Who we are
Our website address is: https://theluminaria.com.
Introduction
At The Luminaria, we are committed to protecting your privacy and ensuring the security of your personal data. Our mission is to empower our members to participate in creating a world where everyone thrives in sustainable and just balance with each other and the planet. We collect only the data necessary to provide our services and fulfill our mission, and we handle it with the utmost care and respect. This Privacy Policy explains how we collect, use, and protect your information in compliance with GDPR regulations.
1. Your Rights
Under GDPR, you have the following rights:
- Access: Request a copy of the data we hold about you.
- Rectification: Request corrections to inaccurate or incomplete data.
- Erasure: Request the deletion of your data (“right to be forgotten”).
- Data Portability: Request a copy of your data in a machine-readable format.
- Restriction of Processing: Request that we limit the use of your data.
- Objection: Object to the processing of your data for specific purposes.
- Withdraw Consent: Withdraw your consent at any time for activities based on consent.
Additional Rights we provide:
In alignment with our mission, we are committed to everyone’s data being ethically and securely managed. We’re always eager to have productive conversations about new strategies that could secure and protect all of our members.
We believe you have a right to be heard. If you have questions or ideas, feel free to contact us at info@theluminaria.com.
2. Data We Collect
We only collect the minimum amount of data necessary to provide our services and fulfill our mission. This includes:
- Account Information: Name, email address, and login credentials when you create an account on our platform.
- Membership Data: Information you voluntarily share on our website or membership platform (e.g., profile details, posts, or comments).
- Payment Information: Processed securely by third-party payment providers (e.g., Stripe, PayPal). We do not store financial information on our servers.
- Cookies and Tracking Data: Limited data collected via cookies to improve website functionality and user experience. You can manage your cookie preferences at any time.
- Optional Data: Any additional data you choose to share when participating in surveys, events, or other activities.
3. How We Use Your Data
We will never sell your data or share it with advertisers or third parties, except as required by law or with your explicit consent.
We use your data to:
- Provide and improve our services, including membership features and educational resources.
- Facilitate communication, such as sending newsletters, updates, or event invitations (only with your consent).
- Ensure the security and functionality of our website and membership platform.
- In the future: As part of our mission to generate insights about human behavior, personal growth, justice strategies, and sustainable living, we may collect data ONLY with the express permission of participants. All such data will be anonymized to the greatest extent possible before being introduced to AI or shared within our organization. This data will be used only to generate mission-critical insights, which we return to our membership in the form of education, white papers, studies, recommendations, etc., and will NEVER be sold to 3rd parties.
We will inform members of these options when they are available, but we will never change our policies without explicitly informing our members and allowing them to consent or opt-out.
4. Legal Basis for Processing
We process your data based on the following legal grounds:
- Consent: When you opt in to receive communications or participate in specific activities.
- Contractual Necessity: To provide the services you have signed up for.
- Legitimate Interests: To improve our services and ensure the security of our platform.
5. Data Sharing
At The Luminaria, we do not sell, share, or disclose your personal data to advertisers or third parties for any purpose. We take data privacy very seriously and only share data in the following limited circumstances:
- Payment Processing: We use secure, GDPR-compliant third-party payment processors to handle financial transactions. These processors are responsible for safeguarding your payment information, and we do not store any financial data on our systems.
- Legal Obligations: We may disclose personal data if required to comply with applicable laws, regulations, or legal processes (e.g., court orders).
- Delivery of Services: We ensure that any third-party service providers we work with to deliver the services you agreed to are carefully vetted and comply with GDPR and other relevant data protection laws. Examples are (but not limited to):
- Groundhogg CRM: Used to manage member communications and workflows. Data is stored securely and only accessible to authorized team members.
- Zoho (CRM and other apps)
- BuddyBoss and WordPress: Used to power our membership platform and website. These tools are configured to prioritize data security and privacy.
- Beyond these specific cases, your data remains private and secure within our organization.
6. Data Retention
We retain your data only as long as necessary to fulfill the purposes outlined in this policy. Inactive accounts and data may be anonymized or deleted after 1 year.
7. Data Security
We use password protection, encryption, and secure third-party services to protect your data. Access to personal data is limited to authorized personnel only.
8. Future Plans
As we integrate AI tools to support our mission, we will ensure that all data used is anonymized to the greatest extent possible. Any new data collection will require explicit consent.