Privacy Policy - LifecyclePro

This Privacy Policy describes how LifecyclePro ("we", "us", or "our") collects, uses, and protects your information when you use our Service. By using LifecyclePro, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Information You Provide

We collect information that you provide directly to us, including:

Account Information: Name, email address, organization name, phone number, and password
Employee Data: Employee names, email addresses, departments, roles, and other information you input into the Service
Integration Credentials: API keys, tokens, and other authentication credentials for third-party services (encrypted and stored securely)
Customer Information: Customer organization details, contact information, and related data
Request Data: Onboarding, offboarding, and status change requests and associated tasks
Communication Data: Messages, support requests, and feedback you send to us

1.2 Automatically Collected Information

When you use the Service, we automatically collect certain information, including:

Usage Data: Pages visited, features used, time spent, and actions taken
Device Information: IP address, browser type, operating system, device identifiers
Log Data: Access logs, error logs, and system logs
Cookies and Tracking Technologies: See Section 7 for details

1.3 Information from Third-Party Services

When you connect third-party services to LifecyclePro, we may receive information from those services in accordance with their terms and your authorization.

2. How We Use Your Information

We use the information we collect to:

Provide and Maintain the Service: Process your requests, manage your account, and deliver features
Process Transactions: Handle subscription payments and billing
Communicate with You: Send service-related notices, support responses, and important updates
Improve the Service: Analyze usage patterns, identify issues, and develop new features
Ensure Security: Detect and prevent fraud, abuse, and security threats
Comply with Legal Obligations: Meet legal requirements and respond to legal requests
Send Marketing Communications: With your consent, send promotional materials (you can opt out at any time)

3. Data Security

We implement industry-standard security measures to protect your information:

Encryption: Data is encrypted in transit using TLS/SSL and at rest using AES-256 encryption
Password Security: Passwords are hashed using PBKDF2 with 100,000 iterations
Access Controls: Role-based access control and authentication requirements
Secure Storage: Data is stored in secure, monitored data centers
Regular Audits: Security audits and vulnerability assessments
Employee Training: Staff trained on data protection and security best practices

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

4.1 Service Providers

We may share information with third-party service providers who perform services on our behalf, such as:

Cloud hosting and infrastructure providers
Payment processors
Email delivery services
Analytics and monitoring services
Customer support platforms

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.

4.4 With Your Consent

We may share your information with your explicit consent or at your direction.

5. Data Retention

We retain your information for as long as necessary to:

Provide the Service to you
Comply with legal obligations
Resolve disputes and enforce agreements
Maintain business records

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it by law or for legitimate business purposes (such as maintaining audit logs for compliance).

6. Your Rights and Choices

You have the following rights regarding your personal information:

6.1 Access

You can access and review your personal information through your account settings or by contacting us.

6.2 Correction

You can update or correct your information at any time through your account settings.

6.3 Deletion

You can request deletion of your personal information by deleting your account or contacting us. We will honor your request subject to legal and contractual obligations.

6.4 Data Portability

You can export your data in a machine-readable format through the Service's export features.

6.5 Opt-Out

You can opt out of marketing communications by using the unsubscribe link in emails or adjusting your notification preferences in your account settings.

6.6 Do Not Track

We do not currently respond to "Do Not Track" signals from browsers. We may implement this feature in the future.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier.

7.1 Types of Cookies We Use

Essential Cookies: Required for the Service to function (authentication, security)
Functional Cookies: Remember your preferences and settings
Analytics Cookies: Help us understand how you use the Service

7.2 Cookie Management

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

8. Third-Party Services

The Service integrates with third-party services. When you connect these services, your use is subject to their privacy policies. We are not responsible for the privacy practices of third-party services.

We recommend reviewing the privacy policies of any third-party services you connect to LifecyclePro.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

By using the Service, you consent to the transfer of your information to these countries. We take appropriate safeguards to ensure your information receives adequate protection.

10. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information promptly.

11. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know: You have the right to know what personal information is collected, used, shared, or sold
Right to Delete: You have the right to request deletion of personal information held by businesses
Right to Opt-Out: You have the right to opt-out of the sale of personal information (we do not sell personal information)
Right to Correct: You have the right to request correction of inaccurate personal information
Right to Limit Use: You have the right to limit the use of sensitive personal information
Right to Non-Discrimination: You have the right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us at [email protected]. We will respond to your request within 45 days as required by California law.

Do Not Sell My Personal Information: We do not sell personal information. If this changes in the future, we will provide a clear "Do Not Sell My Personal Information" link on our website.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

Right of access to your personal data
Right to rectification of inaccurate data
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent
Right to lodge a complaint with a supervisory authority

To exercise these rights, please contact us at [email protected].

13. Data Processing Legal Basis (GDPR)

We process your personal data based on the following legal bases:

Contract Performance: To provide the Service you have requested
Legitimate Interests: To improve the Service, ensure security, and prevent fraud
Consent: For marketing communications and optional features
Legal Obligations: To comply with applicable laws and regulations

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

Posting the new Privacy Policy on this page
Updating the "Last updated" date
Sending you an email notification (for material changes)
Displaying a notice within the Service

You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted on this page.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: [email protected]
Support: [email protected]
Business Address: California, United States
(Physical address available upon request)

For data protection inquiries in the EEA, you can also contact your local data protection authority.

By using LifecyclePro, you acknowledge that you have read and understood this Privacy Policy.