PersonifyUX

Privacy Policy

Effective Date: January 1, 2026

1. Introduction

Lean Digital Agency LLC ("Lean Digital," "Company," "we," "us," or "our") operates PersonifyUX (the "Service").

This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use the Service, visit our website, create an account, request a demo, communicate with us, or otherwise interact with us.

2. Scope

This Privacy Policy applies to personal information we collect:

  • directly from you;
  • automatically through your use of the Service; and
  • from your organization in connection with your use of a business account.

This Privacy Policy does not apply to third-party websites, services, or platforms that may be linked from or integrated with the Service.

3. Information We Collect

We may collect the following categories of information:

A. Account and Contact Information

  • name
  • work email address
  • company name
  • job title
  • account credentials
  • support communications
  • sales or demo inquiry information

B. Billing and Transaction Information

  • billing contact details
  • subscription plan details
  • payment status
  • limited transaction metadata

Payment card information is generally processed by our third-party payment processor and not stored by us, except for limited billing-related records and transaction references.

C. Usage and Device Information

  • IP address
  • browser type
  • device type
  • operating system
  • timestamps
  • log data
  • feature usage information
  • referring URLs
  • approximate location derived from IP address

D. Audit and Service Input Data

  • URLs submitted for audit
  • audit configurations
  • screenshots captured in connection with requested audits
  • generated reports and output
  • prompts, notes, or other content you submit through the Service

E. Cookies and Similar Technologies

We may use cookies, local storage, session tokens, and similar technologies to keep you signed in, secure the Service, remember preferences, and understand how the Service is used.

4. How We Use Information

We use personal information to:

  • provide, operate, maintain, secure, and support the Service;
  • create and manage accounts;
  • process transactions and subscriptions;
  • generate audits, reports, and other Service output;
  • detect, prevent, and investigate fraud, abuse, security incidents, and other misuse;
  • improve the performance, usability, and reliability of the Service;
  • communicate with you about your account, product updates, service notices, security matters, and support requests;
  • comply with legal obligations and enforce our agreements;
  • develop aggregated and de-identified analytics, metrics, and product insights that do not reasonably identify you.

5. How We Disclose Information

We do not sell personal information.

We may disclose personal information to:

A. Service Providers

We use vendors and contractors that help us operate the Service, such as providers for:

  • cloud hosting and infrastructure
  • authentication
  • payment processing
  • analytics
  • customer support
  • email delivery
  • AI or model-processing services used to generate Service output

These providers may access information only as needed to perform services for us, subject to contractual and security restrictions.

B. Professional Advisers and Corporate Transactions

We may disclose information to lawyers, accountants, auditors, investors, financing sources, or prospective buyers in connection with corporate transactions, financing, due diligence, or business transfers, subject to appropriate confidentiality measures.

C. Legal and Safety Reasons

We may disclose information where reasonably necessary to:

  • comply with law, regulation, legal process, or government request;
  • enforce our Terms or other agreements;
  • protect the rights, property, or safety of Lean Digital, our users, or others;
  • investigate fraud, abuse, or security issues.

6. AI and Model Processing

To provide the Service, we may send limited portions of submitted content, including screenshots, extracted text, prompts, and related metadata, to third-party AI or model-processing providers.

We use those providers to process content on our behalf in order to generate Service output. We do not authorize third-party AI providers to use customer-submitted content to train their general models, except where expressly disclosed to you or where you separately choose or enable a feature that states otherwise.

The Service may generate inaccurate or incomplete results. You are responsible for reviewing output before relying on it.

7. Sensitive Data

The Service is not intended by default for the submission of sensitive personal data.

We may use automated redaction and filtering controls intended to reduce the likelihood that sensitive information is included in downstream processing, but no automated method is perfect.

Do not submit sensitive personal data unless we have expressly confirmed in writing that the relevant Service configuration supports that use.

8. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements.

In general:

  • account information is retained while your account is active and for a reasonable period afterward for legal, tax, accounting, audit, and enforcement purposes;
  • billing and transaction records may be retained for up to seven (7) years or longer if required by law;
  • application logs, security logs, and usage data may be retained for up to twelve (12) months, unless a longer period is needed for security, fraud prevention, or legal compliance;
  • screenshots and reports are retained within your account until deleted by you or until account closure, subject to standard system retention and backup cycles;
  • when you delete a report or close your account, associated screenshots and report data are generally deleted from active systems within 30 days, though residual copies may remain in secure backups for a limited period until overwritten in the ordinary course.

9. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction.

These safeguards may include:

  • encryption in transit;
  • encryption at rest where supported by our systems and service providers;
  • access controls based on job responsibilities;
  • logging and monitoring;
  • vendor diligence and contractual protections.

No security measure is perfect, and we cannot guarantee absolute security.

10. Cookies and Tracking Technologies

We use essential cookies and similar technologies necessary to operate and secure the Service, such as authentication and session-management tools.

We may also use analytics technologies to understand product performance and usage trends. Where required by applicable law, we will provide appropriate choices regarding non-essential cookies or similar technologies.

You can also manage some cookie preferences through your browser settings, but disabling certain cookies may affect Service functionality.

We do not use third-party advertising trackers to serve behaviorally targeted ads based on your use of the Service.

11. Your Rights and Choices

Depending on your jurisdiction, you may have rights regarding your personal information, including the right to:

  • access personal information we hold about you;
  • correct inaccurate information;
  • delete certain personal information;
  • obtain a copy of certain information in a portable format;
  • object to or limit certain processing, where applicable;
  • withdraw consent where processing is based on consent.

To submit a privacy request, contact privacy@personifyux.com.

We may take reasonable steps to verify your identity before processing a request. You may also use an authorized agent where permitted by law. If we deny your request, you may reply to our response email to appeal the decision where appeal rights are available under applicable law.

We will not discriminate against you for exercising applicable privacy rights.

12. International Data Transfers

We are based in the United States and may process or store information in the United States or other jurisdictions where our service providers operate. Those jurisdictions may have data protection laws that differ from those in your location.

13. Children's Privacy

The Service is not directed to children under 18, and we do not knowingly collect personal information directly from children under 18. If you believe a child has provided personal information to us, contact us and we will take appropriate steps to delete it.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide notice by email, through the Service, or by posting an updated version with a new effective date. Unless otherwise stated, changes become effective 30 days after notice.

15. Contact

For privacy questions or requests, contact: privacy@personifyux.com.