Privacy Policy

Lynix Marketing LLC (“Lynix,” “we,” “us,” or “our”) operates lynixmarketing.com and provides performance marketing services to home service businesses. We are the controller of personal information collected through our website and services.

Questions about this policy or your data can be directed to noah@lynixmarketing.com.

Information you provide directly when you:

• Submit an application through our website — name, business name, email, phone number, revenue range, business type, and any additional details you include
• Email or message us, or reply to our outreach communications
• Enter a service agreement — payment details are processed by Stripe; we do not store credit card numbers ourselves
• Engage our services as a client — business assets (logos, service area, offer details, photos), ad platform access (granted via OAuth to accounts you own), and lead data generated by campaigns we manage for you

Information collected automatically: IP address, browser type, device identifiers, referring URL, pages visited, and form interaction events, through standard server logs and privacy-respecting analytics.

Information from publicly available sources: to inform our outreach, we may collect business contact information (company name, business phone, business email, website, public business reviews) from publicly available sources such as business directories. We do not collect sensitive personal information. If you do not wish to be contacted, see Section 8.

We use information to:

• Evaluate and respond to applications and inquiries
• Provide, manage, and improve our marketing services for clients
• Send service-related communications (receipts, reports, account updates)
• Reach out to prospective home service businesses about our services
• Detect, prevent, and respond to fraud or abuse
• Comply with legal obligations

We do not sell your personal information for monetary value.

We share information with third-party service providers who help us operate, each contractually obligated to handle your data only as we direct:

• Vercel — website and application hosting
• Neon — database hosting for client and application data
• Resend — transactional email delivery
• Stripe — payment processing
• Cal.com — appointment scheduling
• GoHighLevel — CRM for client lifecycle
• Meta and Google — ad platforms, for campaign delivery on behalf of client accounts you own
• Anthropic, OpenAI, and other AI providers — we may process content (e.g., draft ad copy, reports, reply classification) through AI APIs that do not retain submitted content for training when configured with zero-retention settings

We may disclose information if required by law, court order, subpoena, or governmental authority, or to protect our rights, safety, or property. In a business transfer (merger, acquisition, sale), information may be transferred with continued protection under this policy.

We use minimal, privacy-respecting analytics (Plausible or similar) that do not set third-party cookies, do not track you across sites, and do not collect personal information. Essential cookies may be used for security and basic site function. You can configure your browser to block or alert you to cookies; some features may not function if you do.

We retain personal information only as long as needed for the purposes in this policy, to provide services, and to comply with legal, tax, and accounting obligations.

• Application data from non-clients: deleted within 12 months
• Client records and communications: retained for the duration of the engagement plus 2 years after termination, per standard commercial practice
• Financial and tax records: retained as required by law (generally 7 years in the U.S.)
• Suppression-list and unsubscribe records: retained indefinitely to honor opt-outs

We use reasonable technical and organizational safeguards including encryption in transit (TLS), encrypted storage of sensitive credentials, access controls, audit logging, and two-factor authentication for administrative access. No transmission over the internet is 100% secure; we cannot guarantee absolute security.

Depending on where you live, you may have some or all of the following rights regarding your personal information:

• Right to know / access — request a copy of the personal information we have about you
• Right to delete — request deletion of your personal information, subject to exceptions (e.g., legal obligations)
• Right to correct — request correction of inaccurate information
• Right to opt out of sale or sharing of personal information for targeted advertising (we do not sell personal information)
• Right to data portability — receive your data in a portable format
• Right to limit use of sensitive personal information
• Right to non-discrimination for exercising these rights
• Right to appeal a denied request (where applicable, e.g., VA, CO, CT)

These rights are granted under laws including the California Consumer Privacy Act as amended by the CPRA (CCPA/CPRA), the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), the Connecticut Data Privacy Act (CTDPA), the Utah Consumer Privacy Act (UCPA), the Texas Data Privacy and Security Act (TDPSA), the Oregon Consumer Privacy Act (OCPA), the Montana Consumer Data Privacy Act (MCDPA), and similar laws.

