Luvit.ai Privacy Policy

Last Updated: January 7, 2025

1. Introduction

Luvit.ai ("Company," "we," "us," or "our") is committed to protecting the privacy of our users ("user," "you," or "your"). This Privacy Policy explains our practices regarding the collection, use, storage, protection, and disclosure of information we collect from users of our cloud cost optimization and load scenario simulation platform ("Service").

2. Information We Collect

2.1 Customer-Provided Information

We collect the following types of information that you provide directly to us:

2.1.1 Account Information

• Company name and details
• Contact information (name, email address, phone number)
• Billing information
• User credentials
• Account preferences

2.1.2 Cloud Infrastructure Data

• Cloud service provider invoices and billing data
• Resource utilization metrics
• Configuration files
• Architecture diagrams
• Infrastructure specifications

2.1.3 Testing and Performance Data

• Load test results
• Performance metrics
• Benchmarking data
• Model binaries
• Test scenarios and configurations

2.2 Automatically Collected Information

We automatically collect certain information when you use our Service:

• Log data
• Device information
• IP addresses
• Browser type and version
• Usage patterns and statistics
• Performance metrics
• Session duration
• Feature utilization data

3. Use of Information

3.1 Primary Uses

We use the collected information strictly for:

• Providing and maintaining the Service
• Processing and optimizing cloud costs
• Generating load simulation scenarios
• Creating performance reports and recommendations
• Billing and account management
• Customer support
• Security and fraud prevention

3.2 Prohibited Uses

We explicitly commit to NEVER:

• Sell your data to third parties
• Share your information for marketing purposes
• Use your data to train AI models
• Mine your data for business intelligence
• Use your information for purposes not directly related to providing our Service

4. Data Storage and Security

4.1 Data Storage

• All data is stored in secure, enterprise-grade cloud infrastructure
• Data is encrypted both in transit and at rest using industry-standard encryption protocols
• Regular backups are performed with strict access controls
• Data is segregated by customer

4.2 Security Measures

We implement and maintain the following security measures:

• Multi-factor authentication
• Role-based access control
• Regular security audits
• Intrusion detection systems
• Firewall protection
• Regular security patches and updates
• Employee security training
• Incident response procedures

5. Data Retention and Deletion

5.1 Retention Period

• Active account data: Retained while account is active
• Backup data: Retained for 30 days after deletion
• Usage logs: Retained for 90 days
• Billing information: Retained as required by law

5.2 Data Deletion

Upon request or account termination:

• All customer data is deleted within 30 days
• Immediate deletion option available upon request
• Confirmation of deletion provided
• Option to export data before deletion

6. Third-Party Access and Data Processing

6.1 Service Providers

We may engage third-party companies only for:

• Cloud infrastructure hosting
• Payment processing
• Customer support tools
• Security services

6.2 Third-Party Obligations

All third-party service providers must:

• Sign strict confidentiality agreements
• Implement adequate security measures
• Process data only as instructed by us
• Delete data upon request
• Comply with applicable data protection laws

7. International Data Transfers

7.1 Data Location

• Primary data storage in [specify regions]
• Backup locations in [specify regions]
• Transfer protocols compliant with international standards

7.2 Transfer Safeguards

• Standard contractual clauses
• Data processing agreements
• Privacy Shield certification where applicable
• Regular compliance audits

8. Your Rights and Choices

You have the right to:

• Access your personal information
• Correct inaccurate data
• Request data deletion
• Export your data
• Restrict data processing
• Withdraw consent
• File a complaint

9. Changes to Privacy Policy

• We will notify you of material changes via email
• 30-day notice for significant changes
• Continued use constitutes acceptance of changes
• Previous versions available upon request

10. Compliance with Legal Requirements

10.1 Legal Basis for Processing

We process data based on:

• Contractual necessity
• Legal obligations
• Legitimate business interests
• User consent

10.2 Regulatory Compliance

We comply with:

• Local data protection laws
• Industry standards
• Security regulations
• Privacy frameworks

11. Breach Notification

In the event of a data breach:

• Affected users will be notified within 72 hours
• Detailed incident reports will be provided
• Remediation steps will be outlined
• Support will be provided to affected users

12. Contact Information

For privacy-related inquiries:

• Privacy Officer: [Email]
• Legal Department: [Email]
• Support Team: [Email]
• Physical Address: [Address]

13. Jurisdiction and Dispute Resolution

• All privacy matters are subject to the jurisdiction of Guadalajara, Jalisco, Mexico
• Disputes will be resolved in accordance with Mexican law
• Users retain the right to file complaints with relevant data protection authorities

This Privacy Policy represents our commitment to protecting your privacy and maintaining the confidentiality of your data. We regularly review and update our practices to ensure the highest standards of data protection.