Privacy Policy

Last updated: November 4, 2025

1. Introduction

Welcome to Relumia ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our AI-powered image editing web application (the "Service") available at relumia.app.

We are committed to protecting your privacy and being transparent about how we handle your data. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide Directly

Account Information:

  • Email address (required for account creation)
  • Password (encrypted and securely stored)
  • Profile information you choose to provide

Payment Information:

  • Billing information processed through our secure payment processor (we do not store your payment card details)
  • Purchase history and transaction records

Content You Upload:

  • Images you upload for processing
  • Text prompts and instructions you provide for AI generation
  • Generated images and editing results

2.2 Information Collected Automatically

Usage Data:

  • IP address and general location information
  • Device information (browser type, operating system, device identifiers)
  • Service usage patterns and preferences
  • Log files and technical information about your interactions with our Service

Performance Data:

  • Processing time for image generations
  • Error logs and system performance metrics
  • Feature usage statistics

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision

  • Process your images using AI/ML technologies
  • Manage your account and provide customer support
  • Process payments and manage your credit balance
  • Store and deliver your generated images

3.2 Service Improvement

  • Analyze usage patterns to improve our AI models and features
  • Monitor system performance and troubleshoot technical issues
  • Develop new features and enhance user experience

3.3 Communication

  • Send important service updates and security notifications
  • Respond to your inquiries and provide customer support
  • Send promotional communications (with your consent, where required)

3.4 Legal and Security

  • Comply with legal obligations and enforce our Terms of Service
  • Detect and prevent fraud, abuse, and security threats
  • Protect our rights and the safety of our users

4. Third-Party Services and Data Sharing

We use the following third-party services that may process your data:

4.1 Essential Service Providers

Cloud Database and Authentication Provider:

  • Stores your account information, usage data, and generated content
  • Provides secure authentication services
  • Operates under strict data protection and security standards

AI Processing Service:

  • Processes your images and prompts to generate new content
  • Images are temporarily sent to third-party AI servers for processing
  • Subject to enterprise-grade security and privacy protections

Payment Processing Service:

  • Processes payments and manages billing information
  • We do not store your payment card details
  • PCI DSS compliant payment processing

4.2 When We Share Information

We may share your information in the following circumstances:

  • With service providers who assist in operating our Service (under strict confidentiality agreements)
  • When required by law, legal process, or government requests
  • To protect our rights, property, safety, or that of our users
  • In connection with a merger, acquisition, or sale of assets (with notice to you)
  • With your explicit consent for specific purposes

We do not sell your personal information to third parties.

5. Data Storage and Security

5.1 Data Storage

  • Your data is stored on secure cloud servers provided by our trusted infrastructure partners
  • Images are stored in encrypted cloud storage with enterprise-grade security
  • We retain your data only as long as necessary to provide our services

5.2 Security Measures

  • All data transmissions are encrypted using industry-standard protocols (HTTPS/TLS)
  • Passwords are hashed and encrypted using secure algorithms
  • Regular security audits and monitoring
  • Access controls and authentication mechanisms
  • Data backup and disaster recovery procedures

5.3 Data Retention

  • Account information: Retained until account deletion
  • Generated images: Stored for service provision, deletable by user
  • Usage logs: Typically retained for 90 days for operational purposes
  • Payment records: Retained as required by law and for tax purposes

6. Your Rights and Choices

Depending on your location, you may have the following rights:

6.1 Access and Control

  • Account Access: View and update your account information through your profile settings
  • Data Download: Request a copy of your personal data
  • Data Deletion: Delete your account and associated data
  • Content Management: Delete your uploaded and generated images

6.2 Communication Preferences

  • Email Notifications: Opt out of promotional emails (service notifications may still be sent)
  • Marketing Communications: Unsubscribe from marketing messages

6.3 Exercising Your Rights

To exercise these rights, please contact us at mikebdengineer01@gmail.com

7. Regional Privacy Rights

7.1 European Users (GDPR)

If you are in the European Economic Area, you have additional rights including:

  • Right to rectification, erasure, and data portability
  • Right to object to processing and request processing restriction
  • Right to withdraw consent at any time
  • Right to lodge a complaint with supervisory authorities

7.2 California Users (CCPA)

California residents have rights including:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale (note: we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

8. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us so we can take appropriate action.

9. International Data Transfers

Your information may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) for GDPR compliance
  • Adequacy decisions where available
  • Other appropriate safeguards as required by applicable law

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, regulatory, or operational reasons. We will:

  • Post the updated policy on our website
  • Update the "Last Updated" date
  • Notify you of material changes via email or service notification
  • For significant changes, obtain your consent where required by law

11. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: mikebdengineer01@gmail.com
Support: mikebdengineer01@gmail.com

For EU users, you can also contact our Data Protection Officer at: dpo@your-domain.com

12. Additional Information

12.1 Cookies and Tracking

We use essential cookies for service functionality. We do not use third-party tracking cookies for advertising purposes in this MVP version.

12.2 Data Processing Legal Basis (GDPR)

  • Contract Performance: Processing necessary to provide our services
  • Legitimate Interest: Service improvement, security, and customer support
  • Consent: Marketing communications and optional features
  • Legal Compliance: Compliance with applicable laws and regulations

12.3 Data Controller Information

Relumia is the data controller for your personal information. For European users, our representative can be contacted at the email address above.

This Privacy Policy is effective as of the date listed above and governs your use of the Relumia service.