Lyfework Master Privacy Policy

Last Updated: October 6, 2025

Effective Date: October 6, 2025

This Privacy Policy describes how Lyfework ("Service Provider," "we," "us," or "our") collects, uses, shares, and protects information in connection with the Lyfework IO Platform ("Platform") and Services.

SECTION 1: INFORMATION WE COLLECT

We collect several types of information to provide and improve our Services, categorized as Platform Data and Client Data.

1.1. Platform Data (Data We Collect Directly)

This data is necessary for the operation, billing, and security of the Platform.

Account and Registration Data: Information provided when creating or managing an account, such as name, email address, physical address, phone number, and billing information.

Usage and Operational Data (Utility Billing): Metadata automatically collected to calculate usage and utility charges, as detailed in our Terms of Service. This is vital for accurate rebilling of services like:

Call initiation and duration (Making/Receiving Calls).

Text message segments (Outbound SMS, WhatsApp Usage).

Workflow executions (Workflow Premium Features).

AI processing volume (Content AI word counts, External AI Model tokens, Reviews AI executions).

Technical Data: Log files, IP addresses, browser type, date/time stamps, clickstream data, and device identifiers used for platform optimization and security.

1.2. Client Data (Data Managed on Behalf of Client)

This refers to all data that the Client uploads, inputs, or collects through the use of the Platform (e.g., their customers' data).

End-User Data: Names, phone numbers, email addresses, and communication records of the Client's customers and prospects.

Communication Content: The actual content of SMS, emails, chat messages, and call recordings generated or stored within the Client's Lyfework IO sub-account.

Digital Assets: Client's branding, logos, website copy, and content used for funnel or website building.

SECTION 2: HOW WE USE INFORMATION

2.1. Client Data (Our Role as Processor)

We only use Client Data as directed by the Client or as necessary to provide the Services defined in the Service Agreement. This includes:

Executing automations and workflows designed by the Client.

Transmitting communications (SMS, email) to the Client's End-Users.

Generating reports and analytics for the Client's use.

Storing data within the Client's dedicated sub-account.

2.2. Platform Data (Our Role as Controller)

We use the Platform Data we collect directly for the following purposes:

Service Delivery and Billing: To operate, maintain, and provide all features of the Platform; to calculate and process recurring subscription fees and utility usage charges (rebilling).

Platform Improvement: To analyze usage trends, diagnose technical issues, and improve the speed and functionality of the Platform.

Security and Legal Compliance: To detect and prevent fraudulent, abusive, or illegal activity; and to comply with legal obligations (e.g., Florida statutes, federal regulations).

Communication: To send essential administrative messages, updates regarding the Terms of Service, security alerts, and support notifications.

SECTION 3: DATA PROCESSING FOR AI AND AUTOMATION

3.1. AI Functionality and Client Responsibility

The Platform utilizes various Artificial Intelligence (AI) and machine learning tools (e.g., Content AI, Reviews AI, Conversation AI) to perform services on the Client's behalf.

When a Client uses an AI feature, the input data provided by the Client is processed by external, specialized third-party AI models solely to generate the requested output (e.g., a review response or a piece of ad copy).

AI Model Training: Lyfework does not use Client Data or the content of client conversations to train the core foundational AI models provided by external partners.

Client Oversight: The Client retains full and sole responsibility for reviewing, validating, and ensuring the legal compliance of any content or actions generated by AI features before that content is published or transmitted to an End-User.

3.2. Subprocessors and Third-Party Services

We utilize trusted third-party service providers (Subprocessors) to perform functions necessary for Service delivery (e.g., cloud hosting, communication carriers, external AI providers).

We only share the minimum amount of information required for them to perform their services.

We maintain contracts with all Subprocessors requiring them to protect Client Data and Platform Data to standards consistent with this Policy.

SECTION 4: DATA SHARING AND DISCLOSURE

We share information only in the following circumstances:

With Client Partners: In situations involving a co-managed Service Agreement (e.g., Rapture Marketing and Client), we share necessary operational data with the designated Project Manager for project oversight and training.

For Legal Reasons: If required by law, court order, or governmental regulation (e.g., a subpoena related to a Florida court case).

For Billing and Utility: We share transaction details and usage data (e.g., SMS counts) with billing processors and communication carriers to complete the rebilling process.

Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, provided the acquiring entity agrees to adhere to the terms of this Privacy Policy.

Consent: When we have explicit consent from the Client.

SECTION 5: DATA SECURITY AND RETENTION

5.1. Security Measures

We employ industry-standard security measures (including encryption, firewalls, and access controls) to protect Platform Data and Client Data from unauthorized access, disclosure, alteration, or destruction. However, no internet-based system is 100% secure, and we cannot guarantee absolute security.

5.2. Data Retention

We retain Platform Data for as long as necessary to maintain the Client's account, fulfill billing and legal requirements, and enforce our agreements. We retain Client Data for the duration of the Client's active subscription. Upon termination, Client Data may be deleted within a standard grace period, subject to data portability clauses in the Service Agreement.

SECTION 6: YOUR RIGHTS AND CONTACT INFORMATION

6.1. Client Rights

As the owner and controller of Client Data, the Client is responsible for handling all requests from their End-Users regarding data rights (e.g., access, deletion, correction). Lyfework will assist the Client in responding to these requests to the extent technically feasible.

6.2. US Consumer Privacy Rights

We acknowledge and respect the rights of consumers as mandated by applicable U.S. state laws. Depending on your state of residence, you may have the right to:

Know what personal information we collect about you.

Request deletion of your personal information.

Opt-out of the "sale" or "sharing" of your personal information (as broadly defined by laws like the CCPA).

6.3. Contact Information

If you have questions or concerns about this Privacy Policy or your data, please contact us:

Lyfework Attention: Legal/Privacy Officer 6231 PGA Blvd Ste 104 #1046 Palm Beach Gardens, FL 33418

Email: [email protected]