Privacy Policy

Lumo is a dream journal app developed by Tom Delangle (auto-entrepreneur, France). Your privacy matters deeply to us. This policy explains what data Lumo collects, how it is used, and your rights.

1. What data Lumo collects

Data stored on your device only

The following data is stored locally on your iPhone and never leaves your device unless you use AI features:

• Dream entries (text, emotions, types, clarity, sleep quality, bedtime mood)
• Dream symbols and analysis results
• Conversation history with Lumo
• AI preferences and conversation notes
• Streak and journaling statistics
• Notification settings
• App lock preference

Data sent to our servers

When you use AI-powered features, the following data is sent securely to our servers for processing:

• Dream analysis: Your dream text is sent to generate symbol suggestions. The text is processed in real time and is not stored on our servers.
• Chat with Lumo: Your conversation messages and relevant dream context are sent to generate Lumo's responses. Messages are processed in real time and are not stored on our servers.
• Feedback: If you send feedback through the app, your message is stored on our servers so we can read and respond to it.

Data we do NOT collect

• No email address, name, or personal identity (authentication is anonymous)
• No location data
• No analytics or usage tracking
• No advertising identifiers
• No data is sold to third parties

2. Third-party services

Lumo uses the following third-party services:

• Anthropic (Claude API): Powers dream analysis and chat features. Your dream content and messages are sent to Anthropic's API for processing. Anthropic's privacy policy applies to this processing. Anthropic does not use API inputs to train their models.
• Supabase: Provides anonymous authentication and hosts our server functions. No personal data is stored in Supabase except feedback messages.
• RevenueCat: Manages premium subscriptions via Apple's In-App Purchase system. RevenueCat receives an anonymous user identifier and purchase data.
• Apple: Handles payments (App Store), voice recognition (on-device only, premium feature), and push notifications.

3. Voice dictation

The voice dictation feature (premium only) uses Apple's Speech Recognition framework, which processes your voice entirely on your device. No audio data is sent to Lumo's servers or any third party.

4. Data security

• All data stored on your device is protected by your device's security (passcode, Face ID, Touch ID).
• Lumo offers an optional App Lock feature using biometric authentication.
• All communications with our servers use HTTPS encryption.
• Authentication tokens are stored in iOS Secure Keychain.

5. Data retention and deletion

• Your journal data lives on your device. If you uninstall Lumo, all local data is permanently deleted.
• You can delete individual dreams, conversations, or your entire account from within the app.
• Feedback messages stored on our servers can be deleted upon request.

6. Children's privacy

Lumo is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 is using Lumo, please contact us.

7. Your rights (GDPR)

As Lumo is operated from France, the EU General Data Protection Regulation (GDPR) applies. You have the right to:

• Access your data (your journal is already fully accessible on your device)
• Request deletion of any server-side data (feedback messages)
• Object to data processing
• Data portability

To exercise these rights, you can use the Send Feedback button in the Profile section of the app, or contact us at the address below.

8. Changes to this policy

We may update this policy from time to time. We will notify you of significant changes through the app or on our website. The date at the top of this page indicates when this policy was last updated.

9. Contact

Tom Delangle (Auto-entrepreneur)
Email: delangle.tom@gmail.com