Privacy Policy

Last updated: February 7, 2026

1. Introduction

LVL2 ("we," "us," or "our") operates the LVL2 platform, including the website at lvl2.app and related services (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Information You Provide

  • Account information: name, email address, phone number, and password when you create an account.
  • Profile information: display name, handle, bio, avatar, industry type, and studio policies.
  • Booking information: appointment details, service preferences, reference images, and scheduling data.
  • Payment information: billing details processed securely through Stripe. We do not store full credit card numbers.
  • Communications: messages sent through our SMS and email features.

Information Collected Automatically

  • Usage data: pages visited, features used, and interaction patterns.
  • Device information: browser type, operating system, and device identifiers.
  • Cookies: session cookies for authentication and preference storage.

3. How We Use Your Information

  • Provide, maintain, and improve the Service.
  • Process bookings, payments, and deposits.
  • Send appointment reminders, confirmations, and review requests via SMS and email.
  • Facilitate communication between service providers and clients.
  • Prevent fraud and enforce our Terms of Service.
  • Respond to support inquiries and provide customer service.

4. How We Share Your Information

We do not sell your personal information. We may share data with:

  • Service providers: Stripe (payments), Twilio (SMS), Resend (email), Supabase (data storage), and Google (calendar integration) to operate the Service.
  • Other users: your public profile information (display name, handle, bio, reviews) is visible to clients who view your profile or booking pages.
  • Legal requirements: when required by law, subpoena, or to protect our rights.

5. Data Security

We use industry-standard security measures including encryption in transit (TLS), secure authentication, and row-level security policies on our database. Payment processing is handled by Stripe, a PCI-DSS compliant provider.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Opt out of marketing communications.
  • Export your data in a portable format.

8. SMS and Communications

By using the Service, you may receive transactional SMS messages related to bookings, appointments, and account activity. You can opt out of non-essential communications at any time by replying STOP. Standard messaging rates may apply.

9. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.

10. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy or your data, contact us at hello@lvl2.ink.

LVL2

© 2026 LVL2. Built for professionals who don't settle.