Skip to main content

Privacy Policy

Privacy Policy

This policy is provided as a template. Consult a legal professional for your specific needs.

This Privacy Policy describes how LKA("we", "us", or "our") collects, uses, and shares your personal information when you use our services.

1. Information We Collect

1.1 Information You Provide

  • Account data — name, email address, and password when you create an account.
  • Billing data — payment method details processed securely through our payment provider (Stripe/Paddle). We do not store full card numbers.
  • Profile data — avatar, organization name, and preferences you configure.
  • Communications — messages you send through support channels or feedback forms.

1.2 Information Collected Automatically

  • Usage data — pages visited, features used, timestamps, and interaction patterns.
  • Device data — browser type, operating system, IP address, and device identifiers.
  • Cookies — see our Cookie Policy for details.

2. How We Use Your Information

  • Provide, maintain, and improve our services.
  • Process transactions and send billing notifications.
  • Send product updates and security alerts (you can opt out of marketing emails).
  • Detect and prevent fraud, abuse, or security incidents.
  • Comply with legal obligations.

3. Legal Basis for Processing (GDPR)

If you are in the European Economic Area, we process your data based on:

  • Contract — to provide the services you signed up for.
  • Legitimate interest — to improve our services and protect against fraud.
  • Consent — for optional marketing communications and non-essential cookies.
  • Legal obligation — to comply with applicable laws.

4. Data Sharing

We do not sell your personal data. We may share information with:

  • Service providers — hosting, payment processing, email delivery, and analytics.
  • Legal requirements — when required by law, court order, or government request.
  • Business transfers — in connection with a merger, acquisition, or sale of assets.

5. Data Retention

We retain your data for as long as your account is active. After account deletion, we remove personal data within 30 days, except where retention is required by law (e.g., billing records for tax purposes).

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data ("right to be forgotten").
  • Export your data in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent at any time.

To exercise these rights, contact us at info@hexalian.com.

7. Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, access controls, and regular security audits. No system is 100% secure — we encourage you to use a strong, unique password.

8. International Transfers

Your data may be transferred to and processed in countries outside your own. We ensure adequate safeguards through Standard Contractual Clauses or equivalent mechanisms.

9. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or in-app notification. Continued use after changes constitutes acceptance.

11. Contact Us

If you have questions about this Privacy Policy, contact us at:

  • Email: info@hexalian.com