Privacy Policy

1. Information We Collect

1.1 Personal Information

We collect the following types of personal information:

• Account Information: Name, email address, date of birth, shipping address, billing address, and phone number
• Payment Information: Credit card numbers, billing address, and transaction history (processed through secure third-party payment processors)
• Communication Data: Records of your correspondence with our customer support team

1.2 Genetic and Health Information

To provide personalized supplement recommendations, we collect and analyze:

• Genetic Data: Raw genetic data files (from services like 23andMe, AncestryDNA, or similar) or genetic testing results we facilitate
• Health and Lifestyle Information: Age, sex, weight, height, dietary preferences, exercise habits, sleep patterns, stress levels, existing health conditions, current medications and supplements, and wellness goals
• Survey Responses: Information you provide through questionnaires about your health, lifestyle, and supplement preferences

Important: Your genetic and health information is considered highly sensitive. We implement stringent security measures and will never sell this information to third parties for marketing purposes.

1.3 Automatically Collected Information

When you use our Services, we automatically collect:

• Device Information: IP address, browser type, device type, operating system, and unique device identifiers
• Usage Data: Pages viewed, features accessed, time spent on pages, click patterns, and search queries
• Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies (see Section 8 for details)

2. How We Use Your Information

We use your information for the following purposes:

2.1 Personalized Recommendations

• Analyzing your genetic data and health information to generate AI-powered supplement recommendations
• Providing personalized nutrition insights based on your genetic predispositions and lifestyle factors
• Continuously refining our recommendations as you provide feedback and updates

2.2 Service Delivery

• Processing orders and facilitating product delivery
• Managing your account and subscription preferences
• Providing customer support and responding to inquiries
• Sending transactional communications (order confirmations, shipping updates, account notifications)

2.3 Research and Development

• Improving our AI algorithms and recommendation models
• Conducting research to advance personalized nutrition science (using de-identified or aggregated data)
• Developing new features and Services

2.4 Marketing and Communications

• Sending promotional materials about our products and Services (only with your consent)
• Providing educational content about nutrition, supplements, and wellness
• Conducting surveys and requesting feedback

2.5 Legal and Security

• Complying with legal obligations and regulatory requirements
• Protecting against fraud, security threats, and illegal activities
• Enforcing our Terms of Service and other policies

3. How We Share Your Information

We do NOT sell your personal information, genetic data, or health information to third parties. We may share your information only in the following limited circumstances:

3.1 Service Providers

We share information with trusted third-party service providers who help us operate our Services:

• Payment Processors: To process payments securely
• Shipping Partners: To fulfill and deliver orders
• Cloud Hosting Providers: To securely store data
• Analytics Providers: To understand how our Services are used
• Customer Support Tools: To provide assistance and resolve issues

All service providers are contractually obligated to protect your information and use it only for the purposes we specify.

3.2 Research Partners

With your explicit consent, we may share de-identified and aggregated data with academic institutions or research organizations to advance scientific understanding of personalized nutrition. Individual-level genetic or health data is never shared without your separate, informed consent.

3.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal process (subpoena, court order, or search warrant)
• Government or regulatory requests
• Protection of our rights, property, or safety, or that of our users or the public

3.4 Business Transfers

If Lyvv is involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred. We will notify you of any such change and the choices you have regarding your information.

4. Data Security

We implement comprehensive security measures to protect your information:

• Encryption: All genetic and health data is encrypted at rest and in transit using industry-standard encryption protocols (AES-256 and TLS 1.3)
• Access Controls: Strict access controls ensure only authorized personnel can access sensitive information on a need-to-know basis
• Secure Infrastructure: Data is stored in secure, SOC 2-compliant data centers with physical and digital safeguards
• Regular Security Audits: We conduct regular security assessments and penetration testing
• Employee Training: All employees undergo privacy and security training

While we implement robust security measures, no system is completely secure. If we become aware of a security breach affecting your information, we will notify you and appropriate authorities as required by law.

5. Your Privacy Rights and Choices

Depending on your location, you may have the following rights:

5.1 Access and Portability

You have the right to access your personal information and request a copy in a portable format. You can download your data through your account dashboard or by contacting us.

5.2 Correction

You can update your account information, health profile, and preferences at any time through your account settings.

5.3 Deletion

You may request deletion of your account and associated data. Please note that we may retain certain information as required by law or for legitimate business purposes (e.g., transaction records for tax compliance). To delete your account, contact us at privacy@lyvvscience.com.

5.4 Opt-Out of Marketing

You can opt out of marketing emails by clicking the "unsubscribe" link in any promotional email or by updating your communication preferences in your account settings.

5.5 Genetic Data Controls

You have additional controls over your genetic data: (1) You can request deletion of your genetic data separately from your account; (2) You can control whether your de-identified genetic data is used for research; (3) You can download your genetic data at any time.

5.6 State-Specific Rights

California Residents: Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), you have additional rights including the right to know what personal information we collect, the right to delete, and the right to opt-out of the sale of personal information. We do not sell personal information. California residents also have the right to non-discrimination for exercising their privacy rights.

Other States: Residents of Virginia, Colorado, Connecticut, Utah, and other states with comprehensive privacy laws have similar rights. Contact us to exercise your rights.

6. HIPAA and Health Information

Important Note: Lyvv is not a covered entity under the Health Insurance Portability and Accountability Act (HIPAA). Our Services are designed for wellness and nutritional supplementation purposes, not for medical diagnosis or treatment. The information you provide to us is not protected by HIPAA. However, we implement privacy and security measures that meet or exceed industry standards for handling sensitive health information.

7. Data Retention

We retain your information for as long as necessary to provide our Services and fulfill the purposes described in this Privacy Policy. Specifically:

• Account Data: Retained while your account is active and for a reasonable period thereafter
• Genetic and Health Data: Retained until you request deletion, with backups deleted within 90 days
• Transaction Records: Retained for 7 years to comply with tax and financial regulations
• De-identified Research Data: May be retained indefinitely as it cannot be linked back to you

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Enable core functionality like user authentication and security
• Analytics Cookies: Understand how users interact with our Services
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Deliver relevant advertisements (with your consent)

You can control cookies through your browser settings. Note that disabling certain cookies may limit functionality of our Services.

9. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete that information promptly.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have data protection laws different from those in your country. We implement appropriate safeguards, such as Standard Contractual Clauses, to ensure your information receives adequate protection.

11. Third-Party Links

Our Services may contain links to third-party websites or services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party sites you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by email or through a prominent notice on our Services. The "Effective Date" at the top of this policy indicates when it was last updated.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please Contact Us.