Privacy Policy

Effective: March 11, 2026 | Last reviewed: March 11, 2026

This Privacy Policy explains how GenLP LLC collects, uses, stores, and discloses personal information when you use GenLP.ai, including the public marketing site, account flows, and hosted pages we operate.

Controller and contact information

The controller for the personal information described in this notice is GenLP LLC, 1021 E Lincolnway Suite #9630, Cheyenne, Wyoming 82001, United States. Contact privacy@genlp.ai for privacy questions or contact@genlp.ai for general support.

Regional privacy contact

We do not currently publish separate EU or UK representative contacts in this notice. Contact privacy@genlp.ai for regional privacy requests while counsel confirms whether Article 27 appointments are required for specific processing activities.

Information we collect

  • Account and contact details such as name, email address, and login metadata.
  • Billing metadata and transaction status received from Stripe.
  • Prompts, uploaded assets, generated content, and configuration settings you choose to store.
  • Operational logs, device data, page visits, and error diagnostics.
  • Data about visitors to customer-published pages where we process the data on the customer's behalf under the Data Processing Addendum.

Why we use information

  • To create, host, secure, and support the service.
  • To manage subscriptions, refunds, fraud review, and account operations.
  • To respond to support issues, privacy requests, and abuse reports.
  • To measure product performance and improve the service when analytics consent has been granted.
  • To comply with legal obligations and protect users, customers, and the service.

Legal bases and disclosures

Where privacy law requires a legal basis, we rely on contract performance, legitimate interests, consent, and legal obligations as appropriate to the activity. We do not sell personal information, and we do not share personal information for cross-context behavioral advertising on this surface.

Processors and service providers

Provider:Google Cloud (Firestore, Cloud Run, Cloud Storage)
Role:Infrastructure and storage
Data:Account data, generated content, public assets, logs
Purpose:Host and secure the service
Location:United States and regional locations as configured
Transfers / Notes:
Contractual safeguards and regional hosting controls as applicable
Hosts public-by-default assets for customer pages.
Provider:Cloudflare
Role:DNS, CDN, and custom-domain delivery
Data:IP addresses, request metadata, TLS and routing data
Purpose:Deliver published pages and protect availability
Location:Global network
Transfers / Notes:
Contractual safeguards and regional controls as applicable
Used for custom hostname and edge delivery flows.
Provider:Google Analytics
Role:Optional analytics
Data:Cookie and usage data when analytics is enabled
Purpose:Measure site usage and performance
Location:United States and other Google-operated regions
Transfers / Notes:
Google contractual safeguards as applicable
Analytics events are blocked until consent is granted on this surface.
Provider:Stripe
Role:Payment processor
Data:Payment details, billing metadata, transaction status
Purpose:Process subscriptions, refunds, and fraud checks
Location:United States, EU, and other Stripe-operated regions
Transfers / Notes:
Stripe contractual safeguards as applicable
Card details are provided directly to Stripe at checkout.
Provider:Resend
Role:Transactional email delivery
Data:Email address and message-delivery metadata
Purpose:Send service notices and operational messages
Location:United States
Transfers / Notes:
Contractual safeguards as applicable
Transactional email tracking pixels are not enabled by default.
Provider:Sentry
Role:Error monitoring
Data:Error reports and limited runtime metadata
Purpose:Monitor reliability and investigate incidents
Location:United States and EU regions
Transfers / Notes:
Contractual safeguards as applicable
Captures technical diagnostics, not payment content.

Retention

Account profile and workspace settings

Retention: For the life of the account and up to 24 months after closure

Kept to provide the service, resolve disputes, and maintain security records.

Billing and transaction records

Retention: Up to 7 years or longer if tax or accounting rules require it

Payment card details are handled directly by Stripe, not stored in full by GenLP.

Support messages and abuse reports

Retention: Up to 24 months after the issue is closed

May be retained longer when needed for investigations, disputes, or legal obligations.

Operational logs and security events

Retention: Typically up to 24 months

Shorter or longer windows may apply when incident response or legal obligations require it.

Analytics and consent records

Retention: Analytics cookies up to 13 months; consent preference records up to 24 months

Analytics remains off until the visitor enables it on this surface.

Cookies, analytics, and browser signals

Analytics cookies are disabled until the visitor enables them through the banner or cookie preferences panel. We do not currently represent browser-sent Global Privacy Control as an automated rights workflow on this surface. Visitors can manage analytics choices through our Cookie Policy page or contact privacy@genlp.ai for manual privacy-rights requests.

Your rights and requests

Depending on your location, you may have rights to access, delete, correct, export, or object to certain processing. We currently review rights requests manually. Use the privacy request page or email privacy@genlp.ai.

International transfers and security

We use infrastructure and vendors that may process data in the United States and other regions where they operate. When transfer law applies, we rely on contractual safeguards and technical measures as appropriate. We also use access controls, logging, encryption in transit, and vendor security controls to protect the service.