LURXI Privacy Policy

Effective Date: 1st February 2026

LURXI is an agentic AI deployment platform operated by Echuku (“Echuku”, “we”, “us”, or “our”). This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when you access or use the LURXI platform, website, APIs, applications, and related services (collectively, the “Services”).

LURXI is a subscription-based Software-as-a-Service (SaaS) platform that enables users to deploy, manage, and operate AI agents. This Privacy Policy is designed to meet global data protection standards, including the General Data Protection Regulation (GDPR), the Nigeria Data Protection Regulation (NDPR), and other applicable data protection laws.

1. Scope of This Privacy Policy

This Privacy Policy applies to:

Visitors to our website
Registered users and subscribers
Enterprise customers
API users and integration partners
Individuals whose data is processed through AI agents deployed on LURXI

By using LURXI, you acknowledge and agree to the practices described in this Privacy Policy.

2. Categories of Data We Collect

We collect personal data and related information necessary to operate, secure, and improve LURXI.

2.1 Account & Identity Information

Full name
Email address
Phone number
Organization name
Billing details
Login credentials
Subscription information

2.2 Technical & Usage Data

IP address
Device type and operating system
Browser type and version
Session logs
Access timestamps
Error logs
API usage data
Interaction metadata

2.3 AI-Related Data

Prompts submitted to AI agents
AI-generated outputs
Agent configuration data
Workflow logs
Observability and system diagnostics data
Temporary execution memory

2.4 Payment Information

Payment processing is handled through secure third-party payment providers. We do not store full payment card details. We may collect:

Billing address
Transaction ID
Payment status
Subscription tier

2.5 Cookies & Tracking Data

Session cookies
Analytics cookies
Functional cookies
Security cookies

3. How We Collect Data

We collect data through:

Direct user input (account registration, AI prompts, support requests)
Automated technologies (cookies, server logs, telemetry systems)
API integrations
Third-party authentication providers
Payment processors
Customer support interactions

4. Purpose of Data Processing

We process personal data for the following purposes:

Providing and maintaining the LURXI platform
Executing AI agents and processing prompts
Generating AI outputs
Account authentication and security
Subscription management and billing
Platform analytics and performance monitoring
Preventing fraud and abuse
Legal and regulatory compliance
Customer support and service communication
Improving platform features and reliability

5. AI-Specific Data Processing

LURXI processes user-submitted prompts and related inputs to execute AI agents and generate outputs.

AI prompts and outputs may be temporarily stored for processing and observability.
Execution logs may be retained for security, debugging, and audit purposes.
Data is processed through controlled infrastructure environments.
AI inputs are not used to train generalized AI models unless explicitly disclosed and consented to by users.
Enterprise customers may configure retention controls depending on their subscription tier.

We implement safeguards to prevent unauthorized access to AI-related data.

6. Legal Basis for Processing

Depending on your jurisdiction, we rely on the following legal bases:

Performance of a contract (to provide LURXI Services)
Legitimate interests (platform security, fraud prevention, service improvement)
Legal obligations
Consent (where required by law, including marketing communications)

Users may withdraw consent at any time where processing is based on consent.

7. Data Retention

We retain personal data only as long as necessary for:

Active account operation
Legal compliance
Dispute resolution
Security monitoring

Upon account termination, data may be deleted, anonymized, or retained where required by law.

AI execution logs may be retained for limited operational periods unless otherwise required for compliance or investigation.

8. Data Storage & Security Measures

We implement technical and organizational measures including:

Encrypted data transmission (HTTPS/TLS)
Role-based access controls
Secure server environments
Infrastructure monitoring
Audit logging
Regular security reviews
Access limitation to authorized personnel

Despite strong safeguards, no system can guarantee absolute security.

9. Third-Party Processors & Subprocessors

We may engage third-party providers for:

Cloud hosting
Analytics
Payment processing
Authentication
Infrastructure monitoring

All processors are contractually obligated to comply with applicable data protection laws and implement adequate security measures.

10. International Data Transfers

LURXI operates globally. Data may be processed outside your country of residence.

Where required, we implement safeguards such as:

Contractual data protection clauses
Secure infrastructure standards
Regulatory-compliant transfer mechanisms

11. Nigeria Data Protection Regulation (NDPR) Compliance

LURXI complies with the Nigeria Data Protection Regulation (NDPR) and applicable Nigerian data protection laws.

11.1 Lawful Basis

Under NDPR, personal data is processed on the basis of:

Consent
Contractual necessity
Legal obligation
Legitimate interest

11.2 Rights of Nigerian Data Subjects

Nigerian users have the right to:

Be informed about data processing
Request access to their personal data
Request correction of inaccurate data
Request deletion (where applicable)
Object to processing
Restrict certain processing activities

Requests may be submitted through the contact details listed below.

11.3 Regulatory Authority

The supervisory authority in Nigeria is the
Nigeria Data Protection Commission (NDPC).

Users may lodge complaints with the NDPC if they believe their rights have been violated.

11.4 Data Breach Notification

In the event of a data breach affecting Nigerian users, LURXI will notify affected users and the relevant regulatory authority where required under NDPR.

11.5 Third-Party Processing Under NDPR

All third-party processors handling Nigerian user data are required to comply with NDPR standards and contractual data protection obligations.

11.6 Data Localization Considerations

Where applicable, LURXI may implement safeguards or localization measures to comply with Nigerian data governance requirements.

12. Cookies & Tracking Technologies

We use cookies to:

Maintain session authentication
Improve platform performance
Analyze usage patterns
Enhance security

Users may control cookie settings through browser preferences. Disabling certain cookies may affect platform functionality.

13. Children’s Data

LURXI is not intended for individuals under the legally applicable age of majority in their jurisdiction. We do not knowingly collect personal data from children.

If we become aware of such data collection, we will take steps to delete the information.

14. Policy Updates

We may update this Privacy Policy from time to time.

Material changes will be communicated through:

Platform notifications
Email communication
Website publication

Continued use of LURXI after updates constitutes acceptance of the revised policy.

15. Privacy Contact & Data Protection Officer

Company Name: Echuku
Product: LURXI

For privacy inquiries, data access requests, or regulatory concerns:

Email: legal@echuku.com
Email: hello@echuku.com
Phone: +2347082865712
Address: 3 Okeibu Fadeguwa St, Ogijo, Nigeria

16. Governing Law

This Privacy Policy shall be governed by applicable data protection laws including, where relevant:

Nigeria Data Protection Regulation (NDPR)
General Data Protection Regulation (GDPR)
Other applicable international data protection laws

By using LURXI, you acknowledge that you have read and understood this Privacy Policy.