Privacy Policy

1. Who we are

Hawaii Happy Hours is operated by Lokal Media LLC, a Hawaii limited liability company. References in this policy to “we,” “us,” or “our” mean Lokal Media LLC dba Hawaii Happy Hours. For privacy questions or to exercise the rights described in Section 11, contact us at info@hawaiihappyhours.com.

We act as the data controller for personal information we collect from consumers and business owners using the Site. Our subprocessors (listed in Section 5) act as data processors on our behalf.

2. Information we collect

2.1 Information you provide directly

• Account creation: full name, email address, and password. If you sign in with Google or Apple, we receive your name, email, and profile photo from that provider in lieu of a password.
• Onboarding preferences: island preferences (Oahu, Maui, Big Island, Kauai), visitor type (local or tourist), travel dates if you’re visiting, dining and activity category preferences, newsletter opt-in.
• Profile updates: any name or avatar changes you make.
• Contact form submissions: name, email, subject, and the message you send.
• Newsletter signups: email and island preference.
• Bug reports and feedback: the report subject and description, an optional screenshot you upload, the page URL and your browser/device info captured automatically by your form, plus your account email.
• Business listing data (business owners only): business name, address, phone, website, email, social-media links, photos and videos you upload, hours, happy-hour schedule, menu items with pricing, deal copy and terms, and any other content you choose to publish on your listing.
• Payment data (business owners only): billing details are collected and stored by Stripe, our payment processor. We never see or store your full card number. We do store your Stripe Customer ID, Subscription ID, current plan tier, status, and trial dates so we can manage your subscription.
• Cancellation feedback (business owners only): if you cancel a subscription, Stripe captures the reason, free-text feedback, and an optional comment, which we receive via webhook and store on your business record.
• Support chat messages: messages you send to our AI support assistant (“Ava”) and the resulting conversation history.
• Pending signup data (briefly, during checkout): when a new business owner starts checkout, we hold your signup details in a temporary, encrypted record for a short window while Stripe processes your payment. The record is wiped as soon as your account is provisioned, typically within minutes.

2.2 Information collected automatically

• Analytics events: we record interactions you have with the Site — listing views, coupon claims, redemptions, click-throughs to a business’s phone or website, “Get Directions” taps, map pan and zoom (with coarsened lat/lng coordinates), search queries, and similar product-level events. Logged-in events are tied to your user ID; logged-out events are anonymous.
• Product analytics and session replay: we use a third-party product analytics service (see Section 5) to capture interaction events and a sample of consumer-facing browsing sessions. Sensitive content (form inputs, password fields, coupon codes, and other data we mark as confidential) is masked before any session is recorded. Replay is not recorded on the business or admin dashboards.
• Device and browser metadata: browser type, operating system, viewport dimensions, language, timezone, and a coarse-grained device class (desktop / mobile / tablet). Captured automatically by PostHog and our hosting platform.
• IP address: we read your IP address to apply rate limits and prevent abuse on public endpoints (signup, contact, coupon claims, etc.). IP addresses are held briefly for this purpose and are not joined to your user profile.
• UTM parameters and referrer: if you arrive via a tracked link, we capture the UTM source/medium/campaign and the HTTP referrer for attribution analytics.
• Offline cache: our installable web app may cache certain pages on your device so they work without internet — most notably your claimed coupons, so you can show a deal at a restaurant offline. Cached data lives only on your device and is not transmitted back to us.
• Browser session and local storage: we use standard browser storage to keep things like your login session, filter preferences, and onboarding completion state. None of it is transmitted to our servers.

2.3 Location data

Several Site features can use your device’s precise location. Each is optional and requires your explicit browser-level permission:

• “Near Me” feature: when you tap “Near Me,” your browser asks for location permission. If granted, we use the latitude and longitude in your browser to sort listings by distance and to center the map. We do not store your precise location.
• Map view: our maps are rendered by Mapbox. When you interact with the map, your browser communicates with Mapbox’s servers, which receive your IP address and (if granted) your approximate location. See Mapbox’s privacy policy.
• Coarsened analytics: any location data we record for analytics (e.g., to understand where users tend to browse the map) is rounded so it cannot identify a specific address.
• You can revoke location permission at any time in your browser’s site settings.

2.4 Push notification data

If you opt in to web push notifications, your browser provides us with the technical information needed to deliver pushes to your specific device. We also keep a record of which notifications were sent to which user and when, so we can apply a daily cap and roll overflow into a summary digest. We disable push delivery if your device stops responding (e.g., you uninstalled the app).

You can turn off push notifications at any time from your account settings, by revoking the permission in your browser, or in your operating system’s notification settings.

2.5 Coupon and deal data

• We record each coupon you claim: the coupon, a unique cryptographically-generated claim code, your user ID, claim timestamp, and current status (saved, claimed, redeemed, expired).
• If you self-redeem, or staff redeems your code, we record who redeemed it and when. Staff can undo a redemption within a 10-minute window.
• Per-user and per-coupon claim limits are enforced to prevent abuse.
• This data is visible to you in your account and to the business owner in their analytics dashboard.

