PRIVACY POLICY - LONGEVITRACK
This Privacy Policy (“Policy”) for LONGEVITRACK ("we," "us," or "our"), describes how and why we might collect, store, use, and/or share ("process") your information when you register to use our website available at https://www.longevitrack.com and our mobile application (collectively the “Platform”) or otherwise engage with us in other related ways.
Reading this Policy will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our services. If you still have any questions or concerns after reading this Policy, please contact us at info@longevitrack.com.
DEFINITIONS
Capitalised terms used in this Policy shall have the following meanings:
| "Cookie(s)" | Denotes a small piece of data stored on the user's device by the web browser, typically used to enhance user experience, track usage patterns, and collect information about the user's interactions with the Platform. |
| "Data Controller" | As defined in the General Data Protection Regulation (GDPR) 2016, refers to the entity that determines the purposes and means of the processing of Personal Data. |
| "Data Processor" | As defined in the GDPR, refers to an entity that processes Personal Data on behalf of the Data Controller. |
| "Longevitrack" | Refers to the online platform operated by Lisalis Technologies Ltd., accessible via the website and mobile application. |
| "Personal Data" | Refers to any information that identifies or can be used to identify an individual user, including but not limited to name, email address, contact details, and any other information provided by the user during registration or use of the Platform. |
| "Platform" | Denotes the Longevitrack website, its mobile application including all associated features, and services provided by Longevitrack. |
2. WHAT INFORMATION DO WE COLLECT?
1. Personal Data you disclose to us: We collect Personal Data that you voluntarily provide to us when you register on the Platform. The Personal Data that we collect depends on the context of your interactions with us and the Platform, the choices you make, and the features you use. The Personal Data we collect may include the following your full names, e-mail address and password. This processing will be carried out in accordance with applicable privacy laws and regulations such as the GDPR and the UK Data Protection Act (DPA) 2018, to ensure the confidentiality and security of your Personal Data. We are committed to maintaining the privacy and protection of your information, and any processing will be conducted in compliance with our Privacy Policy and applicable legal requirements.
2. User-Generated Checklists: The Platform allows users to create and manage personalized checklists for tracking activities, routines, and wellness goals. Users have full control over the information they enter when creating these checklists. The data entered is stored securely in our database. When users mark activities as complete, this status is updated in the app and reflected on their dashboard to provide progress insights. While we ensure that user-generated checklist data is stored securely and used solely for the intended purpose of providing personalized insights and reports, we encourage users to avoid inputting sensitive health information, as our platform does not currently support storing or processing such data.
3. Information automatically collected: We may automatically collect certain information when you visit, use, or navigate the Platform. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use the Platform, and other technical information. This information is primarily needed to maintain the security and operation the Platform, and for our internal analytics and reporting purposes.
- Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use the Platform and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type, and settings and information about your activity in the Platform (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called "crash dumps”), and hardware settings).
- Device Data. We collect device data such as information about your mobile phone, tablet, or other device you use to access the Platform. Depending on the device used, this device data may include information such as your IP address (or proxy server), unique device identifiers, device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.
- Location Data. We may collect location data such as information about your device's location, which can be either precise or imprecise. How much information we collect depends on the type and settings of the device you use to access the Platform. For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address). You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your location setting on your device. We may request to send you push notifications regarding the activities on your account. If you wish to opt out from receiving these types of communications, you may turn them off in your device's settings.
3. HOW DO WE PROCESS YOUR INFORMATION?
1. a. We may process your Personal Data for a variety of reasons, depending on how you interact with the Platform, including the following: (i) We may process your information so you can create and log in to your account, as well as keep your account in working order; (ii) We may process your information to provide you with the requested services; (iii) We may process your information to respond to your inquiries and solve any potential issues you might have in connection with the use of the Platform; (iv) We may process your information to send you details about the Platform and our related products and services, changes to our services, terms, and other similar information; (v) We may process your information when necessary to request feedback and to contact you about your use of the Platform; (vi) We may process your information as part of our efforts to keep the Platform safe and secure, including fraud monitoring and prevention; (vii) We may process your information when we believe it is necessary to identify usage trends, and to evaluate and improve our services, products, and your experience, unless you have opted against receiving this information; (viii) We may use your information to conduct scientific research studies related to our services, cognitive science, education, or other relevant research fields; and (ix) We may process your information when necessary to safeguard or protect an individual's vital interest, such as to prevent harm.
2. d. In addition to the foregoing, we may use and process your information to comply with our legal obligations, respond to lawful requests or court orders, defend our legal rights and enforce our terms and conditions. This includes protecting our rights, safety, and property, as well as the rights, safety, and property of our users or any other third parties. We may aggregate and anonymise your information to create statistical or aggregated data that does not personally identify you. This aggregated and anonymised data may be used for various purposes, such as analysing usage patterns, improving our Services, or conducting market research, or sharing with third parties for lawful purposes.
4. LEGAL BASES FOR PROCESSING YOUR INFORMATION
The GDPR requires us to explain the valid legal bases we rely on in order to process your Personal Data. As such, we may rely on the following legal bases to process your Personal Data:
1. With your consent. We may process your information if you have given us express permission (i.e. consent) to use your Personal Data for a specific purpose e.g for providing access to the Platform. You may withdraw your consent at any time by contacting us with the information provided in the “Contact Us” section below.
2. Performance of a Contract. We may process your Personal Data when we believe it is necessary to fulfil our contractual obligations to you, including providing our Services or at your request prior to entering into a contract with you.
3. Legitimate Interests. We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms. For example, we may process your Personal Data for some of the purposes described in order to: (i) Send users information about special offers and discounts on our services; (ii) Develop and display personalised and relevant advertising content for our users; (iii) Analyse how our services are used so we can improve them to engage and retain users; (iv) Support our marketing activities; (v) Diagnose technical problems and/or prevent fraudulent activities; and (vi) Understand how our users use our products and services so we can improve user experience.
