Privacy Policy

Effective Date: June 11, 2026
Last Updated: June 11, 2026

1. Introduction

Welcome to DataLumio ("we," "our," or "us"). DataLumio operates the website datalumio.co and provides an AI-powered platform that enables researchers, analysts, and professionals to upload qualitative and quantitative research data — including text files, interview transcripts, observational records, and audio/video transcripts — and receive automated analytical reports with visualizations, charts, and graphs.

Because our platform processes research data that may contain information about third-party individuals (e.g., interview subjects, survey respondents), we treat data privacy as a core responsibility — not an afterthought.

This Privacy Policy explains:
  • What information we collect from you and why
  • How we use, store, and protect your data and any data you upload
  • Whether your uploaded research data is used to train our AI models
  • Your rights as a user, and how to exercise them
  • How to contact us with privacy concerns
By using DataLumio, you agree to the collection and use of information as described in this policy.

2. Information We Collect

2.1 Information You Provide Directly

Account Information
When you register for a DataLumio account, we collect your name, email address, and a password. If you choose to sign up via a third-party authentication provider (such as Google), we receive your name and email address from that provider.

Contact Form Submissions
If you reach out to us through our contact page at datalumio.co/contact-us, we collect your name, email address, and the content of your message.

Uploaded Research Data
When you use our platform, you upload data files for analysis. These may include:
  • Text-based documents (.txt, .docx, .pdf, etc.)
  • Interview transcripts
  • Observational field notes
  • Video or audio transcript files
  • Survey response exports
  • Any other qualitative or quantitative research files
This uploaded data is processed solely to perform the analytical service you have requested. We do not claim ownership of your uploaded data.

Payment Information
If you subscribe to a paid plan, payment transactions are securely processed by Stripe, our trusted third-party payment processor and a widely recognized global payment platform. We do not store or have access to your full credit card number, CVV, or other sensitive payment credentials on our servers. Your payment information is handled directly by Stripe in accordance with its security and privacy standards.

2.2 Information Collected Automatically

When you visit or use datalumio.co, we automatically collect certain technical information:
  • IP address and approximate geographic location (country/city level)
  • Browser type and version
  • Device type and operating system
  • Pages visited and time spent on each page
  • Referring URL (the page that directed you to our site)
  • Session duration and clickstream data
This information is collected using cookies, server logs, and analytics tools. Please see our Cookie Policy for full details.

2.3 Information from Third-Party Services

If you connect a third-party tool or integration to DataLumio, we may receive data from that service as permitted by your settings and that service's own privacy policy.

3. How We Use Your Information

We use the information we collect for the following purposes:
  • Performance of a contract: To provide, operate, and improve the DataLumio platform and AI analysis features
  • Performance of a contract: To analyze your uploaded research data and generate reports and visualizations
  • Performance of a contract: To create and manage your user account
  • Performance of a contract: To send transactional emails (account confirmations, analysis completion notices, billing receipts)
  • Legitimate interest: To respond to your inquiries submitted via datalumio.co/contact-us
  • Legitimate interest: To detect, investigate, and prevent security incidents, fraud, or abuse
  • Legal obligation: To comply with applicable legal obligations
  • Consent: To send product updates or feature announcements (with your consent, where required)
We do not use your data for advertising purposes. We do not sell your personal information to third parties.

4. How We Handle Your Uploaded Research Data

This section is critically important for researchers and institutional users.

4.1 Your Data Belongs to You
All research data you upload to DataLumio remains your property. We process it exclusively to deliver the analysis you requested. You retain full ownership and intellectual property rights over your uploaded files and generated reports.

4.2 We Do Not Use Your Data to Train AI Models
DataLumio does not use your uploaded research data to train, fine-tune, or improve our AI models. Your files are processed in real time to generate your report and are not stored beyond what is necessary to complete and display your analysis session. We do not share your research data with any AI model provider for training purposes.

4.3 Data Retention for Uploaded Files
Uploaded files are retained only as long as necessary to:
  • Complete your requested analysis
  • Allow you to access and download your generated report within your active session or account dashboard
You can delete your uploaded files and reports at any time from your account dashboard. Upon deletion, files are permanently removed from our systems within 30 days.

4.4 Confidentiality of Research Subjects
We understand that research data often contains information about human subjects (interviewees, survey participants, etc.) who did not directly consent to share their data with a software platform. DataLumio's internal team does not manually review, read, or access your uploaded files. Processing is handled programmatically by our AI systems. We treat research data as strictly confidential.

5. Sharing of Information

We do not sell, rent, or trade your personal information. We share information only in the following limited circumstances:
  • Service Providers: We work with trusted third-party vendors who assist us in operating our platform, including cloud hosting providers, payment processors, and email delivery services. These vendors are contractually bound to process data only on our instructions and to maintain appropriate security standards.
  • AI Infrastructure Providers: Our AI analysis engine may rely on underlying model infrastructure. Where applicable, we ensure such providers are contractually prohibited from using your data for model training and are required to process it only for the purpose of delivering your requested analysis.
  • Legal Requirements: We may disclose information if required by applicable law, court order, or governmental authority, or to protect the rights, property, or safety of DataLumio, our users, or the public.
  • Business Transfers: If DataLumio is acquired by or merged with another company, your information may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.

6. Data Security

We implement industry-standard security measures to protect your information:
  • Encryption in transit: All data transmitted between your browser and our servers is encrypted using TLS (HTTPS).
  • Encryption at rest: Uploaded files and personal data stored on our infrastructure are encrypted at rest.
  • Access controls: Access to user data within our team is restricted on a need-to-know basis.
  • Regular security reviews: We conduct periodic reviews of our security practices and infrastructure.
While we take data security seriously, no method of transmission over the internet or electronic storage is 100% secure. We encourage you to use a strong, unique password for your DataLumio account and to contact us immediately if you suspect any unauthorized access.

7. Cookies

DataLumio uses cookies and similar tracking technologies to operate and improve our platform. For a full explanation of what cookies we use and how to manage them, please read our Cookie Policy at datalumio.co/cookie-policy.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:
  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Correction: Request that we correct inaccurate or incomplete data.
  • Right to Deletion: Request that we delete your personal data and account ("right to be forgotten").
  • Right to Restriction: Request that we restrict the processing of your data in certain circumstances.
  • Right to Data Portability: Request your data in a structured, machine-readable format.
  • Right to Object: Object to our processing of your data based on legitimate interest.
  • Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing.
For EU/UK users (GDPR): You have the rights listed above under the General Data Protection Regulation. You also have the right to lodge a complaint with your local data protection authority.

For California users (CCPA): You have the right to know, delete, and opt out of the sale of your personal information. DataLumio does not sell personal information.

To exercise any of these rights, please contact us through our contact page at datalumio.co/contact-us or email us at info@datalumio.co. We will respond to verified requests within 30 days.

9. Children's Privacy

DataLumio is not directed at children under the age of 13 (or under 16 in the EU/UK). We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us and we will take steps to delete it promptly.

10. International Data Transfers

DataLumio may process and store your data on servers located outside your country of residence. If you are located in the European Economic Area (EEA) or United Kingdom, we ensure that any transfer of personal data outside these regions is governed by appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission.

11. Third-Party Links

Our website may contain links to third-party websites. This Privacy Policy does not apply to those sites. We encourage you to review the privacy policies of any third-party services you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page and, for material changes, notify you by email or by a prominent notice on our platform. Continued use of DataLumio after changes become effective constitutes your acceptance of the revised policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
DataLumio
Website: datalumio.co
Contact Form: datalumio.co/contact-us
Email: info@datalumio.co