§ Privacy

Privacy Policy

What personal data we collect, how we use it, and the rights you have. Written to be readable.

Effective April 22, 2026 · Last updated April 22, 2026
Contents
  1. What this covers
  2. Data we collect
  3. How we use it
  4. Third-party processors
  5. AI providers
  6. Data retention
  7. Your rights
  8. International transfers
  9. Security
  10. Children
  11. Changes to this policy
  12. Contact

What this covers

This policy explains what personal data Lumeinit Research, Inc. ("we") collects, how we use it, and the choices you have. It applies to lumeinit.com and the Lumeinit Service.

Data we collect

From you directly. Account information (name, email, password hash), billing information (processed by our payment provider, not stored by us), workspace content (sources you upload, conversations you have, drafts you produce), and support correspondence.

Automatically. Usage data (pages viewed, features used, broad geographic location derived from IP), device data (browser, OS), and cookies for authentication and session management. We don't use third-party advertising cookies.

How we use it

To operate the Service, authenticate you, process payments, send transactional emails, respond to support requests, improve the product, detect abuse, and comply with legal obligations.

We do not sell personal data. We do not train AI models on your content.

Third-party processors

We use third parties to run parts of the Service: infrastructure hosting, payment processing, error tracking, AI model inference, transactional email, and analytics. We have data-processing agreements with each. The current list is available on request and maintained in our DPA.

AI providers

When you use the AI features, the content of your prompts and your selected sources is sent to our AI provider(s) for inference. We negotiate zero-retention or short-retention terms with these providers. On the Team plan, you can enable strict zero-retention mode for all AI requests.

Data retention

Account data is retained while your account is active. After you delete your account, workspaces remain read-only for 30 days, then primary data is deleted within 60 days. Backups are purged within 90 days of deletion. Billing records are retained for 7 years where legally required.

Your rights

Depending on where you live, you may have rights to access, correct, port, or delete your personal data, and to object to or restrict processing. Write to contact@lumeinit.com and we will respond within 30 days.

International transfers

We may transfer data outside your country of residence. For transfers from the EEA, UK, or Switzerland, we rely on Standard Contractual Clauses.

Security

See the Security page for details on encryption, access controls, and our incident response process.

Children

Lumeinit is not directed at children under 16 and we don't knowingly collect their data. If you believe we have, contact us and we'll delete it.

Changes to this policy

We'll notify you of material changes by email at least 30 days before they take effect.

Contact

Data controller: Lumeinit Research, Inc. Reach us at contact@lumeinit.com or by post at the address on our Contact page.

Questions about this document? Write to contact@lumeinit.com.