Privacy Policy

Introduction

Lumio ("we", "our", "us") operates the heylumio.ai platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

Information We Collect

Account information

When you create an account, we collect your name, email address, and password (stored securely using industry-standard hashing). If you sign up via a social provider, we receive your name and email from that provider.

Organization and workspace data

We store organization names, workspace names, store URLs, brand profile information (product vertical, brand adjectives, customer persona descriptions), and team member information you provide.

Product catalog data

When you import a catalog, Lumio scans your publicly accessible sitemap and product pages. We collect and store product titles, descriptions, pricing, JSON-LD structured data, and other publicly available product information. We do not access any private or authenticated areas of your store.

Usage data

We collect information about how you interact with our service, including pages visited, features used, credit consumption, and scoring/enrichment activity.

Payment information

Payment processing is handled by Stripe. We do not store credit card numbers or sensitive payment details on our servers. Stripe's privacy policy governs their handling of your payment information.

How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the Lumio platform
• Score your product data for AI readiness
• Generate enriched product content using AI models
• Process transactions and manage your subscription
• Send service-related communications (account verification, billing, feature updates)
• Respond to support requests
• Monitor and analyze usage patterns to improve our service

AI Processing

Lumio uses third-party AI models (including Anthropic's Claude) to score and enrich your product data. When processing your products, we send product titles, descriptions, and structured data to these AI providers. This data is used solely for generating scores and enrichments and is not used to train AI models.

Data Sharing

We do not sell your personal information. We share data only with:

• Service providers — Infrastructure (Railway), payment processing (Stripe), AI processing (Anthropic), and email delivery (Resend) providers who need access to perform services on our behalf
• Your team members — Other members of your organization can see shared workspace data
• Legal requirements — When required by law, subpoena, or to protect our rights

Data Retention

We retain your account and catalog data for as long as your account is active. If you delete your account, we will delete your personal information and catalog data within 30 days, except where we are required to retain it for legal or billing purposes.

Data Security

We implement industry-standard security measures including encrypted connections (TLS), hashed passwords, and secure infrastructure hosting. However, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

Your Rights

You have the right to:

• Access the personal information we hold about you
• Request correction of inaccurate information
• Request deletion of your account and associated data
• Export your catalog and enrichment data
• Opt out of non-essential communications

To exercise these rights, contact us at privacy@heylumio.ai.

Cookies

We use essential cookies to maintain your session and remember your workspace preference. We do not use third-party tracking cookies or advertising cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, contact us at privacy@heylumio.ai.