the lake

Privacy Notice

Last updated: 5/14/2026

Data controller

JJJ Venture Enterprises, LLC ("we", "us", "our") is the data controller of your personal data for the purposes of the Service. Paddle.com Market Limited is the data controller for billing-related data and acts as our payment processor and Merchant of Record.

What we collect

  • Account data: name, email, password hash, login timestamps.
  • Content you create ("drips"): text, voice transcripts, sentiment, tags, links between drips.
  • Derived analytics: cup levels, goal status, fingerprint, oracle reflections.
  • Integration data: if you connect Google or Telegram, the data you authorize us to read.
  • Billing metadata: Paddle customer ID, subscription status, plan. We do not store card details.
  • Technical data: IP address, device, error logs.

How we use it

To provide the Service, generate your insights, fix bugs, prevent abuse, comply with the law, and send essential service emails. We do not sell your data and we do not use your content to train third-party AI models.

Legal basis for processing (GDPR / UK GDPR)

Where GDPR or UK GDPR applies, we rely on the following legal bases under Article 6(1):

  • Contract performance — Article 6(1)(b): account creation, authentication, providing the Service (drips, cups, insights, oracle reflections, integrations you enable), processing your subscription, and sending essential service emails.
  • Legitimate interests — Article 6(1)(f): securing the Service, preventing fraud and abuse, debugging and improving the product, and maintaining error logs. Our interest is operating a safe, reliable Service; we balance it against your rights and you may object at any time.
  • Consent — Article 6(1)(a): connecting optional integrations (Google, Telegram), optional analytics or marketing cookies, and any optional marketing emails. You can withdraw consent at any time.
  • Legal obligation — Article 6(1)(c): retaining invoices and tax records, and responding to lawful requests from authorities.

Who we share with

  • Paddle — payments, taxes, subscription management.
  • Supabase — database & authentication hosting.
  • Lovable AI Gateway — to generate insights from your drips, on demand. Prompts are not retained for model training.
  • Google / Telegram — only if you connect them.
  • Authorities — only when legally required.

Your rights

You can access, export, correct, or delete your data at any time from Settings. You can also email us. Under GDPR/UK GDPR/CCPA you have additional rights including objection, restriction, and the right to lodge a complaint with your supervisory authority.

Retention

We keep your data while your account is active. After deletion, we purge within 30 days, except where law requires longer (e.g. invoices: 7 years).

Security

Encrypted in transit and at rest. Optional end-to-end Vault encryption is available on Lake Pro.

International transfers

Data may be processed in regions where our service providers operate. We rely on standard contractual clauses where required.

Contact

Reach us via the support email shown in the app for any privacy request.