Privacy policy | lookupai

Jimolab LLC ("we", "us", or "Operator") sets out below the privacy policy governing the handling of personal information of users of the lookupai service ("the Service"). This English version is provided for convenience; in case of any discrepancy the Japanese version controls.

1. Personal information collected

Email address (contact, waitlist signup, account creation)
Name, company, subject (when sent through the contact form)
Payment information: credit card details are not stored on our servers. Stripe, Inc. stores them under PCI-DSS compliance; we receive only payment outcomes (success/failure, amount, billing date).
Usage history: login timestamps, operation logs, tracked keywords, API access logs
Cookies / session: minimal cookies required to maintain login sessions

2. Purposes of use

Service delivery, operation, and identity confirmation
Customer support and inquiry response
Billing and payment processing
Statistical analysis for service improvement (aggregated, non-identifiable)
Notifying users about new features, campaigns, and important announcements (only with prior consent)
Detection and investigation of misuse and unauthorised access

3. Disclosure to third parties / processors

We do not disclose personal information to third parties without user consent, except where required by law or where disclosure is necessary to the following processors. We hold a personal-information protection agreement with each processor.

Stripe, Inc. (USA) — payment processing and subscription management (card data and billing amount)
Sendinblue SAS / Brevo (France) — transactional email delivery (email address and name)
OpenRouter, Inc. (USA) — generative-AI prompt API (tracked keywords and target URLs only; no end-user personal information)
Hetzner Online GmbH (Germany), Sakura Internet Inc. (Japan), and similar hosting providers
Cloudflare, Inc. (USA) — CDN, DDoS mitigation, traffic encryption

4. Information security

Transport encryption (TLS 1.2 or higher)
Hashing/encryption of personal information and credentials in databases
Namespace isolation and least-privilege RBAC inside the k3s cluster
Access logging and periodic audit
Immediate revocation of access on personnel or vendor change

5. Disclosure, correction and deletion requests

Users may request disclosure, correction, addition, deletion, suspension of use, or suspension of third-party disclosure for their personal information.

Email: lookupai@lookupai.jp
Contact form: /contact (with subject "Personal information request")

We respond within two weeks of receipt as a rule, after identity verification (additional documentation may be requested).

6. Cookies

Login session management (required)
Language preference (ja / en)

We do not use third-party advertising or tracking cookies (Google Analytics, Facebook Pixel, etc.). Where access analytics is needed we rely on cookie-less server-side log aggregation.

7. Minors

The Service is a B2B SaaS for businesses and sole proprietors and is not intended for minors (under 18). Minors using the Service must obtain prior guardian consent.

8. Updates

We may update this policy in response to legal or service changes. Material updates are posted on this page and notified by email to registered users. Updated terms take effect upon posting on this page.

9. Operator information

Jimolab LLC (Hachioji, Tokyo, Japan; founded June 2021)
Representative Director: Masaaki Ito
Personal-information protection administrator and complaints contact: as above.