Effective Date: 09/01/2025
Last Updated: 09/01/2025

This Security and Data Protection Policy (“Policy”) governs all services provided by Lyvora Technologies (“Lyvora,” “we,” “our,” or “us”), including web hosting, VPS, dedicated servers, domain registration, SSL certificates, website and online store development, WordPress/WooCommerce, Shopify, Wix, cPanel/WHM, plugins, analytics, payment processors, and other technology services (“Services”).

By using Lyvora Services, you (“Client,” “you,” or “your”) acknowledge and agree to the terms of this Policy.

1. Scope

1.1 This Policy covers:

• Security measures implemented by Lyvora on its own systems.
• Data protection practices relating to client information and service operations.
  1.2 Lyvora primarily acts as a reseller or facilitator of third-party platforms, services, and infrastructure.
  1.3 Lyvora does not control third-party providers’ security or data practices and is not responsible for breaches or vulnerabilities originating from them.

2. Client Responsibilities

2.1 Clients are solely responsible for:

• Securing account credentials, passwords, and API keys.
• Implementing backups of all websites, applications, databases, and content.
• Ensuring secure configurations of plugins, integrations, and third-party tools.
• Maintaining compliance with applicable data protection laws (GDPR, CCPA, etc.) for their own websites and users.
  2.2 Lyvora disclaims all liability for data loss, unauthorized access, or security incidents caused by client negligence, misconfiguration, or inaction.

3. Third-Party Dependencies

3.1 Many Services depend on third-party providers, including hosting platforms, registrars, SSL providers, website builders, and analytics tools.
3.2 Lyvora is not responsible for:

• Security incidents or breaches of third-party systems.
• Data loss, corruption, or downtime caused by third-party providers.
• Compliance failures resulting from third-party service terms or operations.

4. Lyvora Security Measures

4.1 Lyvora implements reasonable security measures on its own systems, including:

• Network monitoring and firewalls.
• Secure transmission of sensitive client information.
• Restricted administrative access to internal systems.
  4.2 Lyvora does not guarantee absolute security or protection against hacking, malware, phishing, ransomware, or other malicious activity.

5. Data Breach Response

5.1 In the event of a suspected security incident affecting Lyvora systems, we may:

• Investigate and mitigate the incident.
• Notify affected clients in accordance with applicable law.
  5.2 Lyvora is not liable for damages, losses, or regulatory penalties arising from a breach, including incidents originating from third-party providers or client systems.

6. Backups and Recovery

6.1 Lyvora does not automatically maintain backups of client websites, databases, or hosted content unless specifically contracted as a paid service.
6.2 Clients are fully responsible for implementing their own backup and disaster recovery procedures.
6.3 Lyvora is not responsible for lost or unrecoverable data due to deletion, corruption, or third-party service issues.

7. Limitation of Liability

• Lyvora’s total liability for security incidents or data loss is strictly limited to the fees paid by the client for the affected service in the preceding 12 months.
• Lyvora is not responsible for indirect, consequential, or punitive damages arising from security breaches, data loss, or third-party failures.

8. Acknowledgment

By using Lyvora Services, you acknowledge and agree that:

• You bear full responsibility for securing accounts, backups, and compliance.
• Lyvora is acting primarily as a facilitator/reseller for third-party providers.
• All risk associated with security, data protection, and breach mitigation is assumed entirely by the client.