Privacy Policy
How Lumioh collects, uses, and protects your data. For questions or data rights, email privacy@lumioh.com.
Data we collect
- Account data (name, email), workspace metadata, and usage telemetry needed to operate the service.
- Content you upload (docs, tasks, contacts, contracts) stored per workspace.
- Diagnostic data for performance and security (logs, device/browser info).
How we use data
- To deliver and improve Lumioh features, personalize experiences, and provide support.
- To secure accounts via auditing, fraud prevention, and abuse detection.
- To operate AI-assisted features; AI actions are permission-aware and logged.
Sharing and subprocessors
- We use trusted infrastructure and analytics providers under data processing agreements.
- We do not sell personal data. We only share as needed to operate the service or comply with law.
- Subprocessor list and locations are available on request.
Retention and deletion
- We retain data for as long as needed to provide the service or as required by law.
- You can request export or deletion of your workspace data subject to legal and security constraints.
- Backups are kept for disaster recovery and are purged on a rolling basis.
AI and model usage
- We do not use customer content to train foundation models.
- Prompts and outputs may be logged for security and quality; sensitive fields can be masked at the workspace level.
- Model providers are governed by contracts; data is sent with least-privilege scopes.
Your rights
- You may request access, correction, export, or deletion of your personal data.
- Contact privacy@lumioh.com for data subject requests.
- We will notify you of material changes to this policy.
Security
- Encryption in transit and at rest, RBAC, and audit logging.
- Enterprise plans include SSO/SCIM and stricter controls.
- Incident response procedures are in place; security issues can be reported to security@lumioh.com.
Effective date: December 2025
Contact: privacy@lumioh.com