Privacy Policy

1. Information We Collect

1.1 Account Information

When you create an account we collect your first name, last name, and email address. Authentication is handled through Firebase Authentication; we do not store your password directly.

1.2 Equipment Information

You may enter details about your equipment, including manufacturer, model, serial number, operating hours, equipment type, and fuel type. This data is used to provide tailored diagnostic assistance.

1.3 Diagnostic Session Data

When you start a diagnostic session we collect the problem description you provide, your responses to troubleshooting checklist steps, any notes you add, and the outcomes of diagnosis results. This information is necessary to deliver the core diagnostic service.

1.4 Media Uploads

You may upload images (via camera or photo library) and audio recordings of equipment sounds. These files are stored securely and analyzed by our AI systems to support your diagnosis. We collect the file name, file type, and file size alongside the media content.

1.5 Waiver & Consent Records

When you accept our liability waiver we record your electronic signature (your typed legal name), the waiver version, your IP address, browser user-agent string, and the date and time of acceptance.

1.6 Feedback

If you submit feedback, report an issue, or request a feature, we collect the text of your message along with the type of submission.

1.7 Usage & Analytics Data

We use PostHog to collect anonymized usage analytics such as screen views, feature interactions, and diagnosis workflow events. These events help us understand how the Service is used and improve the user experience. We do not use analytics data to build individual advertising profiles.

1.8 Automatically Collected Data

We may automatically collect your IP address, device type, operating system, browser user-agent string, and timestamps associated with your activity. This data is used for security, troubleshooting, and service improvement.

2. How We Use Your Information

• Provide, operate, and maintain the diagnostic assistance Service
• Analyze uploaded images and audio using AI to generate diagnostic insights
• Generate research summaries, likely causes, and troubleshooting checklists
• Personalize diagnostics based on your equipment details
• Process and respond to your feedback, bug reports, and feature requests
• Send transactional emails (e.g., email verification)
• Monitor and analyze usage trends to improve the Service
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

3. Third-Party Services

We share data with the following categories of third-party service providers, strictly to operate the Service:

• AI / Language Model Providers — We send diagnostic session data (problem descriptions, checklist responses, equipment details, and uploaded media) to AI providers including Anthropic (Claude), Google (Gemini), and Microsoft (Azure OpenAI) to generate diagnoses and research. These providers process data under their own data-processing agreements.
• Authentication — Google Firebase Authentication manages user sign-in and email verification.
• Email Delivery — Resend is used to send verification and transactional emails on our behalf.
• Cloud Storage — Amazon Web Services (AWS) S3 is used to store uploaded images and audio files.
• Analytics — PostHog collects anonymized usage analytics to help us understand product usage.
• Database — PostgreSQL hosted infrastructure stores your account, equipment, and session data.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Data Storage & Security

Your data is stored on secure cloud infrastructure. We implement industry-standard security measures including encrypted connections (TLS), authenticated API access, and server-side ownership validation to protect your information. Despite our efforts, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your account data for as long as your account is active. Diagnostic sessions and associated data (checklists, diagnoses, attachments) are retained to allow you to review past sessions. Deleted sessions are soft-deleted and may be permanently removed after a reasonable retention period. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access — Request a copy of the personal data we hold about you.
• Correction — Request that we correct inaccurate or incomplete data.
• Deletion — Request that we delete your personal data.
• Portability — Request your data in a structured, commonly used format.
• Objection — Object to certain processing of your personal data.

To exercise any of these rights, please contact us at ray@liftworxlabs.com.

7. Children's Privacy

The Service is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Effective Date" at the top of this page. We encourage you to review this policy periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

9. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

Liftworx Labs
Email: ray@liftworxlabs.com