Privacy Policy
Last updated: January 28, 2026
# Privacy Policy
Last Updated: January 28, 2026
## 1. Introduction
Welcome to Lab Novo ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and services (collectively, the "Services").
## 2. Information We Collect
### 2.1 Personal Information
We may collect the following types of personal information:
- Account Information: Name, email address, username, and password when you create an account
- Payment Information: Credit card details, billing address, and payment history (processed securely through our payment processors)
- Educational Information: Study preferences, progress data, and learning analytics
- Communication Data: Messages, feedback, and support requests
### 2.2 Automatically Collected Information
- Device Information: IP address, browser type, operating system, and device identifiers
- Usage Data: Pages visited, time spent on pages, click patterns, and feature usage
- Cookies and Tracking: We use cookies and similar technologies to enhance your experience
### 2.3 Information from Third Parties
- Social Media: If you connect social media accounts, we may receive information from those platforms
- Educational Partners: Information shared by schools, universities, or educational institutions
## 3. How We Use Your Information
We use the information we collect for the following purposes:
### 3.1 Service Provision
- To provide and maintain our educational services
- To process payments and manage subscriptions
- To deliver personalized learning experiences
- To send important service updates and notifications
### 3.2 Communication
- To respond to your inquiries and provide customer support
- To send marketing communications (with your consent)
- To notify you about updates, new features, and educational content
### 3.3 Improvement and Analytics
- To analyze usage patterns and improve our services
- To conduct research and develop new educational features
- To monitor and prevent fraud or abuse
- To ensure platform security and integrity
### 3.4 Legal Compliance
- To comply with legal obligations and regulatory requirements
- To protect our rights and the rights of our users
- To enforce our Terms of Service
## 4. Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:
### 4.1 Service Providers
We may share information with trusted third-party service providers who assist us in:
- Payment processing (Stripe, PayPal)
- Data analytics and research
- Customer support and communication
- Cloud hosting and infrastructure
### 4.2 Educational Partners
With your explicit consent, we may share relevant information with:
- Schools and educational institutions
- Tutors and educational consultants
- Research institutions for educational studies
### 4.3 Legal Requirements
We may disclose information when required by law, including:
- To comply with subpoenas, court orders, or legal processes
- To protect against fraud, security threats, or illegal activities
- To safeguard the rights and safety of our users and the public
### 4.4 Business Transfers
In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of the transaction.
## 5. Data Security
We implement robust security measures to protect your information:
### 5.1 Technical Safeguards
- Encryption: All data is encrypted in transit and at rest using industry-standard protocols
- Access Controls: Strict access controls and authentication requirements
- Regular Audits: Security audits and vulnerability assessments
### 5.2 Administrative Safeguards
- Employee Training: Regular privacy and security training for all staff
- Incident Response: Established procedures for responding to security incidents
- Data Minimization: We collect only the information necessary for our services
### 5.3 Physical Safeguards
- Secure Facilities: Data centers with physical security measures
- Backup Systems: Regular data backups with secure storage
## 6. Your Rights and Choices
You have the following rights regarding your personal information:
### 6.1 Access and Portability
- Request a copy of your personal information
- Request data portability to another service
### 6.2 Correction and Updates
- Update your account information and preferences
- Correct inaccurate or incomplete information
### 6.3 Deletion
- Request deletion of your personal information
- Note: Some information may be retained for legal or legitimate business purposes
### 6.4 Opt-Out
- Unsubscribe from marketing communications
- Disable cookies and tracking (may affect service functionality)
### 6.5 Consent Withdrawal
- Withdraw consent for data processing where applicable
- Request restrictions on data processing
## 7. Cookies and Tracking Technologies
### 7.1 Types of Cookies We Use
- Essential Cookies: Required for basic website functionality
- Analytics Cookies: Help us understand how you use our services
- Functional Cookies: Remember your preferences and settings
- Marketing Cookies: Used for targeted advertising (with consent)
### 7.2 Cookie Management
You can control cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect website functionality.
## 8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:
- Adequacy Decisions: Transfers to countries with adequate data protection
- Standard Contractual Clauses: EU-approved transfer mechanisms
- Binding Corporate Rules: Internal data protection policies
## 9. Children's Privacy
Our services are designed for users aged 13 and above. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will take immediate steps to delete the information.
## 10. Third-Party Links and Services
Our services may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.
## 11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Email notification
- Prominent notice on our website
- Update to the "Last Updated" date
Your continued use of our services after changes become effective constitutes acceptance of the updated policy.
## 12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
Lab Novo Privacy Team
Email: privacy@labnovo.org
Address: [Company Address]
For urgent privacy concerns, please mark your communication as "Privacy Inquiry."
## 13. Data Retention
We retain your information for as long as necessary to provide our services and comply with legal obligations. Specific retention periods include:
- Account Data: Retained while your account is active and for 3 years after deactivation
- Payment Information: Retained for 7 years for tax and accounting purposes
- Usage Analytics: Anonymized after 2 years
- Marketing Data: Retained until you unsubscribe or for 2 years, whichever is longer
## 14. California Privacy Rights
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: Request information about data collection and use
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: Opt-out of data sales (though we don't sell data)
- Right to Non-Discrimination: No discrimination for exercising CCPA rights
## 15. GDPR Compliance
For users in the European Economic Area, we comply with the General Data Protection Regulation (GDPR):
- Lawful Basis: We process data based on consent, contract, legitimate interests, or legal obligations
- Data Protection Officer: Contact our DPO at dpo@labnovo.org
- Data Breach Notification: We will notify you within 72 hours of a breach affecting your rights
This Privacy Policy is designed to be transparent and user-friendly. If you have any questions or concerns, please don't hesitate to contact us.
