Hlomo Logo hlomo

Privacy Policy

Last Updated: January 13, 2026

1. Introduction

Welcome to hlomo ("we," "our," or "us"). We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our community management platform and services.

hlomo is registered in South Africa (Registration: 2022/858088/07) and complies with the Protection of Personal Information Act (POPIA) and applicable international data protection regulations including GDPR where applicable.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, phone number, organization details
  • Community Information: Community names, descriptions, member lists (phone numbers/emails)
  • Profile Information: Profile photos, bio, interests, preferences
  • Communication Data: Messages you send through our platform, support inquiries

2.2 Information We Collect Automatically

  • Engagement Metadata: Message timestamps, participant counts, response rates, activity patterns
  • Usage Data: Features used, pages visited, time spent, click patterns
  • Device Information: IP address, browser type, device type, operating system
  • Cookies: Session cookies, preference cookies, analytics cookies

2.3 Information from Third Parties

  • WhatsApp Integration: Message metadata (sender, timestamp, participant info) - NOT message content
  • Authentication Providers: Google, Microsoft, or other OAuth providers (name, email, profile photo)

🔒 What We DO NOT Collect

  • Message Content: We do NOT read, store, or analyze the content of your WhatsApp messages or private communications
  • Personal Conversations: We analyze engagement patterns and metadata only, never the substance of your conversations
  • Sensitive Personal Data: We do not intentionally collect health data, financial information, or other special category data unless you explicitly provide it

7. WIPE Protocol (Transactional Incineration)

The WIPE command is our primary data-destruction safety switch. It executes a Transactional Incineration to satisfy POPIA requirements for destruction of personal information upon request.

  • Atomic Execution: The WIPE command runs as a single transaction. Either all targeted records are deleted, or no deletion is committed.
  • Irreversible Deletion: No soft-delete staging, no archive fallback, and no delayed purge window.
  • Cascade Scope: Resident profile data, estate membership links, and linked metadata are removed from active infrastructure.
  • Erasure Evidence: A timestamped, cryptographic deletion record is generated for POPIA audit and dispute resolution.

This gives residents a practical Right of Regret: if consent is withdrawn, data destruction can be requested and executed with a verifiable transaction trail.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices:

hlomo (Pty) Ltd

Registration: 2022/858088/07

Email: privacy@hlomo.com

Phone: +27 82 414 8292

Website: hlomo.com