Hlomo Logo hlomo
Sovereign Agreement

Your Data, Your Choice

Complete transparency on how Hlomo handles the Right to be Forgotten. No fine print. No data hostage situations.

WhatsApp vs. Hlomo: What "Delete" Actually Means

Platform What Happens Orphan Data?
WhatsApp Messages remain on every recipient's device. Media saved in local folders. Screenshots persist. "Delete for Everyone" only hides the text, doesn't erase it. High
Hlomo Recursive server deletion. All ledger entries, member associations, and metadata purged from central infrastructure. No backups. No archives. Certificate of erasure provided. Zero
🔥

The Incinerator (Admin Kill Switch)

When a community leader chooses to close an Estate, we execute a recursive wipe. This is not a "soft delete." This is obliteration.

What Gets Deleted

  • All ledger entries (messages, logs, events)
  • Member associations and UID links
  • Community metadata (name, description, settings)
  • Storage artifacts (cover photos, uploaded files)
  • Sub-collections (threads, invitations, audit logs)

Proof of Erasure

After deletion, the Admin receives a digital certificate containing:

  • Timestamped audit trail of the deletion
  • Verification hash for legal compliance
  • Resident count and data volume deleted
  • POPIA/GDPR compliance statement
🔥

Individual Incineration (Sovereign Deletion)

A Resident can invoke Individual Incineration to vanish from the architecture. This goes beyond "leaving the group"—it's complete identity scrubbing, executed as a Sovereign Deletion.

What Happens When You Incinerate

  1. 1

    Resident Record Deleted

    Your profile is removed from the residents collection.

  2. 2

    Community Memberships Severed

    Your UID is removed from all memberIds arrays across communities.

  3. 3

    Authentication Keys Deleted

    Your Firebase Auth account is permanently deleted. You cannot log in again with that email.

  4. 4

    Audit Log Created

    An anonymous entry is logged: "Resident identity incinerated from X communities."

POPIA Code of Conduct — V1.0

The WIPE Command: Transactional Incineration

Under the POPIA Code of Conduct for Residential Communities (V1.0), every data subject has the right to demand the permanent destruction of their personal information. The WIPE command is Hlomo's implementation of that right — a single, irreversible, cryptographically-logged transaction that satisfies POPIA's requirement for data destruction upon request.

🧾

Transactional

The WIPE command fires as a single atomic transaction. Either everything is deleted or the operation rolls back — there is no partial erasure state.

🔏

Irreversible

Once executed, the WIPE is permanent. No soft-delete staging area. No recovery window. No backup archive. The data is gone from Hlomo's infrastructure.

📜

Legally Witnessed

A SHA-256 signed erasure certificate is generated immediately — a timestamped, tamper-proof record suitable for POPIA compliance audits and regulatory submissions.

POPIA Satisfaction Criteria

Section 24(1): Right to request correction or deletion — satisfied by the WIPE transaction.
Section 25: Notification of third parties — Hlomo's cascading delete propagates to all community associations atomically.
Section 51(1): Destruction of records — the WIPE certificate serves as the mandated record of destruction.
Right of Regret: A resident enrolled under duress can demand total erasure with a single WIPE command.

Legal Compliance Framework

POPIA (South Africa)

The Protection of Personal Information Act (2013) grants individuals the right to request deletion of their personal data. Hlomo's Incinerator and Ghost Protocol exceed POPIA's requirements by providing timestamped proof of erasure.

GDPR (Europe)

Article 17 of the General Data Protection Regulation establishes the "Right to be Forgotten." Unlike platforms that archive deleted data for 90+ days, Hlomo executes immediate, irreversible deletion.

Independent Certificate Verification

When an Estate is deleted, Hlomo generates a cryptographically signed erasure certificate with a SHA-256 verification hash. Anyone can verify the certificate's authenticity without contacting Hlomo—perfect for legal proceedings, audits, or regulatory compliance.

Open Certificate Verifier

Upload any Hlomo erasure certificate to verify its cryptographic signature

Ready to Own Your Data?

Join the Chapter Three leaders building sovereign communities with real deletion rights.

Start Your Pilot