Privacy Policy
This Privacy Policy explains how Lumyr collects, uses, stores, and shares information when you use our website, applications, and related SaaS services.
Last updated: April 26, 2026
1. Scope
This Privacy Policy applies to Lumyr's public website, product dashboard, integrations, APIs, and related support or onboarding interactions. It covers information we process as a service provider for our customers and information we collect directly from visitors, trial users, customers, and prospective customers.
If you are using Lumyr on behalf of a business, that business may control certain account and workspace information. In those cases, we process data under our agreement with that customer.
2. Information We Collect
We may collect the following categories of information:
- Account information such as name, email address, organization, and authentication identifiers.
- Billing and subscription information needed to provision and manage paid plans.
- Usage data such as page views, session events, feature interactions, device/browser details, and approximate IP-based location data.
- Customer-provided content and configuration, including store metadata, catalogs, integrations, page generation settings, analytics configuration, and domain settings.
- Support communications and feedback submitted by email, forms, or other communication channels.
3. How We Use Information
We use information to operate and improve Lumyr, including to:
- Provide, secure, maintain, and troubleshoot the service.
- Authenticate users and manage access to customer workspaces.
- Process transactions, administer subscriptions, and send service-related notices.
- Generate and publish SEO, AEO, and commerce-related outputs requested by customers.
- Analyze product usage, improve features, monitor performance, and prevent fraud or abuse.
- Respond to support requests and communicate product updates or important account changes.
4. Google Analytics and Google Search Console Data
If you choose to connect Google Analytics or Google Search Console to Lumyr, we access the Google account data that you explicitly authorize through Google OAuth. This may include account, property, site, performance, and reporting data needed to display search visibility, traffic, attribution, and related product features inside Lumyr.
Lumyr uses Google API data only to provide and improve user-facing features that are visible within the Lumyr application, such as connection setup, reporting, attribution, diagnostics, and customer-requested automation tied to those integrations.
Lumyr does not use Google API data for advertising, sale to data brokers, general-purpose profiling unrelated to the product's user-facing features, or any other prohibited secondary use. We do not transfer Google API data to third parties except as needed to operate the requested service, comply with law, protect security, or as otherwise authorized by the user.
You can revoke Lumyr's access to Google data at any time through your Google account settings or by disconnecting the integration inside Lumyr. If Lumyr changes the way it accesses or uses Google data, Lumyr will update this Privacy Policy and any related user disclosures before using that data for a newly disclosed purpose.
5. Legal Bases
Where applicable, Lumyr relies on one or more legal bases for processing personal data, including performance of a contract, legitimate interests in operating and improving the service, compliance with legal obligations, and consent where consent is required.
6. How We Share Information
We may share information with:
- Service providers that help us host, secure, analyze, support, and operate Lumyr.
- Third-party integrations and platforms you choose to connect, such as analytics, authentication, or commerce providers.
- Professional advisers, auditors, insurers, or acquirers where reasonably necessary.
- Law enforcement or regulators when required by law or to protect rights, security, and the integrity of the service.
We do not sell personal information in exchange for monetary compensation.
7. Data Retention
We retain information for as long as necessary to provide the service, comply with legal obligations, resolve disputes, enforce agreements, and maintain legitimate business records. Retention periods may vary depending on the type of data, the customer relationship, and applicable legal requirements.
8. Security
Lumyr uses administrative, technical, and organizational safeguards designed to protect personal information. No system is completely secure, and we cannot guarantee absolute security. Customers are responsible for maintaining the confidentiality of their credentials and using appropriate access controls within their organizations.
9. International Transfers
Your information may be processed in countries other than your own. Where required, Lumyr will use appropriate safeguards for cross-border transfers, such as contractual protections or other recognized transfer mechanisms.
10. Your Rights and Choices
Depending on your location, you may have rights to access, correct, delete, export, or restrict certain personal information, or to object to certain processing. You may also have the right to withdraw consent where processing is based on consent. We may need to verify your identity before responding to a request.
11. Children
Lumyr is intended for business use and is not directed to children. We do not knowingly collect personal information from children under the age required by applicable law.
12. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we may provide notice through the service, by email, or by updating the date at the top of this page. Continued use of Lumyr after an update becomes effective constitutes acceptance of the revised policy.
13. Contact
If you have questions about this Privacy Policy or want to exercise privacy rights, contact Lumyr at legal@lumyr.app.