1. Who We Are
This Privacy Policy explains how the Karvo platform (the “Platform”) collects and uses your data.
Role separation: (a) Platform Owner/Operator (“Karvo Owner”) — responsible for data and business operations; (b) Software Developer (App Engineer) (“Developer”) — builds and maintains the software code only and does not control content or business decisions.
2. Data Controller & Processor
The Karvo Owner is the Data Controller of personal data processed through the Platform.
The Developer may act only as a technical service provider/processor under the Karvo Owner’s written instructions (if engaged) and has no independent right to access, use, sell, or disclose user data.
3. What We Collect
Identifiers: name, phone number, email, device identifiers.
Account & activity: order history, cart, referral data, in-app actions, support tickets.
Technical data: IP, cookies, logs, crash reports, and analytics.
Optional data: delivery address and payment confirmation details via payment providers.
4. How We Use Data
Provide and operate the Platform and fulfill orders
Verify accounts, prevent fraud/abuse, and enforce policies
Customer support and dispute resolution
Analytics, product improvement, and debugging
Referral tracking and campaign attribution
Legal compliance and record keeping
5. Legal Bases (where applicable)
We rely on: performance of a contract (to provide services), legitimate interests (security, improvements), legal obligations (tax/records), and consent where required (e.g., marketing cookies).
6. Cookies & Tracking
We use necessary cookies for core features, and optional analytics cookies to improve performance.
You can manage cookies in your browser; disabling some may affect functionality.
7. Sharing of Data
We do not sell personal data.
Limited data may be shared with: payment processors, delivery/logistics partners, fraud prevention/anti-spam services, analytics and cloud hosting providers — strictly to provide the service.
8. International Transfers
If data is transferred to other countries, we use appropriate safeguards (e.g., contractual clauses) as required by applicable law.
9. Retention & Deletion
We retain data for as long as necessary for service provision, security, and legal obligations.
Soft deletion: accounts may be deactivated; certain records (e.g., orders, invoices, abuse logs) may be retained as required by law and for legitimate interests.
10. Your Rights
Subject to applicable law, you may request access, correction, deletion, restriction, or portability of your data, and object to processing based on legitimate interests.
Submit rights requests to the Karvo Owner (see Contacts). The Developer cannot process data-subject requests.
11. Security
We implement reasonable technical and organizational measures to protect your data, but no method is 100% secure.
12. Minors
The Platform is recommended for users 18+. If we learn that we collected data from a minor contrary to law, we will take reasonable steps to delete it.
13. Software Developer Disclaimer
The Developer provides software code and technical maintenance only and does not create, review, approve, moderate, or control any content, listings, messages, or transactions on the Platform.
The Developer does not determine purposes or means of processing personal data; all such decisions are made solely by the Karvo Owner.
Any claims regarding content, orders, refunds, product safety/legality, or data rights must be addressed to the Karvo Owner — not the Developer.
14. Changes to this Policy
We may update this Policy from time to time. Material changes will be indicated by updating the effective date.
15. Contacts (Separated)
For users, content, orders, and privacy/data-rights requests (Karvo Owner):
Email: ashahriyor1202@gmail.com