← Back to home

Privacy Policy

Last updated: April 2026

Effective date: April 2, 2026

Yex Labs, LLC ("Yex Labs," "we," "us," or "our") operates the LivesLived mobile application for iOS (the "App") and the website located at liveslived.app (the "Website," and together with the App, the "Service"). We are based in Portland, Oregon, USA.

This Privacy Policy explains what information we collect, how we use and protect it, and your rights regarding that information. By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Information You Provide

  • Waitlist email address. If you sign up for our waitlist on the Website, we collect the email address you provide.
  • Survey responses. When joining the waitlist, you may optionally provide responses about your intended use case, feature preferences, pricing preferences, and estimated document volume.
  • Document content. When you use the App to scan handwritten documents (letters, journals, postcards, etc.), images of those documents are sent to third-party AI services for processing, as described in Section 3. You control which documents you choose to scan and process.

1.2 Information Collected Automatically

  • Anonymous authentication. The App uses Firebase Anonymous Authentication to create a session identifier. This does not require an email address, password, or any personally identifiable information.
  • Website analytics. We use PostHog and Google Analytics on the Website to collect anonymous usage data such as page views, referral sources, browser type, and general geographic region. These tools use cookies or similar technologies.

1.3 Information We Do NOT Collect

  • We do not require personal accounts. Authentication is anonymous.
  • We do not collect your name, phone number, or physical address.
  • We do not track your geographic location. When the App resolves geographic locations mentioned in your documents, that processing relates to the document content, not to your personal location.
  • We do not use advertising trackers or ad networks. The App's privacy manifest declares no tracking domains and sets NSPrivacyTracking to false.
  • We do not sell, rent, or trade your personal information to third parties, and we never will.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide the Service. Document images are processed by AI services to generate transcriptions, audio narration, chat responses, entity extraction (people, places, events), and geographic mapping of places mentioned in your documents.
  • To communicate with you. If you provide your email via the waitlist, we use it to notify you about product launches, updates, and related information.
  • To improve the Service. We use anonymous analytics to understand how visitors interact with the Website and to improve the user experience.
  • To understand our audience. We use aggregated, anonymous survey responses to inform product decisions.

3. Third-Party Services

We use the following third-party services to operate the Service. Each has its own privacy policy governing how it handles data:

  • Google Gemini AI (Google LLC) — Processes document images for text extraction, transcription, text-to-speech audio generation, AI-powered chat, and entity extraction. Document images and text are sent to Google's servers for processing. See Google's Privacy Policy.
  • Firebase (Google LLC) — Provides anonymous authentication and Cloud Functions infrastructure (hosted in us-central1 region) that proxies API calls to AI services. See Firebase Privacy and Security.
  • Google Maps Platform (Google LLC) — Used to geocode place names extracted from your documents for geographic mapping. Only place names from document content are sent; your personal location is not shared.
  • PostHog (PostHog, Inc.) — Website analytics for anonymous usage data. See PostHog's Privacy Policy.
  • Google Analytics (Google LLC) — Website analytics for anonymous traffic data. See Google's Privacy Policy.
  • Resend (Resend, Inc.) — Handles transactional email delivery for waitlist communications. See Resend's Privacy Policy.
  • Optional: OpenAI API / Groq API — If you choose to provide your own API keys for alternative text-to-speech providers, your document text may be sent to those services under their respective privacy policies. Use of these optional providers is entirely at your discretion.

4. Device Permissions

The App may request the following device permissions:

  • Camera — To scan physical documents using your device's camera.
  • Photo Library — To import existing photos of documents from your device.
  • Microphone — To enable voice commands within the App.
  • Background Audio — To allow continued audio playback of document narrations when the App is in the background.
  • Network Access — To communicate with cloud services for document processing, authentication, and geocoding.

All permissions are requested only when needed and can be revoked at any time through your device's Settings app.

5. Data Storage and Retention

5.1 On-Device Storage

All of your document data — including scanned images, transcriptions, audio files, extracted entities, and collections — is stored locally on your device using Apple's SwiftData framework. This data is not uploaded to our servers or stored in the cloud. If you delete the App, this data is removed from your device.

5.2 Transient Processing

When you process a document, the image is sent to Google Gemini AI via Firebase Cloud Functions for transcription and analysis. We do not persistently store your document images or content on our servers. Data sent to third-party AI services is subject to those services' respective data retention policies.

