lymiq logo
Sign inStart Creating

Privacy Policy

Last Updated: December 18, 2025

Introduction

Welcome to lymiq ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your information. This Privacy Policy explains our data practices for the lymiq service available at lymiq.io (the "Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

Information We Collect

Account Information

When you create an account with lymiq, we collect:

  • Email address
  • Username
  • Password (encrypted)
  • Account creation date

Usage Data

We automatically collect certain information when you use the Service:

  • Diagram generation requests and content
  • Feature usage patterns
  • Session duration and frequency
  • Technical data (browser type, operating system, IP address)

Authentication Data

We use authentication cookies strictly necessary for:

  • Maintaining your logged-in session
  • Securing your account access
  • Verifying your identity

Analytics Data

We use Plausible Analytics, a privacy-friendly analytics service, to understand how our Service is used. Plausible:

  • Does not use cookies
  • Does not collect personal data
  • Does not track users across websites
  • Is GDPR, CCPA, and PECR compliant
  • Provides aggregate statistics only

Analytics data collected includes:

  • Page views
  • Referral sources
  • Geographic location (country-level only)
  • Device type and browser

How We Use Your Information

We use the collected information for the following purposes:

Service Delivery

  • To create and manage your account
  • To generate diagrams based on your requests
  • To provide MCP (Model Context Protocol) integration
  • To enable collaboration and sharing features

Service Improvement

  • To analyze usage patterns and improve features
  • To develop new functionality
  • To optimize performance and user experience
  • To troubleshoot technical issues

Communication

  • To send service-related notifications
  • To respond to your inquiries and support requests
  • To provide important updates about the Service
  • To notify you of changes to our terms or policies

Security and Compliance

  • To detect and prevent fraud or abuse
  • To enforce our Terms of Service
  • To comply with legal obligations
  • To protect the rights and safety of our users

Data Storage and Security

Storage Location

Your data is stored on secure cloud infrastructure. We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction.

Security Measures

  • Encryption in transit (HTTPS/TLS)
  • Encrypted password storage
  • Regular security audits
  • Access controls and authentication
  • Secure backup procedures

Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data at any time.

Cookies and Tracking Technologies

Strictly Necessary Cookies

We use cookies only for:

  • Authentication: To keep you logged in and maintain your session
  • Session management and security

These cookies are essential for the Service to function and cannot be disabled.

No Marketing or Tracking Cookies

We do not use:

  • Third-party advertising cookies
  • Social media tracking pixels
  • Marketing or retargeting cookies
  • Cross-site tracking technologies

Analytics

As stated above, we use Plausible Analytics, which does not use cookies and does not collect personally identifiable information.

Data Sharing and Disclosure

We Do Not Sell Your Data

We will never sell, rent, or trade your personal information to third parties.

Limited Sharing

We may share your information only in the following circumstances:

Service Providers: We may share data with trusted third-party service providers who assist us in operating the Service, such as:

  • Cloud hosting providers
  • Authentication services
  • Email service providers

These providers are contractually obligated to protect your data and may only use it to provide services to us.

Legal Requirements: We may disclose your information if required by law, court order, or governmental authority, or to:

  • Comply with legal processes
  • Enforce our Terms of Service
  • Protect our rights, privacy, safety, or property
  • Protect the rights, privacy, safety, or property of our users

Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

Your Rights and Choices

Access and Portability

You have the right to:

  • Access your personal data
  • Request a copy of your data in a portable format
  • Review diagrams you've created

Correction and Update

You may update or correct your account information at any time through your account settings.

Deletion

You have the right to:

  • Delete your account
  • Request deletion of your personal data
  • Request deletion of specific diagrams

To delete your account, contact us at support@lymiq.io.

Opt-Out

You may opt out of:

  • Non-essential communications
  • Service announcements (though you'll still receive critical security updates)

Data Protection Rights (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Rights related to automated decision-making

California Privacy Rights (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt out of the sale of personal information (we do not sell your data)
  • Right to deletion
  • Right to non-discrimination

Children's Privacy

The Service is not intended for children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable data protection laws.

Third-Party Services

MCP Integration

If you use our Model Context Protocol (MCP) integration with third-party tools (Claude Code, Cursor, VS Code, Windsurf), those services have their own privacy policies. We encourage you to review their policies.

External Links

The Service may contain links to external websites. We are not responsible for the privacy practices of third-party sites.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending you an email notification (for significant changes)

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: support@lymiq.io
Website: https://lymiq.io

Compliance and Certifications

We are committed to complying with:

  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • Other applicable data protection laws

Data Processing Addendum

For enterprise customers who require a Data Processing Addendum (DPA) or Business Associate Agreement (BAA), please contact us to discuss your specific requirements.

This Privacy Policy is effective as of the date stated above and applies to all users of the lymiq Service.