← Back to Lyrix
Privacy Policy
Last updated: April 18, 2026
1. Who We Are
Lyrix is operated by Northlux LLC, a Wyoming limited liability company. If you have any questions about this policy, contact us at legal@thelyrix.com.
2. Information We Collect
Account information: your name, email address, and profile data provided at registration or via OAuth (Google, Discord).
Usage data: inputs you submit (genre, mood, theme), generated outputs, scoring results, and session activity.
Payment information: processed by Stripe. We do not store card numbers — only a payment confirmation and Stripe transaction ID.
Technical data: IP addresses, browser type, device identifiers, and usage logs for security and performance monitoring.
Marketing preferences: whether you have opted in to receive product update emails (set at signup).
Usage data: inputs you submit (genre, mood, theme), generated outputs, scoring results, and session activity.
Payment information: processed by Stripe. We do not store card numbers — only a payment confirmation and Stripe transaction ID.
Technical data: IP addresses, browser type, device identifiers, and usage logs for security and performance monitoring.
Marketing preferences: whether you have opted in to receive product update emails (set at signup).
3. How We Use Your Information
We use your data to:
We do not sell your personal data to third parties.
- Provide, operate, and improve the Lyrix service
- Process payments and manage subscriptions
- Send transactional emails (account confirmations, receipts)
- Send product update emails, if you opted in
- Detect and prevent abuse or fraud
- Comply with legal obligations
We do not sell your personal data to third parties.
4. Data Sharing
We share data only with:
All providers are contractually required to protect your data and may not use it for their own purposes.
- Stripe — payment processing
- Supabase — authentication and database hosting
- Vercel — application hosting and delivery
- Legal authorities — where required by applicable law
All providers are contractually required to protect your data and may not use it for their own purposes.
5. Cookies & Tracking
We use cookies for session management and authentication. We do not use third-party advertising trackers. You can control cookies through your browser settings, though disabling them may affect Service functionality.
6. Data Retention
Account data is retained while your account is active. Usage and generation data may be retained for up to 24 months for service improvement purposes. You may request deletion at any time (see Your Rights below).
7. Your Rights
Depending on your jurisdiction, you may have the right to:
To exercise any of these rights, email legal@thelyrix.com. We will respond within 30 days.
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion of your data
- Object to or restrict certain processing
- Withdraw marketing consent at any time
- Data portability
To exercise any of these rights, email legal@thelyrix.com. We will respond within 30 days.
8. Security
We implement reasonable technical and organisational measures — including encrypted connections, access controls, and secure hosting — to protect your data. No system is perfectly secure; you use the Service at your own risk.
9. Children
The Service is not directed at anyone under 18. We do not knowingly collect data from minors. If you believe we have inadvertently done so, contact legal@thelyrix.com and we will delete the data promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated by email at least 14 days before taking effect. Continued use of the Service after the effective date constitutes acceptance.