Privacy Policy
Last updated: 2026-05-15
This Privacy Policy explains how Lumenari (βweβ) collects, uses, and protects personal information when you use the Service at lumenari.io. We comply with Canadian PIPEDA + Alberta PIPA, EU GDPR, UK GDPR, and California CCPA/CPRA.
1. Information we collect
We collect the minimum required to deliver the Service and meet our legal obligations.
- Account + transaction data β your email address, billing address (collected by Stripe during checkout for tax compliance), and the kits or subscription tier you purchased.
- Lead-magnet sign-ups β your email if you request the free kit at /free or subscribe to our newsletter.
- Usage data β anonymous page views via Plausible Analytics. Plausible does not use cookies and does not collect personal data. (Some Lumenari deployments use PostHog with anonymous IDs instead; see βThird-party providersβ below.)
- API usage data (for API platform customers only) β API key id, endpoint hit, response status, and duration, for billing + rate limiting.
- Communication data β emails you send us; Resend delivery + open + click events for the lifecycle emails we send you.
- Device data β your IP address and user-agent, captured incidentally by hosting (Vercel) and CDN/security infrastructure, retained no longer than 30 days.
We do not collect names, phone numbers, or government IDs unless you provide them voluntarily.
2. How we use your information
- To process purchases and deliver kits you bought (contractual necessity);
- To operate the Service β provision accounts, send transactional emails, prevent abuse (legitimate interest + contractual necessity);
- To send lifecycle marketing emails when you've given consent (e.g. the welcome series after claiming the free kit; the Pro+ digest if you're a Pro+ subscriber);
- To meet tax + accounting obligations (legal obligation);
- To improve the Service β aggregated, anonymised analytics only (legitimate interest).
We do not sell your personal information. We do not share it with advertisers. We do not use it to train AI models.
3. Third-party processors
Every processor below is bound by a Data Processing Agreement (DPA) with us and processes data only on our instructions.
- Stripe β payment processing, tax calculation, invoicing. Stripe collects payment method details directly; we never see your card number.
- Resend β transactional + marketing email delivery. Sees your email address + the content of mails we send you.
- Supabase β Postgres database + authentication infrastructure. Hosts your account email + purchase history.
- Vercel β application hosting + CDN. Sees IP + user-agent at request time.
- Anthropic β model provider for the recommendation wizard. Sees the use-case description you submit. Anthropic does not use API inputs to train models unless you opt in to that program.
- Plausible (or PostHog, depending on deployment) β privacy-respecting analytics. Plausible is cookieless. PostHog uses anonymous, salted device IDs.
4. Cookies
We use the minimum cookies required to operate:
- lumenari_locale β remembers your preferred language for our multi-locale storefront.
- lumenari_admin β signed admin session cookie (HttpOnly, only set if you successfully log into /admin).
- lumenari_ref β referral attribution cookie (only set if you arrive via a referral link).
We do not use third-party advertising or tracking cookies. Plausible and the cookieless analytics path are the default; a PostHog cookie is set only when explicitly enabled.
5. Data retention
- Purchases + invoices β retained 7 years (Canadian tax law requirement).
- Newsletter + lead-magnet emails β retained until you unsubscribe or request deletion.
- Pro+ subscription data β retained for as long as the subscription is active + 7 years afterward for financial records.
- API usage logs β 90 days, then aggregated and the raw rows are deleted.
- Email delivery + engagement events β 18 months.
6. Your rights
Depending on your jurisdiction (GDPR, UK GDPR, CCPA/CPRA, PIPEDA), you have the right to:
- Access the personal information we hold about you;
- Correct inaccurate or incomplete information;
- Delete your personal information (subject to retention obligations above);
- Export your data in a portable format;
- Object to or restrict processing for marketing purposes;
- Withdraw consent at any time (without affecting prior processing);
- Lodge a complaint with your data-protection authority (Office of the Privacy Commissioner of Canada; or your local DPA in the EU/UK).
To exercise any of these rights email hello@lumenari.io. We respond within 30 days (10 days for CCPA-applicable requests).
7. Children
The Service is not directed at children under 16. We do not knowingly collect personal information from children. If we learn that a child has provided personal information, we delete it.
8. International data transfers
Lumenari operates from Canada. Stripe, Resend, Supabase, and Vercel may store data in the United States and/or the European Union. Where applicable, we rely on Standard Contractual Clauses + supplementary technical measures for transfers out of the EU/UK.
9. Security
All connections to the Service use TLS. Passwords are not stored β we use email-based magic links and Stripe-hosted checkout. Service-role database access is restricted to server processes. Row-Level Security is enabled on every Supabase table containing customer data.
10. Changes
Material changes to this Policy will be announced on the homepage and emailed to active subscribers at least 14 days before they take effect.
11. Contact
Email hello@lumenari.io for any privacy question or to exercise the rights described above.