Privacy policy.
Last updated: May 9, 2026
This Privacy Policy is effective from May 9, 2026. We reserve the right to update it; material changes will be communicated via email.
Lyrenth is operated by Aleksma AI Inc., a Delaware corporation registered at:
Aleksma AI Inc.
1111B S Governors Ave # 97667
Dover, DE 19904
USA
Lyrenth provides AI-readable web index infrastructure, APIs, and dashboards for developers and AI systems. This Privacy Policy explains what information we collect, how we use it, and the rights you have regarding your data.
Lyrenth is the reference commercial implementation of the open AIWebIndex spec (AIDocument format + verification mechanics). This privacy policy applies to the Lyrenth service operated by Aleksma AI Inc.; it does not constrain other implementations of the AIWebIndex spec that may exist.
Our approach is simple: collect as little personal data as possible while operating a reliable infrastructure platform.
We collect your email address when you create an account or authenticate using magic-link login via Resend.
To operate and secure the service, we store operational request logs, including:
- IP address
- User agent
- Timestamp
- Requested endpoint
- Response status
- Render mode
- Cache-hit information
- Response time
These logs are stored in our requests infrastructure tables for operational analytics, abuse prevention, debugging, and service reliability.
When a site owner verifies ownership of a domain, we store verification records associated with that domain.
For verified domains, we compute per-page AI Readiness audits over content we've already extracted into our public index. The audits derive purely from the HTML, markdown, and structured-data blocks of those pages (signals such as render mode, structured-data presence, semantic markup, content-to-noise ratio, paywall markers). We do not fetch additional pages beyond what the public index already contains. Audit results are stored for at most 90 days before recomputation.
Standard infrastructure logs may be generated by:
These may include access logs, IP addresses, request metadata, and diagnostic information.
We intentionally avoid collecting unnecessary personal information.
- Payment information or billing data (Stripe and payment processing are not yet enabled)
- Advertising identifiers
- Social media tracking data
- Third-party marketing pixels
- Behavioral advertising profiles
- Personal information beyond your email address unless explicitly provided by you
We do not sell personal data.
We use collected information to:
- Authenticate users and provide account access
- Deliver API functionality and dashboards
- Operate caching and AIDocument resolution infrastructure
- Monitor reliability, abuse, and service health
- Generate aggregate and anonymized statistics
- Send transactional emails and important service notifications
- Notify users about platform launches, product updates, or operational changes under legitimate-interest basis where applicable
We may publish anonymized platform metrics and public counters that cannot identify individual users.
We only share information with infrastructure providers necessary to operate the service. Current providers include:
- Vercel— frontend hosting and edge delivery (EU/Frankfurt deployment)
- Neon— database infrastructure (Frankfurt region)
- Hetzner — backend infrastructure (Germany)
- Resend— transactional email delivery
We do not share personal information with:
- Advertising networks
- Analytics resellers
- Data brokers
- Social media tracking providers
Lyrenth is operated by a United States corporation while infrastructure is primarily hosted in the European Union. Your information may be processed in:
- Germany
- Other EU infrastructure regions
- The United States where legally required or operationally necessary
We take reasonable measures to ensure data protection standards consistent with GDPR and applicable privacy laws.
Depending on your jurisdiction, including under GDPR and CCPA, you may have the right to:
- Access your personal information
- Correct inaccurate information
- Request deletion of your data
- Request portability of your data
- Object to certain processing activities
- Opt out of marketing communications
To exercise any privacy right, contact [email protected]. We will respond within a reasonable timeframe consistent with applicable law.
We retain data only as long as reasonably necessary.
Retained while your account remains active and for up to 30 days after deletion requests.
Stored for up to 12 months for analytics, reliability, and abuse prevention purposes. After that period, identifying information may be removed or aggregated.
Publicly accessible crawled content may be retained indefinitely for caching, indexing, and canonical AIDocument resolution purposes.
Lyrenth sets only the cookies strictly necessary to keep you signed in and to protect authentication flows against CSRF attacks. No advertising or behavioral tracking cookies are used; no third-party scripts (Google Analytics, Plausible, PostHog, Hotjar, Mixpanel, social-media pixels, etc.) are loaded anywhere on the site.
| Name | Purpose | Lifetime | Party |
|---|---|---|---|
| __Secure-next-auth.session-token | Keeps you signed in (JWT session) | 30 days | First-party |
| __Host-next-auth.csrf-token | CSRF protection on sign-in / sign-out | Session | First-party |
| __Secure-next-auth.callback-url | Returns you to the right page after sign-in | Session | First-party |
On non-HTTPS development hosts the cookie names appear without the __Secure- / __Host- prefixes. Behavior and purpose are identical.
A handful of UX-state values are stored in your browser via the localStorageand sessionStorageAPIs. These are not cookies, do not leave your device, and are not transmitted to Lyrenth servers.
| Key | Purpose | Where |
|---|---|---|
| aiwebindex.cookie-notice.dismissed.v1 | Remembers that you dismissed the cookie notice strip | localStorage |
| aiwebindex.welcome.dismissed.v1 | Remembers that you dismissed the dashboard welcome banner | localStorage |
| aiwebindex.workbench.history.v1 | Stores your /dashboard/workbench request history client-side | localStorage |
| lyrenth.hero.demo.v4 | Caches the last URL + AIDocument result from the homepage demo so a reload doesn't re-fetch | sessionStorage |
You can clear browser storage at any time from your browser's settings; doing so signs you out and resets the values above.
Because every cookie listed above is strictly necessary to deliver the service you explicitly requested (sign-in, account access), no consent prompt is required under the EU ePrivacy Directive or GDPR Article 6(1)(b)/(f). If we ever add analytics or third-party embeds, a proper opt-in banner will appear here first, and those scripts will not load before you consent.
The service is not intended for:
- users under 16 years old in the European Union, or
- users under 13 years old in the United States.
We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us immediately.
We implement reasonable technical and organizational measures designed to protect platform data and infrastructure. However, no internet-based service can guarantee absolute security.
We may update this Privacy Policy periodically. Material changes will be communicated via email where appropriate. Minor updates may be posted directly on this page with an updated revision date.
Continued use of the service after updates constitutes acceptance of the revised policy.
For privacy questions or requests: [email protected]
Aleksma AI Inc.
1111B S Governors Ave # 97667
Dover, DE 19904
USA