Privacy Policy

1. Introduction

Levqor Technologies Ltd. ("Levqor," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our data backup and retention management platform (the "Services") available at levqor.ai and through our associated APIs and applications.

This Privacy Policy applies to all users of the Services, including visitors to our website, registered account holders, and enterprise customers. By accessing or using the Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy and our Terms of Service.

We are committed to compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws worldwide. If you have questions or concerns about this Privacy Policy or our data practices, please contact us at privacy@levqor.ai.

2. Information We Collect

We collect various types of information to provide, maintain, and improve the Services. The categories of information we collect include:

2.1 Information You Provide Directly

When you create an account, subscribe to a plan, or interact with the Services, you may provide:

• Account Information: Name, email address, company name, job title, and password
• Billing Information: Payment card details, billing address, and transaction history (processed securely through our payment processor Stripe)
• Profile Information: Optional profile photo, preferences, and account settings
• Communication Data: Information you provide when contacting support, responding to surveys, or participating in promotions
• Customer Data: Workflows, configurations, backup data, and any content you upload, create, or store using the Services

2.2 Information Collected Automatically

When you access or use the Services, we automatically collect certain information, including:

• Usage Data: Workflow execution logs, API calls, feature usage, execution times, and performance metrics
• Device Information: Device type, operating system, browser type and version, IP address, and unique device identifiers
• Log Data: Access times, pages viewed, referring URLs, clickstream data, and error logs
• Location Data: General geographic location based on IP address (city and country level, not precise geolocation)
• Cookies and Similar Technologies: See Section 8 (Cookie Policy) for detailed information

2.3 Information from Third Parties

We may receive information about you from third-party services you connect to Levqor, such as OAuth providers (Google, Microsoft), payment processors, and integration partners. This may include authentication credentials, profile information, and usage data from connected services.

3. How We Use Your Information

We use the information we collect for various purposes, including:

3.1 Service Provision and Operation

• Providing, maintaining, and improving the Services
• Processing and managing your account, subscriptions, and transactions
• Executing workflows and backup operations as configured by you
• Monitoring system performance, uptime, and reliability
• Providing customer support and responding to inquiries

3.2 Security and Fraud Prevention

• Detecting, preventing, and investigating fraud, abuse, and security incidents
• Monitoring compliance with our Acceptable Use Policy and Fair Use Policy
• Protecting the rights, property, and safety of Levqor, our users, and the public
• Conducting security audits and vulnerability assessments

3.3 Communication and Marketing

• Sending transactional emails (account notifications, billing receipts, service updates)
• Providing product announcements, feature releases, and educational content (you may opt out)
• Conducting surveys and collecting feedback to improve the Services
• Sending marketing communications about Levqor products and services (with your consent where required)

3.4 Analytics and Improvement

• Analyzing usage patterns and trends to improve user experience
• Developing new features, products, and services
• Conducting research and statistical analysis
• Optimizing performance, reliability, and scalability

3.5 Legal Compliance

• Complying with legal obligations, court orders, and regulatory requirements
• Enforcing our Terms of Service and other agreements
• Responding to lawful requests from government authorities
• Protecting our legal rights and defending against legal claims

4. Data Sharing and Disclosure

We do not sell your personal information to third parties. We may share your information in the following limited circumstances:

4.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, such as:

• Cloud infrastructure providers (hosting, storage, databases)
• Payment processors (Stripe for billing and payment processing)
• Email service providers (transactional and marketing emails)
• Analytics and monitoring services
• Customer support and help desk platforms

These service providers are contractually obligated to protect your information and may only use it to provide services to Levqor. They are prohibited from using your data for their own purposes.

4.2 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your information may be transferred to the acquiring entity or successor. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, including to meet national security or law enforcement requirements. We will notify you of such disclosures unless legally prohibited.

4.4 Protection of Rights

We may disclose information to enforce our Terms of Service, protect our rights and property, investigate fraud or security issues, or protect the safety of our users and the public.

4.5 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing, such as when connecting third-party integrations or authorizing data access.

5. Data Security

We implement robust technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. Our security practices include:

• Encryption: Data in transit is protected using TLS 1.3 or higher. Data at rest is encrypted using AES-256 encryption
• Access Controls: Role-based access controls (RBAC), multi-factor authentication (MFA), and principle of least privilege
• Network Security: Firewalls, intrusion detection systems (IDS), and DDoS protection
• Security Monitoring: 24/7 monitoring, automated threat detection, and incident response procedures
• Regular Audits: Penetration testing, vulnerability scanning, and third-party security assessments
• Secure Development: Code reviews, static analysis, and security-focused development practices
• Employee Training: Regular security awareness training and background checks for personnel with data access

While we employ industry-standard security measures, no system is completely secure. We cannot guarantee absolute security of your information. You are responsible for maintaining the confidentiality of your account credentials and for any activities conducted through your account.

In the event of a data breach that affects your personal information, we will notify you and relevant regulatory authorities in accordance with applicable data protection laws, typically within 72 hours of becoming aware of the breach.

6. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have specific rights under the General Data Protection Regulation (GDPR) regarding your personal data:

6.1 Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contractual Necessity: To provide the Services pursuant to our Terms of Service
• Legitimate Interests: To improve our Services, prevent fraud, and ensure security
• Consent: For marketing communications and non-essential cookies (you may withdraw consent at any time)
• Legal Obligation: To comply with applicable laws and regulations

6.2 Your GDPR Rights

Under GDPR, you have the following rights:

• Right to Access: Obtain confirmation of whether we process your personal data and request a copy of such data
• Right to Rectification: Request correction of inaccurate or incomplete personal data
• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data in certain circumstances
• Right to Restriction: Request restriction of processing your personal data in certain situations
• Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
• Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise any of these rights, please contact us at privacy@levqor.ai. We will respond to your request within 30 days in accordance with GDPR requirements.

7. CCPA Compliance (California Users)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information:

7.1 Categories of Personal Information

We collect the following categories of personal information as defined by CCPA:

• Identifiers (name, email, IP address)
• Commercial information (purchase history, subscription details)
• Internet or network activity (browsing history, usage data)
• Geolocation data (general location from IP address)
• Professional or employment-related information (job title, company)
• Inferences drawn from the above to create a profile

7.2 Your CCPA Rights

California residents have the right to:

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out: Opt out of the sale of your personal information (we do not sell personal information)
• Right to Non-Discrimination: Exercise your CCPA rights without discriminatory treatment

To exercise these rights, submit a verifiable consumer request to privacy@levqor.ai. We will verify your identity before processing your request and respond within 45 days.

7.3 Sale of Personal Information

We do not sell personal information as defined by CCPA. We do not and will not sell your personal information to third parties for monetary or other valuable consideration.

8. Cookie Policy

We use cookies and similar tracking technologies to collect information, improve user experience, and analyze usage of the Services.

8.1 Types of Cookies We Use

• Essential Cookies: Required for the Services to function properly (authentication, security, session management)
• Performance Cookies: Collect information about how you use the Services to help us improve performance
• Functional Cookies: Remember your preferences and settings to enhance your experience
• Analytics Cookies: Help us understand user behavior and measure the effectiveness of our Services

8.2 Managing Cookies

You can control cookie preferences through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. Please note that disabling certain cookies may affect the functionality of the Services. Essential cookies cannot be disabled as they are necessary for the Services to operate.

8.3 Third-Party Cookies

We may use third-party services (such as analytics providers) that set cookies on your device. These third parties have their own privacy policies governing their use of information they collect.

9. International Data Transfers

Levqor is based in the United Kingdom, and your information may be transferred to, stored, and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your jurisdiction.

When we transfer personal data from the EEA, UK, or Switzerland to other countries, we implement appropriate safeguards, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions by the European Commission for certain countries
• Binding Corporate Rules where applicable
• Other legally recognized transfer mechanisms

We ensure that all international data transfers comply with applicable data protection laws and that your data receives an adequate level of protection wherever it is processed.

10. Data Retention

We retain your personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary depending on the type of information:

• Account Information: Retained while your account is active and for 30 days after account closure or cancellation
• Billing Records: Retained for 7 years to comply with tax and accounting regulations
• Customer Data: Retained for 30 days after subscription termination to allow data export, then permanently deleted
• Usage Logs: Retained for 90 days for operational and security purposes, then aggregated or deleted
• Support Communications: Retained for 3 years to improve customer service

After the applicable retention period, we will securely delete or anonymize your information. Anonymized or aggregated data may be retained indefinitely for analytics and research purposes.

11. Children's Privacy

The Services are not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you are under 18, do not use the Services or provide any information to us.

If we learn that we have collected personal information from a child under 18 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we may have information from or about a child under 18, please contact us at privacy@levqor.ai.

12. Your Privacy Rights and Choices

Regardless of your location, you have certain rights regarding your personal information:

12.1 Access and Update

You can access and update most of your personal information directly through your account settings. For additional assistance, contact us at support@levqor.ai.

12.2 Marketing Communications

You may opt out of receiving marketing emails by clicking the "unsubscribe" link in any marketing email or by adjusting your communication preferences in your account settings. Please note that you cannot opt out of transactional emails related to your account and subscriptions.

12.3 Account Deletion

You may request deletion of your account and associated personal information by contacting support or through your account settings. See our Cancellation Policy for details on the account closure process.

12.4 Data Export

You can export your Customer Data at any time through the Services. We provide data export functionality in standard formats (JSON, CSV) to facilitate data portability.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes, we will:

• Update the "Last updated" date at the top of this page
• Notify you via email (to the address associated with your account)
• Display a prominent notice on our website or within the Services
• In some cases, request your explicit consent to the updated terms

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Services after we publish or communicate notice of changes to this Privacy Policy constitutes your acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiry within 30 days. For GDPR-related requests, we will respond within the timeframes required by applicable law (typically 30 days, extendable by an additional 60 days for complex requests).

15. EU Representative

If you are located in the European Economic Area and have questions about our data protection practices, you may also contact our EU representative: