Luxury Lifestyle Vault

Luxury Lifestyle Vault — Privacy Policy

DRAFT — for review only. Not legal advice.

Prepared by Cowork, 2026-06-06. Review and approve with a licensed attorney before publication. Complete bracketed [PLACEHOLDERS] once the LLC/EIN exist. The Mobile Information / SMS section (Section 5) is written to satisfy A2P 10DLC carrier requirements — do not weaken it without checking carrier rules.

Effective date: [EFFECTIVE DATE]

Entity: [LEGAL ENTITY NAME] ("Luxury Lifestyle Vault," "we," "us," or "our"), [BUSINESS ADDRESS].

This Privacy Policy explains what information we collect, how we use and share it, and your choices.

1. Information we collect

  • Account & profile: name, email, phone number, home/seasonal addresses, contact preferences, and login credentials.
  • Items & photos: photographs, descriptions, condition notes, and metadata about the garments and accessories you entrust to us.
  • Payment information: processed by our payment processor, Stripe. We do not store full card numbers; we retain limited billing details and a payment-processor customer reference.
  • Communications: messages you exchange with your concierge, support requests, and notification preferences.
  • Usage & device data: log data, device/browser information, and similar technical data collected automatically when you use the Services.

2. How we use information

We use information to: provide and operate the Services (cataloging, storage, cleaning, rotation, delivery, returns); process payments and memberships; communicate with you (order updates, account notices, and, if you opt in, SMS); provide AI-assisted cataloging and search; improve and secure the Services; and comply with legal obligations.

3. AI processing

To catalog and search your wardrobe, photographs and related details may be processed by AI services (including Anthropic's Claude API) to generate descriptions, categorizations, and search results. This processing is to provide the Services to you. We do not use your Items or photos to train third-party public AI models. [Counsel/vendor terms to confirm this statement matches the provider's data-use terms.]

4. How we share information

We share information only as needed to run the business:

  • Service providers ("processors"): hosting and database (Supabase, Vercel), payments (Stripe), email (Resend), SMS (Twilio), and AI (Anthropic), each acting on our instructions.
  • Care and logistics providers: vetted partners who clean, handle, store, or transport your Items, limited to what is needed to perform the service.
  • Legal & safety: when required by law, to enforce our Terms, or to protect rights, safety, and property.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, subject to this Policy.

We do not sell your personal information.

5. Mobile information / SMS (A2P)

If you opt in to text messages, we collect and use your mobile phone number to send order and account messages. We do not sell or share your mobile opt-in information or phone number with third parties or affiliates for their marketing or promotional purposes. Phone numbers are shared only with our SMS provider (Twilio) and carriers as needed to deliver the messages you requested. Message frequency varies by account activity; message and data rates may apply. You can opt out at any time by replying STOP, or by turning off SMS in your account settings; reply HELP for help. See our Terms of Service for the full SMS terms.

6. Cookies and similar technologies

We use cookies and similar technologies for authentication, security, and to operate the Services. You can control cookies through your browser; disabling some may affect functionality. [If/when analytics or marketing cookies are added, disclose them here and provide controls as required by law.]

7. Data retention

We retain personal information for as long as your account is active and as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. We delete or de-identify information when it is no longer needed, subject to legal retention requirements.

8. Security

We use administrative, technical, and physical safeguards designed to protect personal information (including encryption in transit, access controls, and database-level security). No method of transmission or storage is completely secure; we cannot guarantee absolute security.

9. Your choices and rights

You may access and update account information in your member portal, manage email and SMS preferences, and request deletion of your account. Depending on where you live, you may have additional rights (such as to access, correct, delete, or port your information, or to opt out of certain processing). To exercise rights, contact us at [SUPPORT EMAIL]. We will respond as required by applicable law. [Counsel to confirm which state privacy laws apply and add required disclosures, e.g., for California or other states.]

10. Children

The Services are intended for adults and are not directed to children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.

11. Third-party links

The Services may link to third-party sites or services we do not control. Their privacy practices are governed by their own policies.

12. Changes to this Policy

We may update this Policy from time to time. Material changes will be communicated through the Services or by email, and the "Effective date" above will be updated.

13. Contact

[LEGAL ENTITY NAME]

[BUSINESS ADDRESS]

Email: [SUPPORT EMAIL]

Phone: [PHONE]

Placeholders to complete before publishing

[LEGAL ENTITY NAME] · [BUSINESS ADDRESS] · [EFFECTIVE DATE] · [SUPPORT EMAIL] · [PHONE] · AI data-use confirmation (§3) · cookies/analytics disclosure (§6) · applicable state-privacy-law disclosures (§9).