required: crm.objects.contacts.read. We will never request write, delete, or admin scopes. If HubSpot changes their API in a way that requires additional scopes, we will request your explicit re-authorization and explain exactly why each new scope is needed.
5. Retention and Deletion
Daily snapshots are retained for 90 days on a rolling basis. When you disconnect your portal or cancel your account, all snapshot data is deleted within 30 days. Archive CSVs are deleted 90 days after creation, or immediately upon your request.
6. Notification Data
To deliver alerts, HubGuard stores your configured notification channel credentials (Slack webhook URLs, email addresses, Teams webhook URLs, Discord webhook URLs). These are stored encrypted and used only to deliver the alerts you have configured. We do not use these channels for marketing.
7. Contact
Data privacy questions for HubGuard: [email protected]