Legal

Privacy Policy

Version 1.0 | Last updated: February 17, 2026

PRIVACY POLICY

Last updated: February 17, 2026

This Privacy Notice for LumiMD, Inc. ("Company," "we," "us," or "our") describes how and why we may access, collect, store, use, and share ("process") your personal information when you use our services ("Services"), including when you:

  • Visit our website at lumimd.app or any website of ours that links to this Privacy Notice
  • Download and use our mobile application (LumiMD), or any other application of ours that links to this Privacy Notice
  • Engage with us in other related ways, including support, marketing, and events

Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have questions or concerns, contact us at tyler@lumimd.app.

SUMMARY OF KEY POINTS

This summary provides key points from our Privacy Notice. You can find more details by using the table of contents below.

  • What personal information do we process? We may process personal information depending on how you interact with us and the Services.
  • Do we process sensitive personal information? Yes. We may process sensitive information, including health data and precise geolocation, when necessary and as permitted by law.
  • Do we collect information from third parties? No. We do not collect personal information from third parties.
  • How do we process your information? We process information to provide, improve, and secure our Services, communicate with you, and comply with law.
  • When do we share personal information? We may share information with service providers, in business transfer scenarios, or when legally required.
  • How do we keep data safe? We use reasonable technical and organizational safeguards, but no method is 100% secure.
  • What are your rights? Depending on where you live, you may have rights to access, correct, delete, or obtain copies of your personal information.

TABLE OF CONTENTS

  1. WHAT INFORMATION DO WE COLLECT?
  2. HOW DO WE PROCESS YOUR INFORMATION?
  3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
  4. DO WE OFFER ARTIFICIAL INTELLIGENCE-BASED PRODUCTS?
  5. HOW LONG DO WE KEEP YOUR INFORMATION?
  6. HOW DO WE KEEP YOUR INFORMATION SAFE?
  7. DO WE COLLECT INFORMATION FROM MINORS?
  8. WHAT ARE YOUR PRIVACY RIGHTS?
  9. CONTROLS FOR DO-NOT-TRACK FEATURES
  10. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
  11. DO WE MAKE UPDATES TO THIS NOTICE?
  12. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
  13. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide when you register on the Services, request information about products and features, participate in activities on the Services, or contact us.

Personal Information Provided by You. The personal information we collect may include:

  • Names
  • Email addresses
  • Usernames
  • Passwords

Sensitive Information

When necessary and as permitted by applicable law, we may process sensitive personal information, including:

  • Health data

Application Data

If you use our app, we may request access to the following device data and permissions:

  • Geolocation Information. We may request access to location information to provide location-based services.
  • Mobile Device Access. We may request access to calendar, microphone, reminders, and related device features.
  • Push Notifications. We may request permission to send account and feature-related notifications.

You can change these permissions in your device settings. This information helps us maintain security and operation of the app, troubleshoot issues, and support internal analytics.

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, support security and fraud prevention, and comply with legal obligations.

We process personal information for purposes including:

  • Account creation and authentication. To create and maintain user accounts.
  • Service delivery. To provide requested functionality and support product operation.
  • Support and inquiries. To respond to questions, support requests, and troubleshooting.
  • Usage trends. To understand usage patterns and improve product performance.
  • Legal compliance. To comply with applicable law and lawful requests.

3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In Short: We may share information in specific situations and with specific third parties.

We may share personal information in the following cases:

  • Business Transfers. In connection with, or during negotiations of, a merger, sale of company assets, financing, or acquisition.
  • Service Providers. With processors and vendors who provide hosting, infrastructure, analytics, communications, and support services.
  • Legal and Safety. Where required by law or to protect rights, safety, and security.

4. DO WE OFFER ARTIFICIAL INTELLIGENCE-BASED PRODUCTS?

In Short: Yes. We offer AI-powered products, features, and tools.

As part of our Services, we provide features powered by artificial intelligence, machine learning, or related technologies ("AI Products").

Use of AI Technologies

We provide AI Products through third-party AI service providers, including AssemblyAI and OpenAI. Inputs, outputs, and related personal information may be processed by these providers to deliver AI functionality.

Our AI Products

  • AI translation
  • AI insights

How We Process Your Data Using AI

Personal information processed by AI features is handled according to this Privacy Notice and applicable agreements with service providers.

5. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep personal information for as long as necessary to fulfill the purposes described in this Privacy Notice, unless a longer period is required by law.

We keep personal information while accounts are active and as needed for legal, security, and operational purposes. When we no longer have a legitimate business need, we delete or anonymize personal information where feasible.

If deletion is not immediately possible (for example, due to secure backups), we isolate and protect data until deletion is possible.

6. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through technical and organizational security measures.

We implement reasonable safeguards designed to protect personal information. However, no electronic transmission or storage method can be guaranteed 100% secure. You should access Services within a secure environment and keep credentials confidential.

7. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from children under 18 years of age.

If we learn that personal information from a person under 18 has been collected without proper authorization, we will deactivate related accounts and take reasonable steps to delete that data. If you believe we may have collected such data, contact us at tyler@lumimd.app.

8. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: Depending on your location, you may have rights that allow you to access, update, correct, export, or delete personal information.

Withdrawing consent

If processing relies on consent, you may withdraw consent at any time by contacting us. Withdrawal does not affect lawful processing completed before withdrawal.

Account Information

You may review or update account information through account settings. You may also request account deletion.

Upon deletion request, we will delete or deactivate account data from active systems, subject to legal and operational retention obligations.

For privacy-rights requests, contact tyler@lumimd.app.

9. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems include a Do-Not-Track (DNT) setting. Because no uniform technical standard has been finalized, we do not currently respond to DNT signals.

10. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: If you reside in certain U.S. states (including California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia), you may have additional privacy rights.

Categories of Personal Information We Collect

The table below describes categories of personal information collected in the prior 12 months.

Category Examples Collected
A. Identifiers Name, alias, contact details, IP address, account name YES
B. California customer records information Name and contact information YES
C. Protected classifications Demographic data where provided YES
D. Commercial information Purchase and transaction records NO
E. Biometric information Fingerprints, voiceprints NO
F. Internet or network activity Browsing and interaction history NO
G. Geolocation data Device location YES
H. Audio and similar information Audio recordings and related data YES
I. Professional or employment information Business contact and work history NO
J. Education information Student records and directory data NO
K. Inferences Profiles derived from collected data NO
L. Sensitive personal information Account login data, health data, precise geolocation YES

Your Rights

You may have rights to:

  • Know whether we process your personal data
  • Access your personal data
  • Correct inaccuracies
  • Request deletion
  • Obtain a copy of your data
  • Not be discriminated against for exercising rights
  • Opt out of certain processing where applicable

How to Exercise Your Rights

To exercise rights, email tyler@lumimd.app. We may verify identity before processing a request.

Appeals

If we deny a request and appeal rights apply, you may appeal by emailing tyler@lumimd.app.

California "Shine The Light" Law

California residents may request information, once per year and free of charge, about categories of personal information disclosed to third parties for direct marketing purposes in the prior calendar year.

11. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we may update this notice as necessary to remain compliant with law.

The updated version will be identified by a revised "Last updated" date. For material changes, we may provide additional notice.

12. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, contact us at:

LumiMD, Inc.
251 Little Falls Drive
Wilmington, Delaware 19808
United States
Email: tyler@lumimd.app

13. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Subject to applicable law, you may request to review, update, correct, export, or delete personal information we maintain about you by contacting tyler@lumimd.app.

We will review and respond to requests in accordance with applicable data protection laws.