Legal · Privacy

Privacy Policy

LuMay AI provides LuMay AI Products for enterprise clients. This Policy explains how we collect, use, and protect personal information when you visit LuMay.ai or use our services.

1) Who We Are

LuMay AI · Website: https://www.lumay.ai · Contact: legal-compliance@lumay.ai

2) What We Collect

  • Account & Contact Data: your name, business email, role, and company - used to set up and manage your account.
  • Usage Data: logs, event telemetry, performance metrics, and device/browser information - collected to monitor performance, improve reliability, and ensure security.
  • Content You Provide: prompts, files, and other business data you choose to process via the assistant. For clarity: CRM data is processed transiently to deliver results but is not stored or retained by LuMay AI.
  • Billing Data: business billing contact details and transaction information - processed securely through our payment processor to complete transactions.
  • Cookies & Similar Technologies: strictly necessary cookies for core functionality, plus optional analytics cookies (see Section 9). You may control cookie preferences via your browser settings.

3) How We Use Data

  • Provide, secure, and improve the assistant and related services.
  • Configure enterprise features and fulfill contracts with your organization.
  • Respond to inquiries, provide support, and communicate updates.
  • Comply with legal obligations and enforce terms.

4) Legal Bases (EEA/UK)

We process data under one or more of: contract performance, legitimate interests (e.g., security, service improvement), consent (where required), and legal obligations.

5) Sharing

  • Processors/Sub-processors: hosting, analytics, logging, support tools operating under data processing agreements.
  • Enterprise Admins: for managed accounts, certain usage and configuration data may be visible to your organization.
  • Legal & Safety: to comply with law or protect rights, safety, and integrity of services.

6) International Transfers

Where data is transferred across borders, we use appropriate safeguards (e.g., SCCs or equivalent mechanisms).

7) Retention

We retain personal data only as long as necessary for the purposes above, then delete or anonymize it per our retention schedules and client agreements. CRM data processed via the assistant is never stored or retained beyond the active session.

8) Security

We implement administrative, technical, and physical safeguards proportionate to the sensitivity of the data. No method is 100% secure, but we continuously improve our controls.

9) Cookies

We use essential cookies to operate the site and may use optional analytics with your consent (where required). You can control cookies via your browser settings. Your enterprise deployment may enforce separate cookie settings.

10) Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing, and to portability. To exercise rights, contact legal-compliance@lumay.ai. If we process data on behalf of your employer, please contact your administrator first.

11) Children

Our services are intended for business use and not for children under 16.

12) Third-Party Links

Our site may link to third-party sites. Their privacy practices are governed by their own policies.

13) Changes

We may update this Policy periodically. Material changes will be indicated by updating the “Last updated” date and, where appropriate, additional notice.

14) Third Parties We Use

To deliver our services, LuMay AI relies on trusted third-party providers that operate under strict contractual and security obligations. These providers process data only as needed to deliver their services and may vary by region or deployment.

  • Cloud Hosting & Infrastructure: Microsoft Azure (compute, storage, security).
  • Payments: Stripe (payment processing, billing).
  • Analytics (optional): Google Analytics or equivalent (site traffic and usage metrics).
  • Support & Operations: customer support and logging tools (used only for troubleshooting and service improvement).

An up-to-date list of subprocessors may be provided upon request. Please contact legal-compliance@lumay.ai for details.

15) SMS Communications

If you provide your mobile phone number and consent to receive SMS messages, LuMay AI may send text messages related to your interactions with our services. These messages may include one-time verification codes, order confirmations, payment links, appointment reminders, customer support updates, delivery notifications, and other transactional or service-related communications.

Consent to receive SMS messages may be obtained through our website or application, or during a conversation with a LuMay AI voice assistant or authorized representative before any SMS message is sent. During a voice conversation, the AI assistant asks whether the customer would like to receive a payment link or other transactional SMS. SMS is sent only after the customer provides explicit consent.

Message frequency varies depending on your interactions with our services. Message and data rates may apply based on your mobile carrier messaging plan. You may opt out of SMS communications at any time by replying STOP to any message. For assistance, reply HELP or contact us using the contact information provided on our website.

16) Mobile Information

We do not sell, rent, or share your mobile phone number or SMS consent with third parties or affiliates for their own marketing or promotional purposes.

We may share your mobile phone number only with trusted service providers that assist us in delivering SMS communications or operating our services. These providers are contractually obligated to protect your information and may use it only to perform services on our behalf.

Questions about privacy?

Reach our legal team - usually a response within one business day.