HoPetSit logoHoPetSit

Privacy policy

Last updated: April 25, 2026

CARDELLI HERMANOS LIMITED (trading as HoPetSit) ("we", "us") is the data controller of personal data collected through the HoPetSit mobile application and website (the "Service"). This page explains what we collect, why, how long we keep it, and your rights โ€” in accordance with the EU General Data Protection Regulation (GDPR), the UK GDPR and Hong Kong PDPO.

1. Data we collect

  • Account data: name, email, phone (optional), city, role, password hash.
  • Profile data: avatar, bio, languages, services offered, rates, availability.
  • Booking data: dates, pets, prices, status, reviews.
  • Payment data: a token from our regulated payment provider โ€” we never see your card number. Last 4 digits and brand are stored to display saved cards.
  • Communications: chat messages, support tickets, contact-form submissions.
  • Technical data: IP address, device type, app version, language, crash reports.
  • Location: only when you explicitly grant location permission to find providers near you or to publish a request.

2. Why we process it (legal basis)

  • Contract: creating and operating your account, processing bookings and payments.
  • Legitimate interest: fraud prevention, content moderation, product analytics.
  • Consent: marketing emails, push notifications, location access.
  • Legal obligation: tax records, anti-money-laundering compliance.

3. Sharing

We share data with:

  • The payment processor (PCI-DSS compliant) for card transactions and IBAN payouts.
  • Cloud infrastructure (Render, MongoDB, Cloudinary) under strict data-processing agreements.
  • Other users only as needed for a booking (e.g. your name and avatar are shown to the sitter you booked).
  • Authorities when required by law.

We do not sell your data and do not use it for cross-platform advertising.

4. Retention

Account data is kept while your account is active and 24 months after deletion (for fraud prevention). Booking and payment records are kept 10 years for tax compliance. Chat messages are kept for the lifetime of the conversation; soft-deleted messages remain visible to admin moderators only.

5. Your rights

  • Right of access, rectification, erasure, restriction, portability and objection.
  • Right to withdraw consent at any time (push notifications, marketing).
  • Right to lodge a complaint with your local data-protection authority (e.g. CNIL in France).

Exercise your rights at contact@hopetsit.com. We answer within 30 days.

6. International transfers

Some of our processors are based outside the European Economic Area. Transfers are protected by the European Commission's Standard Contractual Clauses (SCCs) and equivalent safeguards under UK and Hong Kong law.

7. Cookies

The website uses strictly necessary cookies for authentication and preferences. We do not use advertising or tracking cookies. The mobile app uses local storage and a notification token for push delivery.

8. Children

The Service is not directed to children under 16. We do not knowingly collect data from minors.

9. Changes

Material changes to this policy are notified in-app and by email (when you have opted in to product updates) at least 30 days before they take effect.

10. Contact

Data Protection contact: contact@hopetsit.com