To exercise your rights, submit a request via our data rights form or email noah@lynixmarketing.com. We will verify your identity and respond within 45 days (extendable once by 45 days when reasonably necessary). There is no charge for exercising your rights, subject to the limitations of applicable law.

Authorized agents: you may designate an authorized agent to submit requests on your behalf. We will verify the agent’s authority and your identity.

Do Not Sell or Share (California): we do not sell or share personal information for cross-context behavioral advertising.

Every marketing email we send includes an unsubscribe link. You can opt out at any time by clicking it, replying “unsubscribe,” or emailing noah@lynixmarketing.com. We honor opt-out requests within 10 business days and retain suppression records to prevent future contact.

Program description. Clients who opt in receive SMS notifications from Lynix Marketing LLC regarding new lead alerts, account activity, and service updates related to the marketing services we provide them.

How to opt in. Consent is collected through a dedicated opt-in page at app.lynixmarketing.com/sms-optin. No one is auto-enrolled, and enrollment in the SMS program is never a condition of purchasing any service from Lynix Marketing.

Message frequency. Up to 30 messages per month per active client, depending on lead volume and account activity.

Message and data rates. Message and data rates may apply. Contact your wireless carrier for details on your plan.

How to opt out. Reply STOP to any message from Lynix Marketing to unsubscribe. After replying STOP you will receive a confirmation message and no further SMS from our program unless you opt in again. For help, reply HELP.

No sharing of mobile information. Mobile phone numbers collected as part of the SMS program, and the consent records associated with them, are not shared, sold, rented, or disclosed to any third party for marketing or promotional purposes. We only share this information with subprocessors strictly necessary to deliver the SMS service you opted into (for example, our messaging provider).

Carrier disclaimer. Wireless carriers are not liable for delayed or undelivered messages.

Record of consent. For every opt-in we store the phone number, the exact consent language shown, the IP address, and the timestamp, so we can verify express written consent on request.

Our services are intended for businesses and adults. We do not knowingly collect personal information from children under 13 (or the applicable minimum age in your jurisdiction). If you believe we have collected such information, please contact us and we will delete it.

Lynix Marketing LLC is based in the United States, and our data is stored and processed in the U.S. If you access our services from outside the U.S., your information will be transferred to the U.S., which may have different data protection laws than your country.

Our website and communications may link to third-party websites. We are not responsible for their privacy practices and encourage you to review their policies separately.

We may update this Privacy Policy from time to time. Material changes will be noted with a revised “Last updated” date and, where legally required, we will provide additional notice. Continued use of our website or services after changes constitutes acceptance of the updated policy.

When you connect your Meta (Facebook) Business Manager or Google Ads account to Lynix, you remain the owner of those accounts; we operate as a partner with the access you grant. Through Meta’s Marketing API and Google’s Ads API, we receive:

• Account metadata — ad account ID, name, currency, timezone, associated Pages or properties
• Campaign performance metrics — impressions, clicks, conversions, spend, cost per lead (CPL), return on ad spend (ROAS)
• Audience and engagement data — Page engagement metrics used to seed lookalike audiences, conversion events from your pixel or Conversions API integration
• Lead form submissions — when leads are generated through Meta Lead Ads or Google Lead Form Extensions, we receive the contact information the prospect submitted so we can forward it to you immediately

We use this data only to deliver the marketing services you have contracted us for: campaign deployment, optimization, weekly reporting, and lead routing. We do not share your ad platform data with any third party other than the platforms themselves (Meta or Google) and the infrastructure providers listed in section 4. We do not use this data to train AI models, and our AI providers are configured to retain no submitted content.

We retain ad platform data for the duration of your service agreement plus 24 months for chargeback defense and audit, after which it is deleted. You can revoke our access at any time directly from Meta Business Manager (Settings → Business Integrations) or Google Ads (Tools → Access and security). You can also request deletion of all stored ad platform data at any time at lynixmarketing.com/data-rights.

Questions, concerns, or requests related to this policy can be directed to: