Haydeck Privacy Statement

Last Updated: December 10, 2025

This Privacy Policy (“Policy”) describes how Morrow Labs, Inc. DBA Haydeck (together with its affiliates, “Haydeck,” “we,” or “us”) collects, uses, discloses, and protects information through our website at https://haydeck.com (the “Site”), and all related websites, networks, applications, and other services we provide (collectively with the Site, the “Service”). This Policy is incorporated into, and subject to, the Haydeck Terms of Service.

If you reside in California, please see Your California Privacy Rights below. Terms used in the CCPA/CPRA section have the meanings in Cal. Civ. Code §1798.140.

Information We Collect

1) Information You Provide

We collect information you provide directly, such as:

Contact details (name, email address, phone number, mailing address).
Account credentials and profile info (display name, preferences, saved items).
Demographics you choose to share (age range, style/brand preferences, size data).
User content (search queries, favorites, lists, reviews, ratings, messages to support).

You provide this when you create an account, use the Service, interact with features, make purchases through linked merchants, or contact support.

2) Cookies & Automatic Data

We and our partners use cookies, pixels, and similar technologies (e.g., web beacons, clear GIFs, SDKs) to collect:

Device/usage info (IP address, device identifiers, browser type, OS, referring/exit pages, timestamps).
Activity on the Service (pages viewed, links clicked, search terms, interactions with emails/notifications).
Analytics, performance, and ad measurement data.

You can control cookies via your browser settings; if you disable them, some features may not work. Haydeck does not currently respond to browser “Do Not Track” signals.

3) Third-Party Cookies, Pixels & Buttons

We may display third-party content and integrate third-party buttons (e.g., “Share” or “Sign in with…”) that use cookies or web beacons. Data collected by those third parties is subject to their privacy policies, not Haydeck’s.

4) Information from Other Sources

We may receive information from affiliates, merchants, partners, analytics providers, ad networks, and identity or fraud-prevention services, and combine it with other data we have about you.

How We Use Your Information

We use information to:

Operate & improve the Service: deliver features, personalize content/results, remember preferences, provide search and product discovery experiences, and develop new features.
Provide support & communications: respond to inquiries; send administrative messages (e.g., policy updates, security alerts, transactional notices).
Marketing & personalization: send promotions and recommendations about Haydeck or partners; show relevant content/ads on and off the Service (subject to your choices).
Analytics & measurement: understand usage, test product changes, and measure campaign performance.
Security & compliance: detect and prevent fraud/abuse; enforce Terms; comply with legal obligations.

If you opt in to SMS/mobile alerts, standard carrier rates may apply. You may opt out per message instructions.

When We Disclose Information

We may disclose information:

With service providers/contractors who perform services for us (hosting, analytics, customer support, email/SMS delivery, payment processing, security/fraud, advertising/measurement). We require appropriate confidentiality and use limitations.
With affiliates within the Haydeck corporate group.
With merchants/partners to fulfill a transaction or provide integrated features you engage (e.g., “Buy from retailer,” affiliate tracking).
With your direction or consent, including if you share content in public areas.
For legal and safety: to comply with laws, lawful requests, and legal processes; to protect rights, property, and safety of Haydeck, our users, and others; to detect, investigate, and prevent fraud or security incidents.
In business transfers: as part of a merger, financing, acquisition, reorganization, bankruptcy, or sale of assets.
As aggregated/de-identified data for research, analysis, and other lawful purposes.

Your Choices

Email marketing: Unsubscribe via the link in our emails or contact us at help@haydeck.com. You will still receive transactional/administrative messages.
Cookies: Use browser/device controls to manage cookies; some features may not function without them.
Account info: Access, correct, or delete certain information in your account settings or by contacting us.

We may retain information as permitted by law for backups, security, fraud prevention, analytics, and legal compliance.

Third-Party Services & Links

Our Service may link to third-party sites/services. Any information you provide to third parties is governed by their policies. We are not responsible for their content, security, or privacy practices.

Children’s Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13 without verifiable parental consent.

Data Security

We use administrative, technical, and physical safeguards designed to protect information. No method of transmission or storage is fully secure; we cannot guarantee absolute security.

International Visitors

The Service is hosted in the United States and intended for U.S. residents. If you access the Service from outside the U.S., you understand your information may be transferred to, stored in, and processed in the U.S. and possibly other countries.

Changes to This Policy

We may update this Policy from time to time. We will post the updated Policy with a new “Last Updated” date and, where required, provide additional notice. Your continued use of the Service after changes become effective signifies your acceptance.

Your California Privacy Rights

1) Shine the Light (Cal. Civ. Code §1798.83)

California residents may request information about categories of personal information we shared with third parties for their direct marketing and the names of those third parties during the previous calendar year. Submit requests using the How to Contact Us section below.

2) Do Not Track

As noted above, Haydeck does not currently respond to DNT signals.

3) California Consumer Privacy Act / California Privacy Rights Act (CCPA/CPRA)

This subsection applies to California residents.

Categories Collected (past 12 months):

Identifiers: name, email, phone, IP address, device IDs, unique customer ID.
Customer Records (1798.80(e)): contact/billing details; limited payment info via processors.
Protected Classifications (voluntary): age range or similar (if provided).
Commercial Information: transaction history with partners/merchants, saved items, preferences.
Internet/Network Activity: browsing history on our Service, interactions with emails/ads.
Geolocation Data: general location (city/state/ZIP) derived from IP or you provide.
Audio/Visual/Electronic: customer support recordings (where permitted/notice given), reviews/ratings.
Inferences: preferences, propensity models for recommendations.

Sources: You; your devices; our Service; affiliates; service providers; partners/merchants; analytics and advertising providers.

Business/Commercial Purposes: As described in How We Use Your Information, including providing and improving the Service, security, debugging, internal research, short-term transient use, and advertising/marketing (subject to your choices).

Disclosures for Business Purposes (past 12 months): We disclose the categories above to service providers, contractors, affiliates, merchants/partners, marketing/measurement vendors, payment processors, security/fraud providers, and professional advisers.

“Sale” or “Sharing” of Personal Information:
We may “share” (as defined by CPRA) identifiers, internet/network activity, geolocation (general), commercial data, and inferences with advertising and measurement partners to provide cross-context behavioral advertising. We do not knowingly sell or share personal information about consumers under 16.
You have the right to opt out of sale/sharing. Use our “Do Not Sell or Share My Personal Information” link (available in the Site footer) or contact us as below.

Sensitive Personal Information: We do not use or disclose Sensitive Personal Information for purposes requiring a right to limit under CPRA.

Your Rights (subject to exceptions):

Right to Know/Access: categories and specific pieces of personal information collected.
Right to Delete: Request the deletion of personal information we collected from you.
Right to Correct: request correction of inaccurate personal information.
Right to Opt Out of Sale/Sharing: as described above.
Right to Non-Discrimination: We will not discriminate against you for exercising your rights.
Right to Limit Use/Disclosure of Sensitive Personal Information: if applicable.

How to Submit Requests:

Email: help@haydeck.com

Verification & Authorized Agents:
We will verify your request (e.g., by email confirmation or other information). Authorized agents must present written authorization, and we may require direct verification from you unless the agent holds a valid power of attorney under Cal. Prob. Code §§4000–4465.

Retention:
We retain personal information only as long as reasonably necessary for the purposes described, to comply with legal obligations, resolve disputes, and enforce our agreements.

How to Contact Us

Email (privacy & CCPA/CPRA requests): help@haydeck.com

Quick Implementation Notes (optional for your web team)

Add a footer link: “Privacy” (this page).
Add a footer link: “Do Not Sell or Share My Personal Information” → opt-out page or preference center.
Add a “Your Privacy Choices” icon if you use cross-context adsorption (CPRA).
Keep a changelog of “Last Updated” dates.