- We collect the information needed to run Lynxe: your account details, recordings, uploaded content, and usage data.
- Your recordings and notes are not used to train any AI model.
- We share your data only with the service providers listed below — never sold or used for ads.
- You can access, correct, or delete your data at any time by emailing privacy@lynxe.io.
- If you connect Google Calendar, we only use that data to manage your study schedule — nothing else.
The full policy below is the legally binding version.
Overview
Lynxe ("we", "our", "us") is a study tool that records lectures, generates notes, and helps students prepare for assessments. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our application and website.
We are committed to complying with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Because many of our users are under 18, we take additional care to protect the privacy of minors.
Information we collect
Information you provide
- Account information. Your name, email address, school, year level, and subjects when you create an account. Authentication is managed by our identity provider, Clerk.
- Audio recordings. When you use the recording feature, we capture audio from your device's microphone. Recordings are stored securely and are only accessible to your account. Recordings may also capture the voices of other people present (e.g. teachers, classmates) — you are responsible for obtaining any consents required by applicable law.
- Uploaded content. Files you upload including PDFs, documents, images, and text you paste or link to.
- User-generated content. Comments you add to notes, assessment details you enter, and preferences you set.
- Payment information. If you subscribe to a paid plan, payment processing is handled by Stripe. We do not store your credit card number, CVV, or full card details on our servers.
Information collected automatically
- Usage data. Pages visited, features used, session duration, and interaction patterns. We use PostHog for product analytics.
- Device information. Browser type, operating system, screen resolution, and device type.
- Error data. Application errors and performance metrics collected via Sentry to help us fix issues.
- Cookies. We use essential cookies for authentication and session management. We do not use advertising or third-party tracking cookies.
Information generated by our service
- Transcriptions. Audio recordings are transcribed using Groq's speech recognition service. Transcriptions are stored in our database and associated with your account.
- AI-generated notes. Your transcriptions and uploaded content are processed by Anthropic's Claude AI to generate structured study notes, quiz questions, flashcards, and exam preparation materials.
- Embeddings. We generate vector embeddings (mathematical representations) of your transcriptions and notes to enable semantic search. Raw audio and full text are stored separately; embeddings alone cannot be reversed to reproduce your original content.
- Memories. When you use the AI assistant, key facts or preferences you share may be saved as persistent memories to personalise future responses.
How we use your information
We use your information to:
- Provide the core Lynxe service: recording, transcription, note generation, and study preparation
- Authenticate your identity and secure your account
- Personalise your experience based on your subjects, year level, and school
- Improve our AI note generation and study material quality
- Monitor application performance and fix errors
- Communicate with you about your account, service updates, and support requests
- Send proactive study nudges and reminders, which may be generated autonomously by our AI based on your upcoming assessments
- Process payments for paid subscriptions
- Comply with legal obligations
We do not use your information to:
- Sell your personal data to third parties
- Display targeted advertising
- Train AI models on your personal content — your recordings, notes, and uploads are not used to train any AI model
- Profile you for marketing purposes unrelated to Lynxe
How we share your information
We share your information only with the following service providers, each of which processes data solely to deliver Lynxe's functionality:
| Provider | Purpose | Data shared |
|---|---|---|
| Clerk | Authentication and identity | Name, email |
| Supabase | Database and storage | Account data, notes, transcriptions, embeddings |
| Cloudflare R2 | Audio file storage | Encrypted audio recordings |
| Groq | Speech-to-text transcription | Audio recordings (processed, not retained) |
| Anthropic (Claude) | AI note generation | Transcription text, uploaded content (processed per Anthropic's standard API terms: 30-day retention, not used for training) |
| Google Calendar | Calendar integration (optional) | Calendar event metadata (read/write, with your explicit permission) |
| Telegram (Bot API) | Notification delivery (optional) | Your Telegram user ID, if you enable Telegram notifications |
| Stripe | Payment processing | Email, payment method details |
| Vercel | Application hosting | Request logs, IP addresses |
| PostHog | Product analytics | Pseudonymised usage events |
| Sentry | Error monitoring | Error logs, device metadata |
| Resend | Transactional email | Email address |
We do not sell, rent, or trade your personal information. We may disclose information if required by law, court order, or to protect the safety of our users.
Google user data
If you connect your Google Calendar, Lynxe requests access to read and create calendar events. We use this data solely to display your upcoming assessments and add study-session events you request. We do not share Google Calendar data with any third party beyond what is necessary to operate this feature, and we do not use it for advertising or profiling. You may revoke access at any time via your Google Account settings or from within Lynxe.
Lynxe's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Data storage and security
- All data is stored on servers located in Australia (Sydney, ap-southeast-2) where available, and in secure data centres operated by our infrastructure providers.
- Audio recordings are encrypted at rest in Cloudflare R2.
- Database connections use TLS encryption in transit.
- Authentication tokens are short-lived and managed by Clerk's security infrastructure.
- We implement row-level security (RLS) in our database so that each user can only access their own data.
- Access to production systems is restricted to authorised personnel only.
Data retention
- Audio recordings. Retained for the duration of your account unless you delete them. When you delete a recording, it is permanently removed from storage within 30 days.
- Transcriptions and notes. Retained for the duration of your account. Deleting a lecture removes its transcription, notes, and associated data.
- Account data. If you delete your account, all personal data is deleted within 30 days, except where we are required by law to retain certain records.
- Analytics data. Pseudonymised usage data may be retained indefinitely for product improvement purposes.
Your rights
Under the Australian Privacy Principles, you have the right to:
- Access the personal information we hold about you
- Correct any inaccurate or outdated information
- Delete your account and associated data
- Request a copy of your data in a portable format
- Withdraw consent for optional data processing
- Complain to the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached
To exercise any of these rights, contact us at privacy@lynxe.io.
Users under 18
Many Lynxe users are high school students under the age of 18. We are committed to protecting the privacy of minors:
- We do not knowingly collect more information from minors than is necessary to provide the service.
- We do not display advertising or use data for behavioural profiling of minors.
- All decisions about minors' data are made in the best interests of the child, with their dignity and wellbeing as the primary consideration.
- We do not collect precise geolocation data. School name and state/territory may be provided by you but are not used to determine your physical location.
- We encourage parents and guardians to be involved in their child's use of Lynxe.
- Parents or guardians may contact us at privacy@lynxe.io to request access to, correction of, or deletion of their child's personal information. Requests must include proof of guardianship. We will respond within 30 days.
- We do not require students to provide sensitive information beyond what is necessary for the service (name, email, school, year level, and subjects).
Cookies
Lynxe uses only essential cookies required for authentication and session management. We do not use:
- Advertising or marketing cookies
- Third-party tracking cookies
- Cross-site tracking technologies
You can control cookies through your browser settings, but disabling essential cookies may prevent you from using Lynxe.
Changes to this policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or through a notice in the application at least 14 days before the changes take effect. Your continued use of Lynxe after changes take effect constitutes acceptance of the updated policy.
Contact us
If you have any questions about this Privacy Policy or how we handle your data:
- Email: privacy@lynxe.io
- Website: https://lynxe.io
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.