Privacy Policy

1. Who this applies to

This Privacy Policy applies to visitors and users of our marketing website (the “Site”). It does not replace any separate agreement or privacy terms that apply if you use the Lisa learning platform or other Lisa products under a subscription or contract.

2. Information we collect

2.1 You provide directly

When you request a demo, complete onboarding, or create an organization through the Site, we may collect:

• Contact details such as your name, work email address, and phone or WhatsApp number
• Your role and information about your organization (for example company size, industry, goals, and similar fields you submit in our forms)
• Organization details when you set up an account, such as organization name, admin email, website, industry, and company description
• Optional files you upload when that feature is available (for example a company logo)

2.2 Automatically

Like most websites, our hosting and infrastructure may automatically log technical information such as IP address, browser type, device type, approximate location derived from IP, and the date and time of requests. We use this to operate and secure the Site.

3. How we use information

We use the information above to:

• Respond to your requests, run onboarding, and set up trial or demo access
• Store lead and organization records in our systems (see “Service providers” below)
• Send transactional or follow-up messages you expect (for example WhatsApp or email confirmations or next steps), where you have provided contact details and applicable law allows it
• Improve our Site, understand interest in our product, and prevent fraud or abuse
• Comply with law and enforce our terms

4. Service providers and sharing

We use trusted third-party services that process data on our behalf. Depending on how you use the Site, this may include:

• Google Firebase / Firestore — to store onboarding and organization-related records you submit through the Site. Google’s privacy information is available at policies.google.com/privacy.
• Hosting and infrastructure — for example the platform that serves this website (which may process logs as described above).
• Messaging providers — if we send WhatsApp or SMS messages, or transactional email, those messages are delivered through the applicable provider, which processes the content and delivery metadata needed to send the message.

We may also share information if required by law, to protect rights and safety, or in connection with a merger, acquisition, or sale of assets, subject to applicable law.

Links on the Site (for example to schedule a demo on a calendar page) may take you to third-party sites with their own privacy practices. We are not responsible for those sites.

5. Cookies and similar technologies

We may use cookies or similar technologies as needed for the Site to function, for security, or for analytics. You can control cookies through your browser settings; disabling some cookies may affect how the Site works.

6. Retention

We keep information for as long as needed to fulfill the purposes in this policy, unless a longer period is required or allowed by law. Retention periods can depend on whether you become a customer, whether we have an ongoing relationship with your organization, and our legal obligations.

7. Security

We use reasonable technical and organizational measures designed to protect personal information. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

8. Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, or restrict certain processing of your personal information, or to object to processing or to data portability. You may also have the right to lodge a complaint with a supervisory authority.

To exercise these rights, contact us using the details below. We may need to verify your request before responding.

9. International transfers

We may process and store information in countries other than your own, including where our service providers operate. Where required, we use appropriate safeguards (such as standard contractual clauses approved by regulators) for international transfers.

10. Children

The Site is not directed at children under 16, and we do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps.

11. Changes

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Effective” date at the top. If changes are material, we will provide additional notice as required by law.

12. Contact

For privacy questions or requests, contact us at privacy@thelisa.ai.