Privacy policy

The party responsible for your data is Liz M. Santana Rivera, operating as “LIZMWELL”, located at Carr. 690 km 2.0, Calle Luis Palés Matos, Vega Alta, Puerto Rico 00692.

For any privacy matter or to exercise your rights, write to us at owner@lizmwell.com.

Account data: display name, username, email, profile photo and login credentials (your password is stored encrypted, never in plain text).

Purchase and shipping data: name, address, phone, order items and transaction history. Payments are processed through Stripe; we do not store full card numbers.

Health and wellness data you record (sensitive): inventory, doses and injections, side effects, body measurements, progress photos and files or lab results you upload to your personal tools. See the next section.

Content you send to the AI: your messages, the images you attach (including photos of lab results), your voice notes and a “memory” summary the AI extracts from your conversations to personalize its replies.

Community data: posts, comments, direct messages, reactions and media you share.

Technical and usage data: device, browser, IP address, app events and cookies, to operate, secure and improve the service.

The doses, injections, side effects, measurements, progress photos and lab results you record are sensitive data. We only process them with your consent, to provide your tracking tools and, if you choose to use it, the AI assistant.

You can view, edit and delete this data at any time from your tools and account settings. If you close your account, we delete it along with the associated files.

To provide the service (create and maintain your account, process orders and subscriptions, support): performance of our contract with you.

For AI features and processing of health data: your consent, which you can withdraw at any time.

For transactional emails (confirmations, shipping, reminders) and security/anti-fraud: our legitimate interest in operating the service securely.

For marketing and ad measurement: your consent (marketing cookies and email opt-in).

To keep order and payment records: compliance with legal and tax obligations.

We do not sell your personal data.

The AI assistant, plans/protocols, lab-result reading and voice features run on external providers: Anthropic (chat model), OpenAI and ElevenLabs (voice: text-to-speech and transcription) and Headroom AI (optimizing the conversation context).

To answer you, we send these providers the text and images you submit to the AI, your voice notes and a summary of your “memory” profile. They process this data to return the answer under their own terms; our AI providers do not train their models on API content by default, and we do not use your data to train models.

Replies are automated and may be inaccurate; they are not medical advice (see the Medical and research notice). You can disable AI memory, view and delete what it remembers, and delete your conversations from the assistant settings.

We share data only with providers that deliver the service on our behalf, each limited to what their function requires. Unless noted, they operate from the United States:

Stripe — payments and subscriptions (email, name, payment data).

Cloudflare — hosting, database, file storage, video and infrastructure (all service data).

Resend — email delivery (email, name, message content).

EasyPost — address verification and shipping labels (name, address, phone).

Anthropic, OpenAI, ElevenLabs and Headroom AI — artificial intelligence and voice features (what you send to the AI).

Google — Google sign-in and fonts (your email and name if you use Google; technical connection data).

Meta Platforms — advertising measurement, only if you accept marketing cookies (browsing and conversion events).

PayPal and Zelle — payout of the rewards (LizCoins) you request (your payout email or phone).

LIZMWELL operates from Puerto Rico (U.S.) and most of our providers are in the United States. If you contact us from outside the U.S., your data is processed in the United States.

Where available, we rely on the transfer frameworks and clauses our providers offer.

We use cookies that are necessary to sign in and run the site and —only with your consent— measurement and marketing cookies (including the Meta pixel). See our Cookie policy for the detail and to manage your consent.

Account and profile: while your account is active; deleted within 30 days after you close it.

AI conversations and memory: while your account is active; you can delete them anytime; auto-purged after 24 months.

Health and wellness data: while your account is active; deleted when you close it, and we purge inactive accounts after 24 months with prior notice.

Marketing contacts: until you unsubscribe; purged after 24 months without interaction.

Anti-fraud identifier derived from your card: 12 months maximum.

Order and payment records: kept for 7 years for tax and accounting obligations, even after you close your account (unlinked from your profile).

Technical and event logs: between 30 and 90 days.

You can access, correct, delete and export your personal data from your account settings or by writing to us.

You can withdraw your consent at any time (for example, disable AI memory or unsubscribe from marketing), without affecting the lawfulness of prior processing.

You can opt out of marketing and ad measurement by rejecting marketing cookies.

If you reside in California: you have the right to know, delete, correct and limit the use of your sensitive data. We do not “sell” your data; the Meta pixel may be considered “sharing” for advertising, and you can disable it by rejecting marketing cookies.

To exercise any right, use your account settings or write to us at owner@lizmwell.com. We will verify your identity and respond within the timeframes required by applicable law.

LIZMWELL is for people over 18. It is not directed at minors and we do not knowingly collect their data. If you believe a minor has provided us data, contact us and we will delete it.

We apply reasonable measures: encrypted passwords, secure connection (HTTPS), access control, rate limiting and separation of private files. No system is 100% secure.

If a security breach affects your data, we will notify you and the authorities where the law requires it (including Puerto Rico Act 39-2012 and applicable federal rules).

We may update this policy; we will post the date of the last revision. For any privacy inquiry, contact us at owner@lizmwell.com.