Privacy Policy

Lumidor ("we", "our", or "us") operates the Lumidor Therapy Tracker mobile application and the lumidor.app web platform (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. By using Lumidor, you agree to the practices described in this policy.

Account Information: When you create an account, we collect your name, email address, and password. Therapists and center administrators also provide professional details such as center name and role.

Child Data: Parents and therapists may enter child-related information including the child's name, date of birth, therapy goals, session notes, progress entries, and home activity assignments. This data is entered voluntarily and is essential for the Service to function.

Voice Input (Lumi): When you use Lumi, our AI-assisted notetaking and onboarding assistant, your voice is captured by your device's built-in speech recognition and converted to text in-flight. The raw audio is never saved or uploaded by Lumidor. The resulting text transcript is processed only to extract structured note fields, then discarded — only the final, therapist-reviewed note is saved. See Section 6 for full detail.

Usage Data: We automatically collect technical information such as device type, operating system, app version, and general usage patterns to improve the Service. We do not track precise location.

We use the information we collect to:

• Provide and maintain the Service
• Enable therapists to track goals, sessions, and progress
• Allow parents to view their child's therapy journey
• Send transactional emails (invitations, password resets)
• Improve the Service through anonymized usage analytics
• Respond to support requests

We do not sell your personal information to third parties. We do not use your data for advertising.

Your data is stored securely on Supabase infrastructure with encryption at rest and in transit. We implement Row-Level Security (RLS) policies to ensure that users can only access data they are authorized to see. Session tokens on mobile devices are stored using encrypted device storage.

We share data only in the following limited circumstances:

• Within your therapy center: Therapists and administrators at your center can view relevant child and session data.
• Parent-therapist link: Parents can view their linked child's goals, progress, and sessions.
• Service providers: We use Supabase (database), Resend (email), Vercel (hosting), and Anthropic (AI structuring) to operate the Service. These providers process data on our behalf under strict confidentiality obligations. See Section 10 for the full list.
• Legal requirements: We may disclose data if required by law or to protect the rights and safety of our users.

What Lumi does: Lumi is a built-in AI assistant for therapists. It converts spoken or typed session notes into structured fields (session note, goal progress, mood, focus, home activities), and can also draft a new child's intake record from a single dictation.

Voice handling: When you dictate, your device's built-in speech recognition (Apple Speech on iOS, Google Speech on Android, the Web Speech API in browsers) converts your voice to text. Audio recordings are never saved or uploaded by Lumidor. Depending on your device settings, speech recognition may run on-device or may be processed by Apple or Google's cloud services; that processing is governed by their privacy practices.

AI structuring: The resulting text transcript is sent to our subprocessor Anthropic to be structured into Lumidor fields using a large language model. The transcript is transmitted over an encrypted connection, processed in-flight to produce the structured output, and is not used to train Anthropic's models. The raw transcript is discarded as soon as the structured output is returned — only the final, therapist-reviewed note is saved to Lumidor.

Therapist consent: The first time you activate Lumi on a device, you see a consent screen explaining these practices. You must accept before Lumi will run. You can decline at any time; Lumidor remains fully usable without Lumi.

Human in the loop: Lumi never saves a session note or creates a child record automatically. Every output is shown to the therapist for review and edit, and only saves to Lumidor when the therapist explicitly confirms.

Lumidor is designed for use by therapy professionals and parents. Children do not directly use the app. Child data is entered and managed by authorized adults (therapists and parents) and is protected by access controls. We comply with applicable child data protection regulations, including the relevant provisions of India's Digital Personal Data Protection Act (DPDP) governing children's personal data.

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Export your data in a portable format
• Withdraw consent for optional data processing

To exercise any of these rights, contact us at hello@lumidor.app.

We retain your data for as long as your account is active or as needed to provide the Service. If you request account deletion, we will remove your personal data within 30 days, except where retention is required by law. Anonymized, aggregated data may be retained indefinitely for analytics purposes.

The Service integrates with the following third-party providers (subprocessors):

• Supabase — Database and authentication (primary data store, Mumbai, India)
• Resend — Transactional email delivery
• Vercel — Web application hosting
• Expo / EAS — Mobile app build and distribution
• Anthropic — AI structuring of session notes and intake dictations (Claude API; transcripts processed in the United States, not used to train models)
• Apple Speech Services / Google Cloud Speech — Speech-to-text conversion via your device's built-in recognition; behaviour depends on your OS and device settings

Each provider maintains their own privacy policies and security practices.

Lumidor's primary data store (Supabase) is hosted in Mumbai, India. Some processing is performed by service providers located outside India, including in the United States. Specifically, AI structuring of session notes and intake dictations is performed by Anthropic in the United States, and email delivery is performed by Resend (United States / European Union). Where data is transferred outside India, we rely on the standard contractual safeguards offered by these providers and on the cross-border transfer provisions of India's Digital Personal Data Protection Act.

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice in the app or sending an email to your registered address. Your continued use of the Service after changes constitutes acceptance of the updated policy.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Lumidor
Email: hello@lumidor.app
Website: lumidor.app