Last Updated: January 28, 2026
## 1. Introduction
Welcome to Lab Novo ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and services (collectively, the "Services").
## 2. Information We Collect
### 2.1 Personal Information
We may collect the following types of personal information:
- Account Information: Name, email address, username, and password when you create an account
- Payment Information: Credit card details, billing address, and payment history (processed securely through our payment processors)
- Educational Information: Study preferences, progress data, and learning analytics
- Communication Data: Messages, feedback, and support requests
### 2.2 Automatically Collected Information
- Device Information: IP address, browser type, operating system, and device identifiers
- Usage Data: Pages visited, time spent on pages, click patterns, and feature usage
- Cookies and Tracking: We use cookies and similar technologies to enhance your experience
### 2.3 Information from Third Parties
- Social Media: If you connect social media accounts, we may receive information from those platforms
- Educational Partners: Information shared by schools, universities, or educational institutions
## 3. How We Use Your Information
We use the information we collect for the following purposes:
### 3.1 Service Provision
- To provide and maintain our educational services
- To process payments and manage subscriptions
- To deliver personalized learning experiences
- To send important service updates and notifications
### 3.2 Communication
- To respond to your inquiries and provide customer support
- To send marketing communications (with your consent)
- To notify you about updates, new features, and educational content
### 3.3 Improvement and Analytics
- To analyze usage patterns and improve our services
- To conduct research and develop new educational features
- To monitor and prevent fraud or abuse
- To ensure platform security and integrity
### 3.4 Legal Compliance
- To comply with legal obligations and regulatory requirements
- To protect our rights and the rights of our users
- To enforce our Terms of Service
## 4. Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:
### 4.1 Service Providers
We may share information with trusted third-party service providers who assist us in:
- Payment processing (Stripe, PayPal)
- Data analytics and research
- Customer support and communication
- Cloud hosting and infrastructure
### 4.2 Educational Partners
With your explicit consent, we may share relevant information with:
- Schools and educational institutions
- Tutors and educational consultants
- Research institutions for educational studies
### 4.3 Legal Requirements
We may disclose information when required by law, including:
- To comply with subpoenas, court orders, or legal processes
- To protect against fraud, security threats, or illegal activities
- To safeguard the rights and safety of our users and the public
### 4.4 Business Transfers
In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of the transaction.
## 5. Data Security
We implement robust security measures to protect your information:
### 5.1 Technical Safeguards
- Encryption: All data is encrypted in transit and at rest using industry-standard protocols
- Access Controls: Strict access controls and authentication requirements
- Regular Audits: Security audits and vulnerability assessments
### 5.2 Administrative Safeguards
- Employee Training: Regular privacy and security training for all staff
- Incident Response: Established procedures for responding to security incidents
- Data Minimization: We collect only the information necessary for our services
### 5.3 Physical Safeguards
- Secure Facilities: Data centers with physical security measures
- Backup Systems: Regular data backups with secure storage
## 6. Your Rights and Choices
You have the following rights regarding your personal information:
### 6.1 Access and Portability
- Request a copy of your personal information
- Request data portability to another service
### 6.2 Correction and Updates
- Update your account information and preferences
- Correct inaccurate or incomplete information
### 6.3 Deletion
- Request deletion of your personal information
- Note: Some information may be retained for legal or legitimate business purposes
### 6.4 Opt-Out
- Unsubscribe from marketing communications
- Disable cookies and tracking (may affect service functionality)
### 6.5 Consent Withdrawal
- Withdraw consent for data processing where applicable
- Request restrictions on data processing
## 7. Cookies and Tracking Technologies
### 7.1 Types of Cookies We Use
- Essential Cookies: Required for basic website functionality
- Analytics Cookies: Help us understand how you use our services
- Functional Cookies: Remember your preferences and settings
- Marketing Cookies: Used for targeted advertising (with consent)
### 7.2 Cookie Management
You can control cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect website functionality.
## 8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:
- Adequacy Decisions: Transfers to countries with adequate data protection
- Standard Contractual Clauses: EU-approved transfer mechanisms
- Binding Corporate Rules: Internal data protection policies
## 9. Children's Privacy
Our services are designed for users aged 13 and above. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will take immediate steps to delete the information.
## 10. Third-Party Links and Services
Our services may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.
## 11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Email notification
- Prominent notice on our website
- Update to the "Last Updated" date
Your continued use of our services after changes become effective constitutes acceptance of the updated policy.
## 12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
Lab Novo Privacy Team
Email: privacy@labnovo.org
Address: [Company Address]
For urgent privacy concerns, please mark your communication as "Privacy Inquiry."
## 13. Data Retention
We retain your information for as long as necessary to provide our services and comply with legal obligations. Specific retention periods include:
- Account Data: Retained while your account is active and for 3 years after deactivation
- Payment Information: Retained for 7 years for tax and accounting purposes
- Usage Analytics: Anonymized after 2 years
- Marketing Data: Retained until you unsubscribe or for 2 years, whichever is longer
## 14. California Privacy Rights
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: Request information about data collection and use
- Right to Delete: Request deletion of personal information
- Right to Opt-Out: Opt-out of data sales (though we don't sell data)
- Right to Non-Discrimination: No discrimination for exercising CCPA rights
## 15. GDPR Compliance
For users in the European Economic Area, we comply with the General Data Protection Regulation (GDPR):
- Lawful Basis: We process data based on consent, contract, legitimate interests, or legal obligations
- Data Protection Officer: Contact our DPO at dpo@labnovo.org
- Data Breach Notification: We will notify you within 72 hours of a breach affecting your rights
This Privacy Policy is designed to be transparent and user-friendly. If you have any questions or concerns, please don't hesitate to contact us.