Data Rights

Privacy Request Center

This page is the operational intake for privacy and data-rights requests across the Imagine corporate site, Lucid wallet surfaces, and covered child-brand experiences. It is designed to support GDPR-style rights, California and other US state rights, and key Latin American data-rights workflows from one clean starting point.

If you are not sure which law applies, choose the closest jurisdiction you know and we will route the request to the correct legal workflow after review.

Live legal baseline0 sectionsRights routing activeDocs-ready presentation

Last updated May 30, 2026

Page structure

Hero briefing

Scope, applicability, and status markers

Live surface

Interactive controls, forms, or datasets below

Support docs

Related policies, packs, and trust materials

Related docs

Docs Center

Core policies and rights flows

Privacy Request Center

Access, delete, export

Regulatory Packs

Counsel and diligence view

Vendor Register

Processor and DPA posture

Recommended use

This is the best place to fill the space: not decorative noise, but a useful orientation layer. It gives readers page structure, supporting docs, and a quick sense of what to do next before they reach the live form, pack, or data surface below.

Recommended filler pattern

Quick actions or entry points
Support response timing or scope note
Cross-links to the most relevant trust materials

Open primary doc Open support path

Request intake

Submit a data-rights request

Use this form for access, deletion, correction, export, opt-out, objection, appeal, or authorized-agent requests tied to the Imagine site, Lucid, or a covered child brand surface.

Full nameEmail

Request type

Ask what personal data we process and how it is used.

Service scope

Corporate site, contact forms, media surfaces, and related web flows.

Applicable jurisdictionCountry / state of residence

Tell us what you need

I am acting as an authorized agent for another person.

I confirm that I am the data subject, parent or guardian where applicable, or an authorized agent with permission to make this request. I understand Imagine may ask for additional verification before completing the request.

Prefer email instead?

Workflow

What happens next

1. We log the request and send a confirmation email with a request number.

2. We verify identity or authorization when the request or law requires it.

3. We review the applicable legal basis, retention obligations, and product scope.

4. We respond through the matching regulatory workflow and document the outcome.

Response windows

Selected jurisdiction timing

Best for GDPR-style access, deletion, objection, restriction, portability, or consent-withdrawal requests.

Expected window

Usually 1 month, extendable by up to 2 additional months when justified.

EEA / UK / similar GDPR regime

Usually 1 month, extendable by up to 2 additional months when justified.

California (CCPA / CPRA)

Usually 45 days, extendable once by up to 45 more days where permitted.

Virginia (VCDPA)

Usually 45 days, extendable once by up to 45 more days where permitted.

Colorado (CPA)

Usually 45 days, extendable once by up to 45 more days where permitted.

Connecticut (CTDPA)

Usually 45 days, extendable once by up to 45 more days; appeal responses can take up to 60 days.

Utah (UCPA)

Usually 45 days, extendable once by up to 45 more days where permitted.

Minimization

Data-minimization posture

The request workflow does not intentionally store your IP address in the case record.
We keep only the contact details and context needed to validate and process the request.
Fulfillment may still require additional verification or limited follow-up evidence.