Privacy policy

Who we are

Halvert, Inc is a Delaware corporation with operations in New York and Berlin. For EU and UK customers, Halvert GmbH (Berlin) acts as data controller. Contact: privacy@yourdomain.tld.

What we collect

When you sign up for Halvert, we collect your name, email address, company, and the payment information you provide to our payment processor. When you use the product, we collect the data you create inside it (approvals, rules, transactions) and a minimal set of technical metadata (IP, browser, timestamps) to operate the service.

What we don't collect

• No third-party marketing trackers on the app.
• No keystroke logging, no session recording.
• No cross-site cookies on the marketing site.

How we use it

We use personal information to provide Halvert to your organisation, to bill for it, to support customers, to prevent abuse, and to comply with legal obligations. We do not sell, rent, or license personal data.

Who we share it with

A minimal set of sub-processors keeps the product running. Cloud infrastructure, billing, error tracking, email delivery. The full list lives on our Trust report page and is refreshed quarterly.

Your rights

Residents of the EU, UK, and certain US states have rights over their personal data (access, correction, portability, deletion). Email privacy@yourdomain.tld and we will respond within thirty days.

Retention

Active account data is retained for as long as the account is active. Closed accounts are retained for ninety days (to allow reactivation) then purged. Backups roll off over twelve months.

Changes

When we change this policy, we email every customer admin at least thirty days before the change takes effect. Prior versions are archived on request.