2.6 Favorites, follows, and saved deals

• Saving a listing as a favorite, following a business, or saving a coupon for later all create a row associating your user ID with the business or coupon ID and a timestamp.
• Following a business means you consent to receive new-deal notifications from that business via in-app, push (if enabled), and a twice-weekly email digest (sent Tuesday and Friday).
• You can unfollow, unsave, or remove a favorite at any time.

2.7 Public Developer API (if you use it)

If you obtain an API key for our public Deals API, we store a one-way hashed version of the key alongside your usage counters (request count, rate-limit usage, last request timestamp). The original key is shown to you once at creation and is not stored on our servers.

3. How we use your information

• Operate the Site: show listings, process coupon claims and redemptions, send email and push notifications you’ve opted into, and run business dashboards.
• Personalize: show relevant happy hours and deals based on your stated island, category preferences, and (if granted) your location.
• Communicate: send transactional emails (welcome, coupon claim confirmations, subscription receipts, listing approval/rejection, password reset, end-of-month review-call invitations), the optional weekly newsletter, twice-weekly follow digests for businesses you follow, monthly performance reports for business owners, and onboarding drip emails for new business owners.
• Process payments: manage your business subscription with Stripe.
• Provide AI support: our support assistant Ava (powered by Anthropic’s Claude) uses your message text plus relevant FAQ articles to answer your question. See Section 6.
• Analyze and improve: understand how features are used, measure deal effectiveness, and improve the Site.
• Prevent abuse: rate-limit endpoints, detect coupon-claim fraud, enforce claim limits, and run security checks.
• Legal compliance and safety: respond to lawful requests, enforce our Terms, and protect users and the platform.

We do not use your personal information for automated decision-making that produces legal or similarly significant effects on you.

4. Legal bases (for users in the EEA / UK)

If you are in the European Economic Area or the United Kingdom, we rely on these legal bases under applicable data protection law:

• Contract: creating and operating your account, processing payments, sending transactional emails, processing coupon claims.
• Legitimate interests: fraud prevention, rate limiting, product analytics, and basic security logging.
• Consent: push notifications, location data, marketing emails, and AI support chat sessions you initiate.
• Legal obligation: tax and accounting records relating to subscription payments, and lawful requests by authorities.

5. Subprocessors and third parties we share data with

We share information with the following service providers, who are contractually bound to use it only to provide their services to us:

We may also disclose information when required by valid legal process (subpoena, court order, lawful government request), to enforce our Terms of Service, to protect the rights or safety of our users or the public, or in connection with a corporate transaction (e.g., merger or sale) — in which case we will require the recipient to honor this Privacy Policy or notify you and give you a chance to opt out.

We do not sell your personal information. We do not share your personal information with third-party advertising networks. We do not run retargeting ad pixels.

6. AI-powered features

• Support chat (Ava): our support assistant is powered by Anthropic’s Claude. When you send a message, the text of your message (up to 2,000 characters), your last few exchanges in the same conversation, and the most relevant FAQ articles from our knowledge base are sent to Anthropic’s API for processing. Anthropic processes this on our behalf and, per our agreement, does not train its public models on your input.
• Topic classification: support messages are auto-categorized by topic (billing, coupons, photos, etc.) using keyword analysis. The category is stored alongside your message for analytics and routing.
• FAQ shortcut: if your question closely matches an existing FAQ, we serve the pre-written answer directly without sending your message to the AI model.
• AI errors: AI-generated responses can be wrong. Verify anything important with our team at info@hawaiihappyhours.com.

7. Email communications

We send four categories of email:

• Transactional (always sent — these are necessary to operate your account): welcome email, coupon claim confirmations, subscription receipts and invoices, listing status updates, password reset, security alerts, end-of-month review-call invitations to business owners.
• Marketing (opt-in / unsubscribable): the weekly personalized newsletter.
• Engagement (default-on, opt-outable): twice-weekly follow digests for businesses you follow, and a single review-request email shortly after you redeem a coupon at a participating Premium business. Both can be turned off in your account settings.
• Business-only: monthly performance reports, weekly business reports, drip-email onboarding sequence for new business owners. Each can be turned off in dashboard notification preferences.

Every marketing or engagement email includes an unsubscribe link. Unsubscribe links are cryptographically signed so that a forwarded link cannot be used to unsubscribe someone else.

8. Cookies and storage

We use only the storage strictly necessary for the Site to function. We do not use advertising cookies, retargeting pixels, or social-network “Like” trackers.

• Auth cookies (Supabase): keep you signed in. First-party.
• sessionStorage: deduplicate listing view counts within a tab session. Cleared when you close the tab.
• localStorage: remember onboarding-tour completion, filter preferences, dismissed banners.
• PostHog cookies: first-party (proxied through our domain via /ingest); used for analytics and session replay.
• Stripe cookies: set by Stripe Elements when you visit a checkout or billing page, for fraud prevention.
• Third-party embeds: embedded components from our subprocessors (e.g., Stripe, Mapbox) may set their own cookies when they load.