5.3 Waitlist Data

Email addresses and survey responses collected through the waitlist are retained until you request removal or until we determine they are no longer needed for the purposes described in this policy. To request removal of your waitlist data, contact us at chris+liveslivedsite@yex.ai.

5.4 Analytics Data

Anonymous website analytics data is retained according to the retention policies of PostHog and Google Analytics. This data cannot be used to identify individual users.

6. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We share data only in the following limited circumstances:

  • Third-party service providers. As described in Section 3, we share data with service providers who help us operate the Service (e.g., AI processing, email delivery, analytics). These providers process data on our behalf and are contractually obligated to use it only for the purposes we specify.
  • Legal requirements. We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers. In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email (if we have it) or a prominent notice on the Website before your information becomes subject to a different privacy policy.

7. Data Security

We take reasonable and appropriate measures to protect your information, including:

  • All data transmitted between the App and our servers (Firebase Cloud Functions) is encrypted in transit using TLS/HTTPS.
  • Document data is stored locally on your device and benefits from Apple's built-in device encryption.
  • Firebase Cloud Functions operate in a secure, managed environment provided by Google Cloud Platform.
  • Anonymous authentication means there are no passwords or credentials for attackers to compromise.

However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security. You are responsible for maintaining the security of your device.

8. Children's Privacy

The Service is not directed to children under the age of 13 (or under the age of 16 in the European Economic Area). We do not knowingly collect personal information from children under these ages. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at hello@liveslived.app, and we will take steps to delete that information.

9. Your Rights Under California Law (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

  • Right to Know. You have the right to request that we disclose what personal information we have collected about you, the sources of that information, the purposes for which it was collected, and the categories of third parties with whom it was shared.
  • Right to Delete. You have the right to request that we delete personal information we have collected from you, subject to certain exceptions.
  • Right to Correct. You have the right to request correction of inaccurate personal information.
  • Right to Opt Out of Sale/Sharing. We do not sell or share your personal information for cross-context behavioral advertising. Because we do not engage in these activities, there is no need to opt out.
  • Right to Non-Discrimination. We will not discriminate against you for exercising any of your privacy rights.

To exercise any of these rights, contact us at hello@liveslived.app. We will respond to verifiable requests within 45 days.

10. Your Rights Under EU/EEA/UK Law (GDPR)

If you are located in the European Economic Area (EEA), the European Union (EU), or the United Kingdom (UK), you have the following rights under the General Data Protection Regulation (GDPR) and the UK GDPR:

  • Right of Access. You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification. You have the right to request that we correct inaccurate or incomplete personal data.
  • Right to Erasure. You have the right to request that we delete your personal data, subject to certain legal obligations.
  • Right to Restrict Processing. You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability. You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object. You have the right to object to the processing of your personal data for certain purposes, including direct marketing.
  • Right to Withdraw Consent. Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

Legal Basis for Processing

We process personal data on the following legal bases:

  • Consent. When you provide your email for the waitlist or agree to cookie-based analytics.
  • Performance of a contract. When we process your document data to provide the Service you requested.
  • Legitimate interests. For anonymous analytics that help us improve the Service, where such interests are not overridden by your rights.

To exercise any of these rights, or if you have a complaint about our handling of your data, contact us at hello@liveslived.app. You also have the right to lodge a complaint with your local data protection authority.

11. International Data Transfers

We are based in the United States. If you access the Service from outside the United States, your information may be transferred to, stored in, and processed in the United States and other jurisdictions where our service providers operate (including Google Cloud's us-central1 region). These jurisdictions may have data protection laws that differ from those in your country. By using the Service, you consent to such transfers. Where required by applicable law, we rely on appropriate safeguards such as standard contractual clauses for international data transfers.

12. Cookies and Tracking Technologies

The Website uses cookies and similar technologies for the following purposes:

  • Analytics cookies. PostHog and Google Analytics use cookies to collect anonymous usage information, such as which pages are visited and how users navigate the Website.
  • Essential functionality. Certain cookies may be necessary for the Website to function properly.

We do not use cookies for advertising, retargeting, or cross-site tracking. You can control cookies through your browser settings. Disabling cookies may affect some functionality of the Website.

The iOS App does not use cookies or web-based tracking technologies.

13. Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals. We currently do not respond to DNT signals because there is no industry-wide standard for compliance. However, as described above, we do not engage in cross-site tracking or targeted advertising.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you via email or a prominent notice on the Website.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Yex Labs, LLC

Portland, OR, USA

Email: hello@liveslived.app

Website: liveslived.app