4. Payment Processing. We may process your information for payment processing purposes through our third-party payment processors. This includes handling payment transactions, managing refunds, and ensuring the security of payment data. We do not store or collect your payment card details. Your payment information is provided directly to our third-party payment processors, and their use of your personal information is governed by their privacy policy.
5. Legal Obligations. We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved. Additionally, we may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party such as situations involving potential threats to the safety of any person.
5. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL DATA?
We may disclose your information if required to do so by law, regulation, or legal process, including to respond to a subpoena, court order, or government request. We may also disclose your information to exercise or defend our legal rights or to protect the rights, property, or safety of our users, employees, or others.
6. HOW LONG DO WE KEEP YOUR INFORMATION?
We will only keep your Personal Data for as long as it is necessary for the purposes set out in this Policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. No purpose in this Policy will require us keeping your Personal Data for longer than twelve (12) months past the termination of the user's account unless we have a legal basis to do so. When we have no ongoing legitimate business need to process your Personal Data, we will either delete or anonymise such information, or, if this is not possible (for example, because your Personal Data has been stored in backup archives), then we will securely store your Personal Data and isolate it from any further processing until deletion is possible.
7. COOKIES AND OTHER TRACKING TECHNOLOGIES
The Platform uses Cookies to collect and track certain data in connection with providing you the services. You may choose to refuse cookies, but this may affect the functionality of the Platform. For more information about cookies and how to manage them, please refer to our Cookies Policy linked here.
8. HOW DO WE KEEP YOUR INFORMATION SAFE?
1. a. All user data is securely stored in a MySQL database hosted on our backend services. Our systems are designed following best practices to maintain data integrity and prevent breaches. To safeguard data during transmission, we use industry-standard encryption protocols, ensuring that all information sent between users and our servers is protected from unauthorized access. User authentication and authorization are managed through JWT (JSON Web Token) technology, which provides a secure and efficient way to verify user identity and access permissions. We do not collect or store sensitive health data, ensuring that the data we handle remains non-sensitive and minimizes privacy concerns. Users have the ability to delete their activity records directly through the app. Deletion requests are processed securely, requiring authenticated user JWT tokens to verify authorization and prevent unauthorized modifications.
2. b. However, despite our safeguards and efforts to secure your information, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorised third parties will not be able to defeat our security and improperly collect, access, or modify Personal Data. Although we will do our best to protect your Personal Data, transmission of Personal Data to and from our Services is at your own risk. While we implement stringent security measures, your cooperation is vital in maintaining the security of your Personal Data. You are responsible for keeping your account credentials, including passwords, secure and confidential. Please refrain from sharing your account information with others and promptly notify us if you suspect any unauthorised access or use of your account.
9. TRANSFER OF DATA
Your information, including Personal Data, may be transferred to and stored on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ from those in your jurisdiction. If you are located outside of the United Kingdom and choose to provide information to us, please be aware that we transfer the data, including Personal Data, to the United Kingdom for processing. Similarly, if you are located within the United Kingdom and provide information to us, please note that we may transfer the data, including Personal Data, outside the United Kingdom for processing. By consenting to this Privacy Policy and submitting your information, you agree to these transfers. We will take all reasonable steps necessary to ensure that your data is treated securely and in accordance with this Policy. We will not transfer your Personal Data to any organisation or country unless adequate controls are in place, including the security of your Personal Data and other personal information.
10. WHAT ARE YOUR PRIVACY RIGHTS?
1. You have certain rights under applicable data protection laws. These include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; (iv) if applicable, to data portability; and (v) not to be subject to automated decision-making. In certain circumstances, you may also have the right to object to the processing of your Personal Data. You may make such a request by contacting us by using the contact details provided in the “CONTACT US” section below. We will consider and act upon any request in accordance with applicable data protection laws. If you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection authority.
2. Consent. If we rely on your consent to process your Personal Data, you have the right to withdraw this consent at any time. You may withdraw your consent at any time by contacting us or updating your preferences. Please note however that this will not affect the lawfulness of the processing before its withdrawal nor, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.
3. Opting out of marketing and promotional communications: You can unsubscribe from our marketing and promotional communications at any time by clicking on the unsubscribe link in the emails that we send, or by contacting us. You will then be removed from the marketing lists. However, we may still communicate with you — for example, to send you service-related messages that are necessary for the administration and use of your account, to respond to service requests, or for other non-marketing purposes.
4. Cookies and similar technologies: Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove cookies and to reject cookies. If you choose to remove cookies or reject cookies, note that this could affect certain features of the Platform.
11. THIRD PARTY LINKS
The Platform may include links to third-party websites that are not operated by us. If you click on a link to a third-party site, you will be directed to their site. We recommend reviewing the Privacy Policy of every site you visit. We do not have control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services.
12. CONTROLS FOR DO-NOT-TRACK FEATURES
Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognising and implementing DNT signals has been finalised. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Policy.
13. CHANGES TO OWNERSHIP OR CONTROL
In the event of a change in ownership or control of our Company, such as through a merger or acquisition, your Personal Data may be transferred to the new owners. We will notify you of any such change and provide choices regarding your Personal Data.
14. DO WE MAKE UPDATES TO THIS POLICY?
From time to time, we may update this Policy indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. If we make material changes to this Policy, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Policy frequently to be informed of how we are protecting your information.
15. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
If you have questions or comments about this Policy, you may contact us by email at info@longevitrack.com, or via our website on https://longevitrack.com/contact/. You may also contact us via post at:
LISALIS TECHNOLOGIES LTD
Address: 13 Armstrong Close, SE3 9BT, London, United Kingdom.
