Save 50% Today
PREORDER NOW
Save 50% Today
PREORDER NOW

Privacy Policy | LexLupi LLC

PRIVACY POLICY Terms

LEXLUPI LLC – PRIVACY POLICY

Last Updated: December 2025
Jurisdiction: United States (Delaware)

1. Why This Policy Exists

Understanding How LexLupi Protects Your Data

LexLupi LLC created this Privacy Policy to provide complete clarity about how we collect, process, store, protect, and use your personal information when you engage with our website, online educational platform, AI-powered systems, affiliate programs, and physical product fulfillment services. Because we combine biotechnology education with digital course delivery and AI-driven mentoring tools, we must operate under one of the most comprehensive privacy and data protection frameworks currently in existence.

 

This document is designed to satisfy the strictest domestic and international privacy requirements, including but not limited to United States Federal Law, Delaware State Law, GDPR (EU/UK), CCPA/CPRA (California), PIPEDA (Canada), COPPA (Children’s Privacy), CAN-SPAM Act (email regulations), and emerging 2025 AI transparency standards. Our goal is to explain your rights, outline our responsibilities, and describe the specific safeguards we use to protect your information throughout its lifecycle.

 

We understand that our users trust us with personal and sometimes sensitive educational data, including photographs submitted to our AI mentor, notes about cultivation progress, and information required to ship biological training materials. This Policy ensures that such data is handled with rigorous controls, strict purpose limitation, and transparent governance.

2. Identity & Legal

LexLupi LLC Company Information

LexLupi LLC is a Delaware-registered limited liability company focused on biotechnology education, mushroom cultivation science, online training, and AI-supported learning systems. We operate globally, with customers across the United States, Europe, Canada, and other regions.

 

Registered Legal Entity:
LexLupi LLC
131 Continental Dr, Suite 305
Newark, DE 19713
United States

Primary Contact Email: support@lexlupi.com

Phone: +1 (302) 555-0199
Hosting Location: United States
Fulfillment Operations: USA-based shipping partners

 

For the purposes of GDPR and other international regulations, LexLupi LLC acts as the Data Controller, specifying why and how your data is processed. In certain cases, we also serve as a Joint Controller or Processor when working with AI and analytics partners such as OpenAI, Google Vertex, Stripe, or Meta Platforms.

3. Information We Collect

Categories of Data LexLupi Processes

LexLupi collects various types of personal and usage data to operate our services, deliver educational content, fulfill orders, maintain security, and enhance the learning experience. To ensure maximum transparency, all collected data is grouped into the following legally recognized categories:

 

A. Information You Directly Provide

These are details you voluntarily submit when creating an account, purchasing a course, communicating with support, participating in the affiliate program, or uploading materials for AI analysis.

1. Account & Identification Data

  • Full Name
  • Email Address
  • Password (stored in encrypted, salted, and hashed form)
  • Country and region (for tax and compliance purposes)

 

2. Purchase & Transaction Data

  • Billing and shipping addresses
  • Order history
  • Delivery status
  • Shipping preferences
  • Transaction timestamps
  • Stripe-generated tokens (we never store full credit card numbers)

 

3. Course Interaction & Educational Data

  • Course progress
  • Assessment completions
  • Notes, comments, and personal logs
  • AI chat interactions
  • Uploaded photos for cultivation analysis
  • Project submissions
  • Certificates earned

 

4. AI Input & Output Data

All text, images, and interactions submitted to AI mentors, AI chat systems, and automated educational analysis tools may be processed for:

  • Support responses
  • Image interpretation
  • Real-time troubleshooting
  • Accuracy improvement
  • System audit trails

 

5. Customer Support Records

  • Emails
  • Attachments
  • Screenshots
  • Troubleshooting logs
  • Phone or chat transcripts

 

6. Affiliate Program Data

  • Affiliate identity information
  • Referral performance
  • Conversion tracking
  • Payout records

 

B. Information Automatically Collected From Your Device

 

These elements are gathered through cookies, server logs, and analytics tools:

  • IP address
  • Browser type & version
  • Operating system
  • Device identifiers
  • Pages visited
  • Session duration
  • Traffic source
  • Conversion analytics
  • Pixel events (Meta, TikTok)
  • Behavior flow (Google Analytics)
  • Time zone & locale

 

C. Information From Third-Party Integrations

 

LexLupi may receive data from:

  • Stripe (fraud prevention, payment confirmation)
  • Google Analytics (aggregated behavioral insights)
  • Meta & TikTok (ad attribution)
  • AI providers (processed input/output metadata)
  • Shipping carriers (package status, delivery confirmation)

 

We do not purchase external data lists, nor do we enrich your profile using brokers or third-party consumer databases.

4. Basis of Processing

Ensuring Clear Justification for Every Data Use Case

LexLupi processes your information only when there is a clearly defined and lawful reason to do so. Each purpose aligns with widely recognized legal bases, including contract performance, consent, legitimate interest, and legal obligation.

 

Below is a comprehensive breakdown of how your data is utilized within our system:

A. Service Delivery & Educational Functionality

We use your personal data to:

  • Create and manage your account
  • Provide access to the online Master Course
  • Track your progress through 550+ lessons
  • Enable AI mentoring tools
  • Process your cultivation images for analysis
  • Fulfill your Gold Five Mycelium Set shipment
  • Provide access to downloadable materials
  • Allow participation in community support and updates

 

Without this data, the platform cannot function.

 

B. Order Processing & Transaction Management

Your data enables us to:

  • Process payments securely through Stripe
  • Generate receipts and invoices
  • Verify identity during checkout
  • Calculate taxes
  • Provide fraud prevention
  • Ship physical items to your address
  • Handle returns or replacements

 

LexLupi never stores or handles raw payment card numbers.

 

C. Communication & Notifications

We use your data for:

  • Account-related emails
  • Course updates
  • AI mentor feedback
  • Affiliate updates
  • Customer support replies
  • Email marketing (only with prior consent)
  • Compliance notifications

 

Every communication follows global anti-spam regulations.

 

D. Security, Monitoring, and Fraud Detection

To ensure a secure experience, we may:

  • Detect suspicious login activity
  • Identify account abuse
  • Protect against scraping or DDoS attempts
  • Maintain audit logs of administrative actions
  • Use Cloudflare WAF and DNS protections

 

Security is handled using industry-standard protocols (TLS 1.3, AES-256 encryption, hashing, and role-based access controls).

 

E. Platform Optimization & Analytics

We process anonymized and aggregated data to:

  • Improve site performance
  • Understand user behavior
  • Optimize course design
  • Enhance user retention
  • Test new features
  • Refine AI models (only in anonymized form)

 

No personal identity is used in analytics.

 

F. Legal Compliance & Regulatory Obligations

We retain necessary data to:

  • Fulfill tax requirements
  • Maintain accounting records
  • Enforce Terms of Service
  • Respond to legal requests
  • Investigate misuse or unauthorized access
5. LEGAL BASES

Our Justification for Processing EU/UK Data

For users located in the European Union, United Kingdom, and other GDPR-aligned regions, we rely on the following legal bases:

 

1. Contractual Necessity

Required to provide access to your purchased Master Course and to deliver physical products.

2. Consent

Collected when you:

  • Accept cookies
  • Subscribe to newsletters
  • Interact with optional AI tools
  • Participate in marketing

 

3. Legitimate Interest

Used for:

  • Security monitoring
  • Fraud prevention
  • Platform improvement

 

4. Legal Obligation

Tax laws, accounting, regulatory compliance.

6. Third-Party Processors

HOW AND WHEN WE SHARE YOUR DATA

LexLupi never sells personal data. We only share information when necessary to operate the service safely and efficiently. Below is a transparent disclosure list of subprocessors:

A. Payment Processing Partners

  • Stripe (primary payment processor)
  • PayPal (optional)

These companies handle all sensitive financial information.

 

B. Shipping & Fulfillment

We provide shipping partners with:

  • Name
  • Address
  • Order details
  • Tracking information

Only the minimum required information is shared.

 

C. AI Service Providers

  • OpenAI API
  • Google Vertex AI

Your prompts and uploaded photos may be routed through these systems for educational analysis.

 

D. Analytics & Advertising

Google Analytics 4

  • Meta Pixel (Facebook & Instagram)
  • TikTok Pixel

All analytics are subject to your cookie consent choices.

 

E. Hosting & Infrastructure

  • USA-based servers
  • Cloudflare (security, CDN, DNS)
  • PrivateEmail (SMTP email delivery)

 

F. Legal Authorities

We may disclose data when required by:

  • Subpoena
  • Court order
  • Law enforcement request
  • Government investigation

 

This is standard for all legally compliant companies.

7. STORAGE PRACTICES

Our Retention Policies and Secure Storage Standards

LexLupi maintains a structured and legally compliant retention schedule designed to keep your data only for as long as it is strictly necessary. Every category of information has a predetermined lifecycle governed by tax laws, contractual obligations, security requirements, and user rights under GDPR, CCPA/CPRA, and international privacy frameworks.

 

We do not retain data indefinitely, nor do we store any personal information without a clearly defined purpose.

 

A. Account and Profile Data

Your account details, learning progress, AI conversations, and course activity are retained for the duration of your active membership. If your account becomes inactive, we maintain these records for a limited period to allow reinstatement, after which they are systematically deleted or anonymized based on internal retention protocols.

 

B. Transaction & Financial Records

As required under U.S. federal law, IRS regulations, and international accounting standards, all transactional data is preserved for a minimum of seven years. This includes invoices, tax documentation, and purchase history. Payment card details are never stored on LexLupi servers.

 

C. Shipping and Fulfillment Records

Fulfillment-related data, such as your shipping address and order tracking information, is retained only for logistical, warranty, and legal purposes. After the mandatory retention period expires, this information is removed from operational systems.

 

D. AI-Generated and Uploaded Content

User-submitted photos, AI interactions, and training materials are retained based on the type of analysis performed. Image uploads used for cultivation guidance are stored only as long as necessary to complete the instructional purpose, then automatically purged or anonymized. AI logs follow provider rules: OpenAI and Google Vertex typically retain them briefly for system integrity and abuse monitoring.

 

E. Support and Communication Logs

Customer support emails, attachments, and troubleshooting notes may be retained for up to three years to ensure service quality, handle disputes, and provide continuity. Sensitive content is restricted through role-based access controls.

 

F. Aggregated and Statistical Information

Non-personal analytical data may be stored indefinitely in aggregated form since it cannot be traced back to an individual.

8. COOKIE & TRACKING

How Cookies, Pixels, and Analytics Tools Operate

LexLupi uses a variety of cookies and tracking technologies to enhance performance, analyze usage patterns, personalize learning experiences, and measure marketing effectiveness. These technologies operate within strict compliance frameworks such as the ePrivacy Directive (EU), GDPR, CCPA, and global advertising standards.

 

A. Essential Cookies

  • These enable core functionalities such as:
  • Secure login
  • Session continuity
  • Shopping cart operations
  • Platform navigation
    They cannot be disabled without impairing system functionality.

 

B. Performance & Analytics Cookies

  • Used for understanding:
  • User behavior
  • Engagement with course modules
  • Feature effectiveness
  • Traffic sources
    Through tools like Google Analytics 4, these cookies help optimize the learning platform and ensure smooth performance.

 

C. Personalization and AI Enhancement Cookies

  • These cookies retain:
  • Learning preferences
  • UI configuration
  • Saved settings
    They allow the platform to adapt dynamically to your learning style.

 

D. Marketing & Attribution Cookies

  • Used responsibly to measure:
  • Advertising conversions
  • Affiliate performance
  • Retargeting campaigns
    This includes Meta Pixel, TikTok Pixel, and other attribution frameworks. Marketing cookies operate only with user consent where required by law.


E. Cookie Control Options

  • Users may manage settings via:
  • Browser controls
  • Platform consent banner
  • Opt-out links for Google/Meta/TikTok

    Refusing certain cookies may affect user experience.
9. INTERNATIONAL DATA TRANSFERS

Transfer Mechanisms and Cross-Border Safeguards

Because LexLupi operates worldwide, some personal data may be transferred to servers or processors within the United States. To ensure compliance with GDPR, UK GDPR, and other international privacy regulations, we implement robust transfer safeguards, including:

  • Standard Contractual Clauses (SCCs)
  • Data Processing Agreements (DPAs)
  • Encryption in transit and at rest
  • Risk assessment procedures
  • Vendor compliance audits
  • Minimization of personal data sent to subprocessors

 

Users are informed that their data may be processed in jurisdictions with different privacy laws. However, LexLupi ensures every transfer meets the highest standards of security and legal compliance.

10. DATA SECURITY

Our Multi-Layered Security Architecture

LexLupi utilizes a comprehensive and modern security framework that integrates multiple layers of technical, administrative, and procedural protections.

