Privacy Policy

Site activity: pages you visit, searches you run, deals you click. Used to improve search results and rankings.

Email address: only when you submit a form on Havlo (notify-me, cashback waitlist, contact, price alert, merchant inquiry). Never collected silently.

Price alert preferences: when you set a price alert on a product page, we store your email, the product, your target price, and your country. Used only to email you when the trigger condition is met. Each row carries a unique token so you can cancel with one click from any of our emails.

Merchant inquiry submissions: when you apply on /for-merchants we store your store name, contact name, email, store URL, optional product feed URL, target markets, SKU count, and notes. Used to evaluate the partnership request.

Technical data: browser type, device, referrer, and your IP address (truncated to a /24 range in our logs so individual users can't be re-identified).

Each third-party below receives the minimum data needed to do its job. Names, regions, and what they see:

Site activity and server logs: legitimate interest in improving the product and keeping it secure.

Form submissions and emails: your consent, given when you submit the form.

Marketing emails (cashback launch, notify-me alerts, price-drop alerts): your consent. Each email carries an unsubscribe link, and price alerts include a one-click cancellation link tied to a unique token. You can also reply 'remove' to any email.

Analytics and affiliate cookies: your consent via the cookie banner. We don't load GA4 or Skimlinks until you accept.

Server logs: 30 days.

GA4 events: 14 months (Google's default retention setting).

Form submissions and email: until you ask to be deleted, or until the related feature ships and the list is no longer needed.

Cookies: havlo-country and havlo-cookie-consent each last 1 year. Google's _ga cookie lasts 2 years (only set if you accept cookies).

If you're in the EU or UK, GDPR gives you specific rights over the data we hold about you. South African residents have equivalent rights under POPIA, and similar protections exist in many other jurisdictions. Wherever you live, you can ask us to:

Email hello@havlo.io with the request. We aim to respond within 14 days. If you're in the EU/UK and unhappy with our response, you can also contact your national data protection authority. If you're in South Africa, the Information Regulator.

South Africa's Protection of Personal Information Act (POPIA) requires us to designate an Information Officer. This role is held by:

Danny Mine, Havlo Founder

Email: hello@havlo.io

We respond to data-subject requests within 14 days.

If a request is sent to the wrong address it will still be honored - we route all privacy correspondence through hello@havlo.io.

When you click through to a retailer (Konga, Amazon, AliExpress, ASOS, etc.), you leave Havlo. From that point their privacy policy, payment handling, and delivery terms apply. Havlo does not see your purchase, payment, or delivery details.

Your data may be processed in the US (Vercel, Resend), the EU (Supabase, GA4), or in Nigeria (our team). Where required, transfers rely on standard contractual clauses or equivalent safeguards.

Havlo is not directed at children under 16. We don't knowingly collect data from anyone under 16. If you believe a child has submitted information through Havlo, email hello@havlo.io and we'll delete it.

Depending on where you live (for example California, Colorado, Virginia, or Connecticut), you can opt out of any sharing of your personal information for targeted advertising. We do not sell your personal information.

You can review and manage these choices any time at havlo.io/privacy-choices.

We update this policy as the product changes. The last-updated date at the top reflects the most recent change. Material changes (new third parties, new categories of data) will be flagged at the top.