Legal

Privacy Policy

Last updated: May 14, 2025  ·  Effective: May 14, 2025

Your privacy matters to us. This Policy explains what data we collect, why we collect it, and how you can control it. We do not sell your personal data to third parties.

1. Who We Are

lapio ("we," "us," or "our") operates the lapio platform, a Google review management service for businesses. This Privacy Policy explains how we collect, use, disclose, and protect information when you use our website and services (collectively, the "Service").

If you have questions about this Policy, contact us at privacy@lapio.io.

2. Information We Collect

2.1 Information You Provide

  • Account and waitlist data: Name, email address, phone number, business name, and business type when you sign up or join our waitlist.
  • Customer data you upload: Contact information (names, phone numbers, email addresses) of your customers that you import or sync to send review requests on your behalf.
  • Payment information: Billing details processed securely through our payment processor. We do not store full card numbers.
  • Communications: Messages you send to our support team.

2.2 Information Collected Automatically

  • Usage data: Pages visited, features used, time spent, and actions taken within the Service.
  • Device and log data: IP address, browser type, operating system, referring URLs, and timestamps.
  • Cookies and similar technologies: See Section 7 for details.

2.3 Information from Third Parties

When you connect integrations (e.g., Jobber, Housecall Pro, Google Business Profile), we receive data from those platforms necessary to provide the Service, such as job completion records and review data.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Service
  • Send review request SMS and email messages to your customers on your behalf
  • Generate AI-assisted responses to your Google reviews
  • Process payments and manage your subscription
  • Send you service-related notices, updates, and support responses
  • Send promotional communications about lapio (you can opt out at any time)
  • Analyze usage trends to improve product features and performance
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations

4. How We Share Your Information

We do not sell your personal data. We may share information in the following circumstances:

4.1 Service Providers

We share data with trusted vendors who help us operate the Service, including:

  • Cloud hosting and infrastructure providers
  • SMS and email delivery providers
  • Payment processors
  • Analytics providers
  • CRM tools (e.g., HubSpot) for managing leads and customer communications

These vendors are contractually required to protect your data and may only use it to provide services to us.

4.2 Your Customers' Data

Customer contact data you upload is used solely to send review requests on your behalf. We do not use your customers' data for our own marketing purposes.

4.3 Business Transfers

If lapio is involved in a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will provide notice before your data is transferred and becomes subject to a different privacy policy.

4.4 Legal Requirements

We may disclose your data if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of lapio, our users, or the public.

5. Customer Data You Upload

You are the data controller for the customer contact information you upload to lapio. You are responsible for:

  • Ensuring you have the legal basis and appropriate consents to share your customers' data with us
  • Complying with applicable privacy laws (including TCPA, CAN-SPAM, GDPR, CCPA) governing communications sent to your customers
  • Honoring your customers' requests to opt out of communications

We process this data solely on your instructions as your data processor.

6. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Service. When you close your account, we will delete or anonymize your personal data within 90 days, unless we are required to retain it longer for legal or regulatory reasons.

Customer contact data you upload will be deleted within 30 days of account closure upon request.

7. Cookies and Tracking

We use cookies and similar tracking technologies to:

  • Keep you logged in to your account
  • Remember your preferences
  • Understand how the Service is used (analytics)

You can control cookies through your browser settings. Disabling cookies may limit some features of the Service. We do not respond to "Do Not Track" browser signals at this time.

8. Security

We implement industry-standard technical and organizational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, and regular security reviews. However, no method of transmission over the internet is 100% secure. We encourage you to use a strong, unique password for your lapio account.

In the event of a data breach that affects your rights, we will notify you as required by applicable law.

9. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion: Request that we delete your personal data, subject to certain exceptions.
  • Portability: Request your data in a machine-readable format.
  • Objection / Restriction: Object to or request restriction of certain processing.
  • Opt out of marketing: Unsubscribe from promotional emails at any time via the link in any email we send.

To exercise any of these rights, email us at privacy@lapio.io. We will respond within 30 days.

10. California Residents (CCPA)

If you are a California resident, you have the right to know what personal information we collect, to request deletion of your personal information, and to opt out of any sale of your personal information. We do not sell personal information. To exercise your rights, contact us at privacy@lapio.io. We will not discriminate against you for exercising any of these rights.

11. International Transfers

lapio is based in the United States. If you access the Service from outside the US, your data may be transferred to and processed in the US, where data protection laws may differ from those in your country. By using the Service, you consent to this transfer.

12. Children's Privacy

The Service is not directed to children under the age of 13, and we do not knowingly collect personal data from children. If we learn that we have collected personal data from a child under 13, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@lapio.io.

13. Links to Other Sites

The Service may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies before providing any personal information.

14. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by posting a prominent notice on our website before the changes take effect. Your continued use of the Service after the effective date constitutes acceptance of the updated Policy.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: