1. Introduction
This Privacy Policy describes how Livio Building Systems Inc. (“Livio,” “we,” “us,” or “our”) collects, uses, stores, and shares information when you use Livio Grid (“the Service”), available at grid.golivio.com and associated subdomains. By using the Service, you agree to the practices described in this policy. If you do not agree, please do not use the Service.
2. Information We Collect
We collect the following categories of information:
- Account information. When you create an account, we collect your name, company email address, company name (optional), and any profile information you choose to provide. We require a company email address — free consumer email domains (Gmail, Yahoo, Outlook, iCloud, and similar) are not accepted for account creation.
- Authentication data. Livio Grid uses passwordless magic-link authentication. We store the email address you sign in with and short-lived authentication tokens. We do not store passwords.
- Project and analysis data. Any project inputs you submit to the Service — including site location, available power, IT load, RFP documents you upload, and any notes you enter — are stored in our database. Generated outputs (site analyses, single-line diagrams, floor plans, budgets, schedules, equipment and procurement lists) are also stored and associated with your account.
- Billing information. If you subscribe to a paid plan, our payment processor (Stripe) collects and processes your payment details. Livio does not store full credit card numbers. We retain a Stripe customer ID, subscription status, plan level, and billing history for account management.
- Usage data. We log analysis runs, feature usage, page views, error logs, and performance metrics to operate and improve the Service. Logs may contain your IP address, user-agent string, timestamps, and the pages or API endpoints you access.
- Communications. If you email us or respond to a support or marketing message, we retain the contents of those communications.
3. How We Use Your Information
We use the information we collect to:
- Operate the Service, including authenticating you, generating analyses, and returning results;
- Bill you for paid subscriptions and manage your trial, plan level, and renewals;
- Send transactional emails (magic links, receipts, trial-expiry warnings, service notices);
- Improve the Service — including training our internal engineering-reference library, distilling lessons from corrections, and calibrating cost and schedule models. When we use project data to improve the Service, we use it in anonymized and aggregated form;
- Detect, investigate, and prevent fraud, security incidents, and abuse;
- Comply with legal obligations.
We do not sell your personal information. We do not use your identifiable project data to train third-party AI models.
4. Subprocessors and Third Parties
We use the following subprocessors to operate the Service. Each subprocessor receives only the minimum data necessary to perform its function:
| Subprocessor | Purpose | Data handled |
|---|
| Stripe | Payment processing, subscription billing | Name, email, billing address, payment instrument |
| Resend | Transactional email (magic-link sign-in, purchase receipts, share notifications) | Email address, message contents |
| Railway | Application hosting, managed PostgreSQL database, file storage | All account and project data (encrypted at rest) |
| Anthropic | Large-language-model inference for generating engineering analyses | Analysis inputs submitted to the AI engine (project parameters, RFP text). No account identifiers are sent. |
We review subprocessor security and data-protection practices before onboarding and periodically thereafter. We will post updates to this policy when we add or change subprocessors.
5. Data Retention
We retain your data as follows:
- Active accounts. We retain account and project data for as long as your account is active.
- Inactive accounts. If an account has no activity for 24 consecutive months, we may notify you and, if no response, archive the account. Project data is retained at minimum for the 30 days following any deletion request, during which you may restore. (Livio Grid is free forever — there is no "trial expiration" mechanism in the current pricing model.)
- Cancelled paid accounts. Data is retained for 90 days after cancellation so you can reactivate, then deleted unless a longer retention period is required by law or a legal hold.
- Billing records. We retain billing and transaction records for at least seven (7) years to comply with tax and financial-reporting obligations.
- Aggregated analytics. Anonymized, aggregated usage data — which cannot be linked back to you — may be retained indefinitely.
6. Your Rights
Depending on your jurisdiction, you may have the following rights with respect to your personal data:
- Access. Request a copy of the personal data we hold about you.
- Correction. Ask us to correct inaccurate or incomplete information.
- Deletion. Request that we delete your account and associated personal data, subject to legal retention obligations.
- Portability. Request your data in a structured, machine-readable format so you can move it elsewhere.
- Restriction and objection. Ask us to restrict or object to certain processing of your data.
- Withdraw consent. Where we rely on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
- Complain. Lodge a complaint with your local data protection authority.
To exercise these rights, email [email protected]. We will verify your identity and respond within 30 days or as required by applicable law.
7. Security
We use industry-standard safeguards to protect your data, including TLS encryption in transit, encryption at rest in our managed database, least-privilege access controls, audit logging, and regular review of access credentials. No system is perfectly secure — if you believe your account has been compromised, contact us immediately at [email protected].
8. International Transfers
Livio is based in the United States and our primary infrastructure is located in the United States. If you access the Service from outside the United States, you understand and consent to the transfer of your data to the United States and to processing by our subprocessors in the jurisdictions in which they operate. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers.
9. Cookies and Analytics
We use a small number of essential cookies to keep you signed in and to remember your preferences. We use privacy-respecting, first-party analytics to understand which pages are visited and how the Service is used. We do not use third-party advertising cookies or pixel trackers for cross-site behavioral advertising.
10. Children’s Privacy
Livio Grid is a business tool intended for professional users and is not directed at children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us and we will delete it.
11. Changes to This Policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page will reflect the most recent revision. Material changes will be communicated to registered users by email. Your continued use of the Service after the effective date of any change constitutes acceptance of the updated policy.
12. Contact
For questions about this Privacy Policy or to exercise any of the rights described above, contact us at [email protected] or write to Livio Building Systems Inc., Los Altos, CA, USA.