Privacy Policy

Our commitment to protecting your privacy and data

Lyvios Privacy Policy

Effective Date: [March 1, 2025]

Last Updated: [March 1, 2025]

1. Introduction

Lyvios, Inc. ("we," "us," or "our") provides enterprise business solutions, including Asset Tracking (Halo), Delivery Management (Swift), and Business Intelligence (Lumi), leveraging advanced technologies through our integrated platform, Lyvios (the "Platform" or "Service").

This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website [Insert Website URL] (the "Website"), interact with us, or use our Service as a client or authorized user on behalf of a client ("Client").

We are committed to protecting privacy and processing data responsibly, in compliance with applicable data protection laws, including the California Consumer Privacy Act (CCPA) and other US state privacy laws.

Please read this Privacy Policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Website or use our Service.

2. Scope and Roles

  • Lyvios, Inc. as Data Controller: We act as the data controller (or "business" under CCPA terminology) for personal information we collect directly from website visitors, individuals who contact us, and for our own business administration purposes (e.g., client contact information).
  • Lyvios, Inc. as Data Processor: When providing our Service to Clients, our Clients are the data controllers (or "businesses") of the operational data they input, manage, and generate within Lyvios (e.g., asset locations, delivery details, employee user data). In these cases, Lyvios, Inc. acts primarily as a data processor (or "service provider" under CCPA terminology), processing this data on behalf of and under the instruction of our Clients, as governed by our agreements with them. This policy describes our general practices, but specific processing of Client data is subject to our Client agreements. End-users of Lyvios under a Client account should refer to their own organization's privacy policies.

3. Information We Collect

We may collect information in the following categories:

  • A. Client Operational Data (Processed by Lyvios, Inc.):

    • Data uploaded or generated by Clients and their authorized users within Lyvios. This may include, depending on the services used:
      • Asset information (identifiers, type, status)
      • Location data (GPS coordinates, timestamps)
      • Sensor data (if Clients integrate IoT devices via our platform capabilities, e.g., temperature, humidity, shock, telematics)
      • Delivery information (addresses, recipient details (as provided by Client), routes, schedules, status updates)
      • Business data integrated into Lumi (sales figures, inventory data, etc., as determined by the Client)
      • User activity logs within Lyvios related to Client operations.
    • Note: The specific types of Client Operational Data processed depend on the Client's configuration and use of the Service. Lyvios, Inc. processes this data solely to provide and improve the Service as instructed by the Client.

  • B. User Account Information:

    • Information provided by authorized users (typically Client employees) to create and manage their accounts on Lyvios, such as:
      • Name
      • Business email address
      • Job title or role
      • Password (hashed)
      • User preferences and settings.

  • C. Website Visitor and Contact Information:

    • Information collected automatically when you visit our Website:
      • IP address
      • Browser type and version
      • Operating system
      • Referring URLs
      • Pages viewed and actions taken on the Website
      • Dates and times of visits
      • Approximate location derived from IP address
      • Performance and interaction data related to website animations and effects
      • User preferences for website features (e.g., animation settings)
      • Local storage data for UI customization
    • Information you voluntarily provide when contacting us (e.g., via contact forms, email, phone):
      • Name
      • Company name
      • Job title
      • Email address
      • Phone number
      • The content of your inquiry or message.

  • D. Aggregated and Anonymized Data:

    • We may aggregate and/or anonymize data collected through the Service or Website (including Client Operational Data where permitted by our Client agreements) so that it can no longer be reasonably linked to an identifiable individual or Client. This data may be used for analytics, research, service improvement, and industry benchmarking.

4. How We Use Information

We use the information we collect for the following purposes:

  • To Provide and Maintain Our Service:
    • Process Client Operational Data as instructed by the Client to deliver Halo, Swift, Lumi, and Lyvios functionality.
    • Create and manage User Accounts on Lyvios.
    • Provide technical support and respond to user inquiries related to Lyvios.
  • To Improve Our Service:
    • Analyze usage patterns of Lyvios and the Website to understand user needs and enhance usability.
    • Develop new features and functionalities for Lyvios.
    • AI Model Training: Use data (typically aggregated/anonymized Client Operational Data where permitted by agreements, or our own operational/usage data) to train, validate, and improve the AI and machine learning models that power features within Lyvios like predictive maintenance (Halo), route optimization (Swift), and business insights (Lumi). We implement measures to prevent the identification of specific individuals or Clients from the data used for general model improvement unless explicitly agreed otherwise.
  • To Communicate With You:
    • Respond to your inquiries submitted via contact forms, email, or phone.
    • Send administrative information regarding the Service (e.g., updates, security alerts, policy changes).
    • Send marketing communications (where consent is obtained or legitimate interest applies, with opt-out options).
  • For Security and Compliance:
    • Monitor for and prevent fraudulent or unauthorized activity on Lyvios and the Website.
    • Enforce our terms and conditions.
    • Comply with legal obligations, court orders, or governmental requests, particularly under US federal and state laws.
  • For Business Operations:
    • Manage our Client relationships (billing, account management).
    • Perform data analysis and audits related to Lyvios, Inc.'s operations.

5. Legal Basis for Processing (Controller Activities)

For data where Lyvios, Inc. acts as the controller/business, our legal basis for processing under US privacy laws typically includes:

  • Contract Performance: Where processing is necessary to perform our contract with you or to take steps at your request before entering into a contract.
  • Legitimate Business Purposes: Where processing is necessary for our legitimate business purposes, as permitted by applicable US privacy laws.
  • Legal Obligations: Where processing is necessary to comply with US federal, state, or local laws.
  • Consent: Where you have given clear consent for specific processing activities (e.g., marketing communications).

Note: For Client Operational Data where we act as a service provider, the Client (as the business) is responsible for establishing the legal basis for processing.

6. Data Sharing and Disclosure

We do not sell personal information. We may share information under the following circumstances:

  • With Client Consent/Instruction: We share Client Operational Data as directed by the respective Client (e.g., when they configure data sharing within Lyvios or grant access to their users).
  • With Service Providers: We may share information with trusted third-party vendors, consultants, and other service providers who perform services on our behalf (e.g., cloud hosting providers [like AWS, GCP, Azure - specify if possible], CRM platforms, analytics providers, payment processors). These providers are contractually obligated to protect the data and use it only for the purposes for which it was disclosed.
  • For Legal Reasons: We may disclose information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
  • Business Transfers: In the event of a merger, acquisition, financing, reorganization, or sale of all or a portion of Lyvios, Inc.'s assets, information may be transferred as part of that transaction, subject to standard confidentiality arrangements.
  • Aggregated/Anonymized Data: We may share aggregated or anonymized data, which cannot reasonably be used to identify you or our Clients, for various purposes including analysis and reporting.

7. Data Security

We implement appropriate technical and organizational security measures designed to protect the security of information we process related to Lyvios and our business operations. These measures include access controls, encryption (in transit and potentially at rest), regular security assessments, and staff training. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect information, we cannot guarantee its absolute security. Clients are responsible for configuring and managing security settings within their control on Lyvios.

8. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law (such as for tax, accounting, or other legal requirements).

  • Client Operational Data: Retained according to the terms of our agreement with the Client. Upon termination of the agreement, data is typically deleted or returned as instructed by the Client within a specified timeframe.
  • User Account Information: Retained for as long as the user account on Lyvios is active and for a reasonable period thereafter as necessary for administrative or legal purposes.
  • Website Visitor and Contact Information: Retained for as long as necessary to respond to inquiries, maintain communication records, or for analytical purposes, subject to your rights.

9. International Data Transfers

While our servers are primarily located in the United States, your information may be transferred to, stored, and processed in countries outside the US where our third-party service providers may be located. These countries may have data protection laws that are different from those in the United States. Where we transfer personal information internationally, we will take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy and applicable US law (e.g., using standard contractual clauses or other appropriate transfer mechanisms).

10. Your Rights

Depending on your location (e.g., California residents under CCPA) and the context (e.g., whether we are a business or service provider), you may have certain rights regarding your personal information:

  • Right to Know: Request information about the personal information we collect, use, disclose, and sell.

  • Right to Access: Request access to specific pieces of personal information we have collected.

  • Right to Delete: Request deletion of your personal information, subject to certain exceptions.

  • Right to Correct: Request correction of inaccurate personal information.

  • Right to Opt-Out: Opt-out of the sale or sharing of your personal information (note that we do not sell personal information).

  • Right to Non-Discrimination: Exercise your privacy rights without discrimination.

  • Exercising Your Rights:

    • Regarding Client Operational Data: If you are an end-user of Lyvios under a Client account and wish to exercise rights regarding data controlled by that Client, please contact your organization's administrator directly. Lyvios, Inc. will assist our Clients in responding to data subject requests as required by our agreements.
    • Regarding Data Controlled by Lyvios, Inc.: To exercise your rights regarding information for which Lyvios, Inc. is the business, please contact us using the details below. We may need to verify your identity before processing your request.

11. Cookies and Tracking Technologies

Our Website uses minimal cookies that are strictly necessary to enhance your experience on the Lyvios platform. These cookies are only used to store user preferences and settings that help us provide a better user experience. We do not use cookies for tracking, advertising, or data collection purposes.

These essential cookies help us:

  • Remember your display preferences
  • Maintain your session when logged into the platform
  • Ensure the security and proper functioning of the website

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of our platform.

12. Children's Privacy

Our Website and Service are not intended for use by individuals under the age of 13, in compliance with the Children's Online Privacy Protection Act (COPPA). We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal information from a child under 13, we will take steps to delete such information promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last Updated" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information. For material changes, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification (if we have your contact information).

14. Contact Information

If you have questions or comments about this Privacy Policy, or if you wish to exercise your rights, please contact us at:

Lyvios, Inc.
Nairobi, Kenya
Email: legal@lyvios.com
Phone: +1 (740) 272-5282

15. Governing Law

This Privacy Policy is governed by and construed in accordance with the laws of the State of Delaware, United States, without giving effect to any principles of conflicts of law. Any disputes arising under or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the state and federal courts located in Delaware.