 

A. Encryption Standards

  • TLS 1.3 for all data transfers
  • AES-256 encryption for stored sensitive information
  • One-way hashing (bcrypt or Argon2) for credentials
  • Encrypted SMTP for all email communications

 

B. Infrastructure Protections

  • Cloudflare WAF and CDN edge security
  • Bot mitigation and DDoS defense
  • Server isolation and containerization
  • Automated vulnerability scanning

 

C. Internal Access Controls

  • We follow a Role-Based Access Control (RBAC) model:
  • Only essential personnel have access to specific datasets
  • All actions are logged for accountability
  • Privileged access requires multi-factor authentication
  • Internal data flows comply with strict segregation rules

 

D. Data Breach Prevention & Response Plan

If a security incident occurs:

  • The breach is immediately isolated.
  • A forensic investigation is conducted.
  • Affected users and regulators are notified when required.
  • Remediation steps are applied to prevent future breaches.

 

LexLupi maintains a documented incident response protocol aligned with NIST Cybersecurity Framework recommendations.

11. Work With Your Data

Understanding AI, Personalization, and User Rights

LexLupi uses artificial intelligence systems to enhance learning, provide timely suggestions, interpret uploaded cultivation images, and streamline support. We believe users deserve transparency about how these technologies operate.

 

A. AI Transparency

  • Our AI systems may process:
  • User-submitted questions
  • Images of cultivation progress
  • Textual notes
  • Learning behavior patterns
  • Outputs are generated automatically based on model predictions.

 

B. Automated Decision-Making

AI provides:

  • Personalized learning recommendations
  • Troubleshooting support
  • Guidance during cultivation
    But AI does not make legally binding or high-risk decisions. All core account functions remain under human control.

 

C. Profiling

We may analyze:

  • Course activity
  • Learning patterns
  • User behavior
    To enhance recommendations and improve your educational journey.

 

D. AI Hallucination Disclaimer

AI-generated information may occasionally be inaccurate or incomplete. Users should:

  • Validate critical steps
  • Follow safety instructions
  • Treat AI as a support tool, not an authority

 

E. No Medical Use Guarantee

LexLupi’s AI systems:

  • Do not provide medical advice
  • Do not diagnose conditions
  • Do not recommend treatments
12. Your Privacy, Your Control

How You Can Exercise Your Data Rights

Depending on your jurisdiction, you may have the right to:

 

A. Access Your Data

Request a copy of all personal data we hold.

 

B. Correct Your Data

Update or correct inaccurate information.

 

C. Delete Your Data

Request full deletion of your account and personal information.

 

D. Export Your Data

Receive a portable export file.

 

E. Restrict or Object to Processing

Limit certain forms of data usage.

 

F. Withdraw Consent

Especially for:

  • marketing
  • cookies
  • AI personalization

 

G. Non-Discrimination

We never penalize users who exercise privacy rights.

 

To submit any request, contact: support@lexlupi.com

Identity verification may be required for security.

13. CHILDREN’S PRIVACY

No Services for Children Under 13

LexLupi does not knowingly collect, store, or process data from children under 13. If such information is discovered, it is immediately deleted as required by COPPA and global youth protection laws.

14. SAFETY DISCLAIMERS

Protecting Both User and Company Through Clear Limits

LexLupi provides biotechnology education but does not offer:

  • medical advice
  • health treatment guidance
  • diagnoses
  • therapeutic claims

 

All content is intended strictly for educational and research purposes.

Users must follow all safety procedures when working with cultivation materials. LexLupi is not liable for injuries, illnesses, contamination events, or misuse of the educational kit.

15. DISPUTE RESOLUTION

Delaware Court of Chancery as Exclusive Venue

All legal disputes shall be resolved exclusively through Delaware Court of Chancery, the strongest corporate court in the United States.

This applies to:

  • contractual disputes
  • privacy claims
  • data processing disagreements
  • all legal actions involving the company

 

Arbitration may be required for certain cases prior to litigation, depending on the Terms of Service.

16. CHANGES TO THIS POLICY

Maintaining Transparency Over Time

LexLupi may revise this Privacy Policy to reflect:

  • regulatory changes
  • new AI features
  • updated security standards
  • operational adjustments

 

Revisions will be posted with an updated “Last Revised” date. Continued use of our services constitutes acceptance of the updated Policy.

17. CONTACT INFORMATION

How to Contact LexLupi Regarding Privacy

For questions, rights requests, or data concerns:

LexLupi LLC


131 Continental Dr, Suite 305
Newark, DE 19713
United States
Email: support@lexlupi.com
Phone: +1 (302) 555-0199

Cart (0 items)