Privacy Policy

Lumraa | Effective date: March 24, 2026 | Last updated: March 24, 2026

      This Privacy Policy explains how Lumraa ("we", "our", or "us") collects, uses, and shares information when you use the Lumraa mobile application ("App"). Please read it carefully.
    

1. Who We Are

Lumraa is a daily anonymous poll application. We are committed to protecting your privacy. Because the App is designed around anonymity, we collect as little data as possible.

2. Information We Collect

Automatically collected (no consent required):

Anonymous device identifier (UUID): A randomly generated identifier created on your device the first time you open the App. It is stored locally on your device and transmitted to our servers solely to prevent duplicate responses. It is not linked to your name, email, phone number, IP address, or any other personally identifiable information.
Poll responses: Your yes/no answer to each daily question, along with the timestamp of submission.

Collected only if you explicitly opt in:

Birth year (we derive an age group; your exact birth year is not published)
Gender
Occupation category
Salary range (broad band, e.g. "30k–60k")
City type (rural / small / metro)
Country (ISO two-letter code)

We do not collect your name, email address, phone number, IP address, precise location, or device fingerprint.

3. How We Use Your Information

To display aggregated poll results within the App.
To generate anonymized statistical insights (e.g., how different demographic groups responded).
To improve the App and develop new features.
To share or license aggregated and/or anonymized data with third-party partners, as described in Section 4.

4. How We Share Your Information

Aggregate response data (all users): We may share, license, or sell aggregated, non-attributed poll results (e.g., "72% of respondents said Yes") with third parties including brands, researchers, and advertisers. This data contains no UUID, no demographic breakdown, and no information that can identify any individual. Truly anonymised, aggregated statistics of this kind fall outside the scope of the EU General Data Protection Regulation (GDPR) pursuant to Recital 26 thereof.

Demographic breakdown data (opt-in users only): If you have enabled the data-sharing toggle, we may share, license, or sell anonymised demographic breakdowns (e.g., "80% of 25–34 year-olds said Yes") with third parties for analytical, marketing, or research purposes. This data is aggregated at the group level and does not include your UUID, your individual answer, or any direct or indirect identifier. We apply technical safeguards to ensure these datasets cannot be re-linked to any individual. Our lawful basis for this processing is our legitimate interests in operating and sustaining the service (Article 6(1)(f) GDPR), balanced against the negligible privacy impact of fully anonymised, group-level data.

We may also disclose information if required by law or to protect our legal rights.

5. Your Choices & Controls

Opt-in demographic sharing: You can enable or disable the data-sharing toggle at any time in App settings. Disabling it stops future demographic data from being included in shared data products; it does not affect historical aggregated records.
Stopping data collection entirely: Because we hold no data linked to your real identity, we cannot selectively delete your records on request. To stop all data collection, uninstall the App. Reinstalling generates a fresh UUID with no connection to prior data.

6. Data Retention

We retain anonymized response data indefinitely for statistical and analytical purposes. Demographic data associated with your UUID is excluded from future data products as soon as you disable the data-sharing toggle, but historical aggregated records (which cannot identify you) may be retained.

7. Security

We implement reasonable technical and organisational measures to protect data in our systems. However, no method of electronic storage or transmission is completely secure. We cannot guarantee absolute security.

8. Children's Privacy

The App is not directed at children under the age of 16. We do not knowingly collect data from children under 16. The age of 16 aligns with the minimum age for valid data-processing consent under the EU General Data Protection Regulation (GDPR) and we apply this standard globally. If you believe a child under 16 has used the App, please contact us and we will take appropriate action.

9. International Transfers

Your data may be stored and processed in countries other than your own. By using the App you consent to the transfer of information to countries that may have different data protection rules than your country.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will update the "Last updated" date above. Continued use of the App after any change constitutes your acceptance of the revised Policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us within the App.