Privacy Policy
Last updated: July 16, 2026
This Privacy Policy explains how Lynx AI ("Lynx," "we," "us") collects, uses, and protects information when you use our website, dashboard, and AI assistant service (the "Service").
1. Information we collect
Account information. When you create a dashboard account, we collect your first name, last name, country, email address, and a password (stored as a salted hash, never in plain text).
Billing information. Subscriptions are processed by PayPal. We never see or store your card or PayPal login details — PayPal shares with us only your email address, subscription ID, and payment status.
Website content you connect. If you connect a Shopify store, we access the product, page, policy, and content data your Shopify app credentials grant us. If you connect a website via URL, our crawler reads and stores the public text of the pages it finds (via your sitemap or by following links on your site).
Conversation data. When a visitor chats with your Lynx assistant, we store the conversation (messages and which internal tools were used) so you can review activity and so the assistant can maintain context within a session.
Technical data. Standard server logs (IP address, timestamps, request metadata) for security and debugging.
2. How we use information
- To provide, operate, and maintain the Service (indexing your content, answering visitor questions, syncing changes).
- To process payments and manage your subscription.
- To send account-related emails (email verification, activation codes, service notices).
- To monitor and improve the reliability and quality of the Service.
- To comply with legal obligations.
3. Third-party processors
We share limited data with the following processors, only as needed to run the Service:
- OpenAI — processes chat messages and your indexed content to generate assistant responses and embeddings.
- PayPal — processes subscription payments.
- Resend — sends transactional emails (activation codes, email verification).
- Railway — hosts our servers and database.
We do not sell your personal information to anyone.
4. Data isolation between customers
Every website connected to Lynx has its data (indexed content, conversations, sync history) stored under a separate internal identifier. The assistant for one website can never access or reference another website's data, regardless of what a visitor asks it.
5. Data retention
We retain account and website data for as long as your account is active. If you cancel your subscription, your connected website's indexed content and conversation history are retained for a limited period in case you resubscribe, after which they are deleted upon request or as part of routine data cleanup.
6. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal information. To exercise any of these rights, contact us using the details below.
7. Security
We use industry-standard measures to protect your data, including encrypted connections (HTTPS), hashed passwords, and per-website data isolation. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
8. Children's privacy
The Service is not directed at individuals under 18. We do not knowingly collect personal information from children.
9. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above.
10. Contact
Questions about this policy? Reach out through the contact details on our homepage.