We can't find the internet
Attempting to reconnect
Something went wrong!
Hang in there while we get back on track
Privacy Policy
Last updated: 1st May 2025
This Privacy Policy explains how Luma Technologies ApS ("we", "us", or "our") collects, processes, stores, and protects your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 ("GDPR").
1. Data Controller
Luma is the data controller responsible for the processing of your personal data. If you have any questions, wish to exercise your rights, or have other inquiries regarding this policy, you can contact us at:
Luma Technologies ApS
Højbro Plads 10
Office 404
1200 Copenhagen K
Denmark
Email: sign@heyluma.com
Phone: +45 71 99 28 00
2. Personal Data We Collect
We collect and process only the personal data necessary to provide our services and comply with legal requirements. This includes:
- Identification Information: Name, email address, and phone number.
- Payment Information: Processed via our payment partner, Stripe. We do not store your payment card details.
- Signature Data: Documents and associated metadata necessary for electronic signatures.
- Technical Data: IP address, device information, and browser settings.
3. Purposes of Processing Personal Data
We process your personal data for the following purposes:
- Service Delivery: To facilitate electronic signatures and related services.
- Legal Compliance: To meet obligations under applicable laws and regulations.
- Service Improvement: To enhance our platform and user experience.
- Communication: To inform you about your use of our services and respond to your inquiries.
4. Sharing of Personal Data
We share your personal data only when necessary and in accordance with applicable laws:
With service providers:
- Stripe: For secure payment processing.
- Signicat: For electronic identification and signature services.
- Hosting Providers: For data storage and platform operation.
With authorities:
When required by law, we may share your data with relevant authorities.
5. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Specifically:
- Documents: Stored for 7 days unless deleted earlier by the user.
- Transaction Data: Retained for up to 5 years for compliance and accounting purposes.
- Support Communications: Retained for 12–24 months for reference.
After the retention period, data is securely deleted or anonymized.
6. Data Transfers
We primarily store and process data within the EU/EEA. If data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions approved by the European Commission.
7. Your Rights Under GDPR
As a data subject, you have the following rights:
- Access: Request a copy of your personal data.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion of your data ("right to be forgotten").
- Restriction: Request limitation of data processing.
- Portability: Receive your data in a machine-readable format.
- Objection: Object to data processing based on legitimate interests.
- Withdraw Consent: Withdraw consent where processing is based on consent.
To exercise these rights, contact us at sign@heyluma.com. You also have the right to lodge a complaint with your local Data Protection Authority.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Encryption: Data is encrypted in transit and at rest.
- Access Controls: Restricted access to personal data.
- Regular Security Audits: Regular monitoring and testing of security measures.
However, no system is entirely secure, and we encourage users to take precautions when handling sensitive information.
9. Cookies and Tracking Technologies
Luma uses essential cookies for the operation of our website. We do not use cookies for advertising, profiling, or behavioral tracking. You can manage your cookie preferences through your browser settings.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Changes will be posted on our website, and your continued use of our services constitutes acceptance of the revised policy.