PrizobetaHome

Privacy Policy

This Privacy Policy describes what personal data we collect, why, and what we do with it. Written for transparency — readable in a few minutes.

Who is the data controller

The controller of your personal data under Article 4(7) of GDPR is Prizo. Contact: hello@prizo.ai. Full company details are in the Terms.

What we collect

  • Email address — when you sign up for the newsletter or register. We collect only an email; no password, no name required.
  • Watchlist — what flyers, stores, or deals you follow. Stored locally in your browser; only sent to our servers if you provide an email and want notifications.
  • Client ID — a random UUID saved in your browser's localStorage, used to link anonymous activity to your account after you sign up.
  • Technical logs — IP address, device type, country- level location, and browser info. Used only for service operation and abuse prevention; deleted after 30 days.

What we do NOT collect

  • No advertising trackers like Google Analytics, Facebook Pixel, etc.
  • We do not sell or share your data with advertisers.
  • We do not collect precise location without your consent — the mobile app will ask and explain why.

Why we process this data

  • Newsletter and price alerts — sending emails with selected deals, alerts when a watched product drops in price.
  • Personalization — pinning your favorite stores at the top, suggesting deals matching your history.
  • Operation and security — abuse prevention, debugging, aggregated usage statistics (no individual identification).

Legal basis

We process your data based on consent (Article 6(1)(a) GDPR), which you give by signing up for the newsletter or clicking "Watch". You can withdraw consent at any time — one click in any email's footer, or by contacting us.

Who we share data with

  • Supabase (Ireland, EU region) — database containing your email and watchlist.
  • Resend (USA, SCC transfer) — newsletter and notification email delivery.
  • Vercel (USA, SCC transfer) — site hosting.

Each provider is bound by a data processing agreement and processes your data only on our instruction.

Retention

  • Email and account settings: until you unsubscribe.
  • Watchlist: same as above.
  • Technical logs: 30 days maximum.

Your rights

Under GDPR you have the right to:

  • access your data and receive a copy,
  • rectify your data if inaccurate,
  • erase your data ("right to be forgotten"),
  • restrict processing,
  • data portability to another controller,
  • object to processing,
  • lodge a complaint with the Polish Personal Data Protection Office (UODO, ul. Stawki 2, 00-193 Warsaw).

To exercise any of these rights, write to hello@prizo.ai. We respond within 30 days.

Cookies

We use only essential cookies required for the service to function (e.g. language preference). No advertising or tracking cookies. Your consent is not required for technical cookies under Article 173 of the Polish Telecommunications Act.

Policy changes

For material changes, we'll notify you by email (if you're a subscriber) and via a site banner. Minor updates happen without notification but always reflected by the date at the top.

Last updated: May 20, 2026.