9. Data retention

We keep personal information for as long as we need it to provide the Site, run our business, and comply with our legal obligations. The retention period for any given piece of data depends on what it is and why we collected it.

In general:

• Account information is kept while your account is active and for a reasonable period afterward to allow reactivation, resolve disputes, and prevent abuse.
• Coupon, claim, follow, and engagement records are kept while they are operationally useful (e.g., for analytics, fraud prevention, and dispute resolution) and may then be anonymized or aggregated.
• Support and feedback messages are kept for a period sufficient to provide ongoing support and improve the product.
• Push notification subscriptions are kept until you revoke them or your browser invalidates them.
• Marketing email lists are kept until you unsubscribe; we retain a record of your unsubscribe so we honor that choice.
• Transient data (such as rate-limit counters and pending-signup records) is kept only briefly while it serves its narrow purpose, then discarded.
• Tax, billing, and accounting records are retained for the period required by applicable law (in the U.S., typically up to seven years).

When you ask us to delete your account, we delete or anonymize what we can within a reasonable time, subject to the limited exceptions above (for example, where we are required by law to keep transaction records, or where we need to retain limited data to enforce our Terms or prevent abuse). When data is no longer needed for any of these purposes, we delete or de-identify it.

10. How we protect your data

• All traffic is served over HTTPS (TLS 1.2+). HSTS is enabled and pre-loaded.
• Database access is gated by Postgres Row Level Security (RLS). Users can read and write only their own rows.
• The service_role key is server-side only — it is never present in client bundles.
• Sensitive secrets (VAPID private key, Stripe webhook secret, encryption key for pending-signup passwords, unsubscribe HMAC secret) are stored in Vercel’s encrypted environment store and accessed only by server code.
• Sensitive transient data (e.g., passwords held briefly during checkout) is encrypted at rest. We do not log password values.
• Coupon claim codes are generated with cryptographically secure randomness and are non-guessable.
• Strict Content Security Policy is enforced on every page; CSP violations are logged for monitoring.
• Per-IP and per-user rate limiting is applied to abuse-prone endpoints (signup, contact, feedback, claim, redeem, push subscribe, AI chat).
• Webhooks (Stripe, Resend) are signature-verified before any state change.
• Admin endpoints require both authentication and an explicit profiles.role = 'admin' check.

No system is perfectly secure. If we discover a security incident affecting your personal information, we will notify you and, where required by law, the relevant data-protection authority, without undue delay.

11. Your rights and choices

Subject to your jurisdiction, you may have the right to:

• Access: request a copy of the personal information we hold about you.
• Correct: update inaccurate information directly in your account settings, or by emailing us.
• Delete: request that we delete your account and personal information. We will action your request within 30 days of verifying it, subject to the limited retention exceptions described in Section 9 (for example, tax records for paid subscriptions).
• Export / portability: request a copy of your data in a machine-readable format (we’ll deliver JSON via email).
• Opt out: unsubscribe from marketing email at any time, turn off follow digests, disable push notifications, and revoke location permission in your browser.
• Object / restrict: object to or restrict certain processing activities. We’ll evaluate and respond.
• Withdraw consent: withdraw any consent you previously gave (push, location, AI chat). Withdrawal does not affect prior processing.

To exercise any of these rights, email info@hawaiihappyhours.com from the address on your account. We may verify your identity before acting on the request.

11.1 California privacy rights (CCPA / CPRA)

If you are a California resident, you have the right to (a) know the categories and specific pieces of personal information we collect, the sources, the purposes, and the categories of recipients; (b) request deletion; (c) request correction; (d) opt out of the “sale” or “sharing” of personal information; and (e) limit the use of sensitive personal information. We do not sell or share personal information for cross-context behavioral advertising. We will not discriminate against you for exercising any of these rights.

11.2 EEA / UK data subject rights (GDPR)

If you are in the EEA or the UK, in addition to the rights above, you have the right to lodge a complaint with your supervisory authority, and to receive your personal information in a portable format. We act as the data controller for personal data we collect through the Site.

12. International data transfers

We are based in the United States and our subprocessors operate primarily in the United States. If you access the Site from outside the U.S., your information will be transferred to and processed in the U.S. We rely on each subprocessor’s self-certification or standard contractual clauses where applicable.

13. Children’s privacy

Our services are not directed to children under 13, and we do not knowingly collect personal information from anyone under 13. If we learn that we have inadvertently collected information from a child under 13, we will delete it promptly. If you believe a child has provided us with personal information, contact info@hawaiihappyhours.com.

For users between 13 and 17, you may use the Site only with parental consent and supervision.

14. Changes to this policy

We may update this Privacy Policy as our services evolve. When we make material changes, we will update the “Last updated” date at the top, and where appropriate notify you by email or a prominent notice on the Site. Your continued use of the Site after the effective date constitutes acceptance of the updated policy.

15. Contact

• Email: info@hawaiihappyhours.com
• Website: hawaiihappyhours.com/contact
• Mailing: Lokal Media LLC, Hawaii, USA (full mailing address available on request)

Hawaii Happy Hours is a DBA of Lokal Media LLC.