Privacy Policy

Last Updated: January 10, 2025

Welcome to Lenxys! This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our web application, mobile apps, Chrome extension, AI necklace device, and all associated services (collectively, the "Platform"). Our Platform includes features such as meeting transcription, task automation, emotional intelligence processing, voice interaction, and various tool integrations. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Platform.


1. Information We Collect

1.1 Device Information

When using our AI necklace and other platform components, we collect:

  • Audio recordings from the necklace device during active use
  • Voice interaction data and voice patterns for personalization
  • Device sensors data (when permitted) for context awareness
  • Device settings and preferences
  • Location data (when permitted) for location-aware features

1.2 Personal Information

We collect personal information that you voluntarily provide, including:

  • Name, email address, and account credentials
  • Profile information and preferences
  • Professional information and work-related data
  • Communication preferences and settings
  • User-provided responses to AI assistant questions
  • Emotional response data and interaction patterns

1.3 Integration and Tool Data

Through our various integrations, we may collect:

  • Calendar data and meeting information
  • Email content and communication data
  • Task and project management information
  • CRM data and customer interaction records
  • Document and file contents when shared with the Platform
  • Social media integration data (when connected)

1.4 Conversation and Interaction Data

We collect and process:

  • Meeting transcriptions and audio recordings
  • Chat conversations with the AI assistant
  • Voice commands and interactions
  • Task automation patterns and preferences
  • Emotional indicators and sentiment data
  • Context-aware interaction history

1.5 Analytics and Usage Data

We use various analytics tools to improve our Platform:

  • Google Analytics and Google Tag Manager for usage tracking
  • Microsoft Clarity for user experience analysis
  • PostHog for product analytics
  • Amplitude (upcoming) for behavioral analytics
  • Custom analytics for AI performance optimization

2. How We Use Your Information

We use the collected information for:

  • Providing and personalizing our Platform services
  • Processing and generating meeting transcriptions
  • Developing and training our emotional intelligence features
  • Automating tasks based on your preferences and patterns
  • Improving our AI models and assistance capabilities
  • Enhancing Platform security and preventing fraud
  • Managing user accounts and providing support
  • Analyzing Platform usage and improving features
  • Facilitating integration with third-party tools

3. Data Storage and Security

We implement robust security measures to protect your data:

  • All data is encrypted at rest using industry-standard encryption
  • End-to-end encryption for sensitive communications
  • Secure MongoDB storage with strict access controls
  • Access restricted through Supabase ID or MongoDB ID authentication
  • Regular security audits and penetration testing
  • Secure data transmission using TLS/SSL protocols
  • Physical security measures for hardware components

4. AI Processing and Third-Party Services

We use various AI services and third-party processors:

  • OpenAI and Anthropic for advanced AI processing
  • Eleven Labs for voice processing
  • SuperDuperDB for vector storage and retrieval
  • Integration partners (Zapier, Unito.io, etc.)
  • Analytics providers as listed in section 1.5
  • Cloud infrastructure providers (Azure, AWS)

5. Data Sharing and Transfer

We may share your information with:

  • Team members within your organization (based on permissions)
  • Third-party service providers for Platform functionality
  • Integration partners necessary for requested features
  • Law enforcement when required by law

6. Legal Bases for Processing

We process your personal data under the following legal bases:

  • Consent: When you explicitly agree to the processing of your data for specific purposes
  • Contractual Necessity: Processing required to provide our services
  • Legal Obligation: When required by applicable laws
  • Legitimate Interests: Where processing is in our legitimate business interests and not overridden by your rights
  • Vital Interests: To protect your or another person's vital interests

7. Your Privacy Rights

7.1 General Rights

All users have the right to:

  • Access and export their personal data
  • Correct or update their information
  • Delete their account and associated data
  • Withdraw consent for data processing
  • Object to or restrict processing
  • Data portability

7.2 GDPR Specific Rights (EU/EEA Users)

Under GDPR, you have additional rights and protections:

  • Right to lodge a complaint with your local supervisory authority
  • Right to object to automated decision-making
  • Right to be informed about data breaches
  • Right to restrict processing for direct marketing

7.3 CCPA Specific Rights (California Residents)

Under CCPA, California residents have the right to:

  • Receive information about data collection, use, and sharing practices
  • Access specific pieces of personal information collected
  • Delete personal information (with certain exceptions)
  • Opt-out of the sale of personal information ("Do Not Sell My Personal Information")
  • Non-discrimination for exercising CCPA rights

In the past 12 months, we have not sold personal information but have disclosed certain categories for business purposes as described in Section 5.


7.4 LGPD Specific Rights (Brazilian Users)

Under LGPD, you have additional rights including:

  • Right to confirm existence of processing
  • Right to anonymization, blocking, or deletion of unnecessary or excessive data
  • Right to information about public and private entities with which we share data
  • Right to review automated decisions affecting your interests

7.5 Exercise Your Rights

To exercise any of these rights:

  • Email our Data Protection Officer at ai@lenxys.com
  • Use the privacy settings in your account dashboard
  • Submit a request through our Privacy Rights Portal [link]
  • Call our privacy hotline at [number]

We will respond to your request within the timeframe required by applicable law (30 days for GDPR, 45 days for CCPA, 15 days for LGPD).


8. Data Retention

We retain different types of data for varying periods:

  • Account information: Until account deletion
  • Meeting transcriptions: 90 days by default (configurable)
  • Voice recordings: 30 days by default (configurable)
  • Analytics data: 12 months
  • Integration data: As long as integration is active
  • Emotional intelligence data: 6 months

9. Cookie Policy

We use cookies and similar technologies for:

  • Essential Platform functionality
  • Authentication and security
  • Analytics and performance monitoring
  • Preference management
  • Integration management

10. Children's Privacy

Our Platform is not intended for users under 18. We do not knowingly collect or maintain information from persons under 18 years of age.


11. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international data transfers, including:

  • Standard contractual clauses
  • Data processing agreements
  • Privacy Shield compliance where applicable
  • Regional data storage options

12. Changes to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of any material changes through the Platform or via email. Continued use of the Platform after such modifications constitutes acceptance of the updated Policy.


13. Legal Basis and Jurisdiction

This Privacy Policy is governed by the laws of Georgia, Tbilisi. Any disputes shall be resolved in the courts of Tbilisi, Georgia.


14. Data Protection Officer and Representatives

For privacy-related inquiries or to exercise your rights, contact our Data Protection Officer:

  • DPO Email: ai@lenxys.com
  • EU Representative: Fernando Guerra - fernando@lenxys.com
  • UK Representative: Fernando Guerra - fernando@lenxys.com
  • Brazil Data Protection Officer (Encarregado): Anderson Palma - anderson@lenxys.com

14.1 Supervisory Authority Complaints

You have the right to lodge a complaint with your local supervisory authority:

  • EU/EEA residents can find their local authority through the European Data Protection Board
  • UK residents can contact the Information Commissioner's Office (ICO)
  • Brazilian residents can contact the Autoridade Nacional de Proteção de Dados (ANPD)
  • California residents can contact the California Privacy Protection Agency (CPPA)

14.2 General Contact

For general inquiries: