---
url: "/security/privacy-and-data-access.md"
description: "What Hypermatic support and Hypermatic Figma plugins can and cannot access, including Figma files, Gumroad data, license keys, optional integrations, and exported assets."
---

# Privacy and data access

> What Hypermatic support and Hypermatic Figma plugins can and cannot access, including Figma files, Gumroad data, license keys, optional integrations, and exported assets.

This page explains the privacy boundaries for Hypermatic support and Hypermatic Figma plugins.

## What private account data can support access?

No. The support chat answers general questions from public Hypermatic docs and product information. It does not access private customer data, payment details, invoices, Gumroad subscriptions, license keys, Figma files, or internal company data.

For account-specific help, email Adam privately with the product name and purchase email address.

## What Figma file access does support have?

No. The support chat does not open, view, inspect, or modify your Figma files. For a file-specific issue, email screenshots, exported files, or a minimal reproduction that does not include sensitive content.

Hypermatic Figma plugins can only work with the current Figma file while the plugin is running and only for the workflow you choose.

## Do Hypermatic plugins access my Figma file?

A Figma plugin can work with the current Figma file while it is running. Hypermatic plugins use the parts of the current file needed for the workflow you choose, such as selected frames, layers, images, text, or export settings.

The exact data used depends on the plugin and feature.

## Are all Hypermatic workflows local-only?

No single statement applies to every feature in every plugin. Many export and generation workflows happen inside the Figma plugin and download files directly to your computer. Some optional features may connect to external services, such as official third-party APIs, hosted image upload workflows, or shareable output workflows.

Check the plugin-specific security page before making a security decision:

- [Bannerify Security](/bannerify/faq/security)
- [Commentful Security](/commentful/faq/security)
- [Convertify Security](/convertify/faq/security)
- [CopyDoc Security](/copydoc/faq/security)
- [Crypto Security](/crypto/faq/security)
- [Emailify Security](/emailify/faq/security)
- [Favvy Security](/favvy/faq/security)
- [HyperCrop Security](/hypercrop/faq/security)
- [Pitchdeck Security](/pitchdeck/faq/security)
- [Pixelay Security](/pixelay/faq/security)
- [TinyImage Security](/tinyimage/faq/security)
- [Weblify Security](/weblify/faq/security)

## Should I paste license keys into chat?

No. Do not paste private license keys, card details, passwords, or internal credentials into chat.

If you need license help, email [adam@hypermatic.com](mailto:adam@hypermatic.com) privately with the product name and purchase email address. Only include the license key if it is necessary for support.

## Does Hypermatic process payments directly?

Hypermatic uses Gumroad for online checkout and payment processing. Gumroad sends receipts, manages checkout, and provides membership management links.

For Gumroad checkout or receipt-account issues, contact [support@gumroad.com](mailto:support@gumroad.com). For Hypermatic license or product support, email [adam@hypermatic.com](mailto:adam@hypermatic.com).

## Can Hypermatic complete custom security questionnaires?

Hypermatic provides public security and privacy documentation. Custom vendor forms, custom procurement paperwork, and bank-transfer purchasing are not supported.

For review information, see [Vendor review information](/security/vendor-review).
