Skip to content
Lumin
HomeMCPBlogContact
Request a ReadingUse with Claude
Back to Legal

Privacy

Privacy Policy

Last updated: 28 March 2026

1. Introduction

Lumin (“we”, “us”, “our”) operates the platform at lumin.guru and app.lumin.guru. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our KP astrology platform.

We are committed to transparency about our data practices. By using Lumin, you acknowledge that you have read and understood this policy. If you do not agree with our practices, please do not use the platform.

2. Information We Collect

2.1 Account Information

When you sign in using Google authentication, we receive and store the following from your Google account:

  • Email address
  • Display name
  • Profile picture URL

2.2 Birth Profile Data

To generate accurate KP astrology charts and interpretations, you provide:

  • Full name (as you wish it to appear)
  • Gender
  • Date of birth
  • Time of birth (if known)
  • Place of birth (resolved to geographic coordinates and UTC offset)
  • Preferred ayanamsa system

You may create multiple birth profiles under a single account.

2.3 Chat and Session Data

When you interact with Lumin, we store your chat sessions including messages you send, responses generated, tool call results, and visual blocks rendered during your session.

2.4 Usage and Diagnostic Data

We collect anonymised usage events (feature usage, session counts) and error logs (stack traces, request paths) to maintain and improve the platform. Error tracking is handled through Sentry, which may collect browser metadata and error context.

3. How We Use Your Information

We use your personal information to:

  • Deliver the service: compute KP astrology charts, dasha timelines, sub-lord analyses, and generate personalised interpretations based on your birth data
  • Authenticate your account: verify your identity through Google sign-in and maintain your session
  • Preserve your history: store chat sessions so you can revisit previous readings
  • Improve reliability: diagnose errors, monitor performance, and improve the platform
  • Communicate with you: send service-related notices (e.g., policy changes, maintenance windows)

We do not use your data for advertising, profiling for marketing purposes, or any purpose unrelated to providing the Lumin service.

4. Legal Basis for Processing

Under the General Data Protection Regulation (GDPR) and similar frameworks, we process your data on the following bases:

  • Contract performance: processing birth data and chat messages is necessary to deliver the service you requested
  • Legitimate interest: error logging, usage analytics, and platform security
  • Consent: where required by law (e.g., for non-essential cookies, if applicable)

5. Automated Processing and Generated Content

Lumin uses automated systems, including large language models, to generate astrological interpretations based on your birth data and KP calculations. Your birth profile data is sent to our computation engine and intelligence layer to produce these readings.

These interpretations are generated content and should not be treated as professional advice. No automated decisions with legal or similarly significant effects are made about you.

Our language model provider processes your data solely to generate responses and does not use your data for model training. We maintain a Data Processing Agreement with our provider to ensure your data is handled in compliance with applicable regulations.

6. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to any third party.

We share data only with the following categories of service providers, strictly for the purpose of operating the platform:

  • Authentication provider: Supabase (handles Google OAuth and session management)
  • Database hosting: Supabase (stores account data, profiles, and chat history with row-level security)
  • Language model provider: processes birth data to generate astrological interpretations (does not retain or train on your data)
  • Error tracking: Sentry (receives error context and stack traces for debugging; no birth data is included in error reports)
  • Hosting and deployment: our hosting provider serves the application and may process access logs

Each provider is bound by a Data Processing Agreement and is required to process your data only as instructed by us.

7. Data Retention

We believe in minimal data retention. Your data is kept only as long as necessary to provide the service:

Data CategoryRetention Period
Account dataDuration of account + 30 days
Birth profilesDuration of account + 30 days
Chat sessions & messages30 days from creation, or upon account deletion
Error logs90 days
Usage analytics (anonymised)12 months

When you delete your account, all associated personal data, including birth profiles, chat sessions, and messages, is permanently deleted within 30 days. Anonymised aggregate statistics may be retained beyond this period.

8. Your Rights

Depending on your jurisdiction, you have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you
  • Rectification: correct inaccurate data (you can edit your profiles directly in the app)
  • Erasure: request deletion of your data (or delete your account through the app)
  • Portability: receive your data in a structured, machine-readable format
  • Restriction: request that we limit processing of your data
  • Objection: object to processing based on legitimate interest
  • Withdraw consent: where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us at contact@lumin.guru. We will respond within 30 days (or within the timeframe required by your local regulation).

For California residents (CCPA/CPRA): You have the right to know what personal information we collect, the right to delete, the right to opt-out of the sale of personal information (we do not sell your data), and the right to non-discrimination for exercising your privacy rights.

For EU/EEA/UK residents: You have the right to lodge a complaint with your local supervisory authority if you believe your data protection rights have been violated.

9. Children’s Privacy

Lumin is not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that a user is under 16, we will promptly delete their account and associated data.

10. International Data Transfers

Your data may be processed in countries outside your country of residence, including the United States, where our service providers operate. Where data is transferred outside the EU/EEA/UK, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission or reliance on adequacy decisions.

11. Security

We implement appropriate technical and organisational measures to protect your data, including:

  • Encryption in transit (TLS/HTTPS on all connections)
  • Encryption at rest for database storage
  • Row-level security policies ensuring users can only access their own data
  • JWT-based authentication with secure session management
  • Rate limiting and body size limits to prevent abuse
  • Security headers (X-Frame-Options, X-Content-Type-Options, Referrer-Policy)

No system is completely secure. While we take reasonable steps to protect your data, we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through a notice on the platform or via email. Continued use of Lumin after changes take effect constitutes acceptance of the updated policy.

We encourage you to review this page periodically for the latest information on our privacy practices.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:

contact@lumin.guru