Legal
Lumio App LLC ("we", "us", "our"), a Virginia limited liability company, operates Lumio Personal Finance ("the App") and the website at lumioapp.io ("the Website"). This Privacy Policy explains what information we collect, how we use it, and what rights you have regarding your information when you use Lumio.
Because Lumio is a local-first desktop application with no cloud infrastructure for your financial data, this policy is substantially different from most software privacy policies. We encourage you to read it in full.
By installing or using the App, or by visiting the Website, you agree to the practices described in this Privacy Policy.
Lumio App LLC is a Virginia limited liability company operating Lumio Personal Finance, a desktop personal finance application designed around a privacy-first principle: your financial data stays on your device and we cannot access it.
Lumio is designed around a simple privacy principle: your financial data is yours, it stays on your device, and we cannot access it.
Unlike most financial applications that store your data on remote servers and require account creation, Lumio stores all financial data exclusively in your device's local application storage. There is no account system for your financial data, no cloud sync, no remote database, and no way for us to access your financial information.
This is not a marketing statement. It is a technical reality. We have built the App so that we are architecturally incapable of accessing your financial data.
All data you enter into Lumio, including transaction history, account names and types, debt balances and interest rates, budget amounts, savings goals, property values, net worth accounts, tags, categories, and notes, is stored exclusively in your device's local application storage. This data never leaves your device and is never transmitted to us or any third party.
When you purchase a Lumio license, our license-validation service (hosted on Netlify and operated by Lumio App LLC) stores a record associated with your license key. This record contains:
This record is used solely to (a) deliver your license key to you by email, (b) verify your key when you activate Lumio, and (c) enforce single-device licensing. We do not store, transmit, or have access to any of your financial data. Transactions, account names, balances, budgets, and all other in-app data remain exclusively on your device.
You may request deletion of your license record at any time by emailing info@lumioapp.io. Note that deletion may affect future support requests and re-activation on new devices.
When you use the Backup & Restore feature to export your data, a file is created and saved to a location you choose on your device. You may optionally protect this file with a password using AES-256-GCM encryption. The password you set is never transmitted to or stored by Lumio. It exists only in your device's memory during the encryption or decryption operation and is discarded immediately after. If you forget the password, the backup file cannot be decrypted by anyone, including us.
When you visit lumioapp.io, two third-party services process technical data as part of standard web operation:
We do not use cookies, tracking pixels, or behavioral profiling on the Website.
We do not collect any of the following:
The only information we receive related to the App is the license validation data described in Section 3.2. We use this data solely to:
We do not use license data for marketing, advertising, behavioral profiling, or any purpose beyond what is necessary to operate the licensing system and provide support. Your license key is delivered to your purchase email address through Resend, our email delivery provider, described in Section 6.4. We are not responsible for Stripe's handling of payment data, which is governed by Stripe's own privacy policy available at stripe.com/privacy.
Your App data is stored in your device's local application storage directory:
We strongly recommend enabling full-disk encryption on your device, using a strong device password, enabling the optional App lock feature, and making regular encrypted backups using the Backup & Restore feature.
License purchase and validation records described in Section 3.2 are stored on Netlify infrastructure operated by Lumio App LLC. Access to these records is restricted to Lumio personnel. Records are retained as long as your license is active and for a reasonable period thereafter for support and refund purposes.
We do not operate servers that store your financial data. We cannot access your data, recover it if lost, or provide it to third parties because we do not have it.
Stripe, Inc. processes payments. At the time of purchase, Stripe receives your payment information and email address. Stripe's privacy policy is available at stripe.com/privacy.
Netlify hosts the lumioapp.io website and the license-validation service described in Section 3.2. Netlify processes HTTP requests as part of standard hosting operations, including server access logs. Netlify's privacy policy is available at netlify.com/privacy.
Plausible provides aggregate pageview analytics for the Website. As described in Section 3.4, Plausible is cookieless and does not store IP addresses or build cross-site profiles. Plausible's data policy is available at plausible.io/data-policy.
Resend (Plus Five Five, Inc.) delivers the email containing your license key after a purchase. To send that email, Resend processes the email address you used at checkout. Resend is used only to deliver license key and purchase-related email. It is not used for marketing email, and it does not receive any financial data from the App. Resend's privacy policy is available at resend.com/legal/privacy-policy.
No other third-party services, analytics platforms, advertising networks, or data brokers receive any information in connection with your use of the App or Website.
Although we hold no financial data, we take security seriously. In the event of a security incident affecting your license record data or any other information we hold about you, we will notify affected users without undue delay and, where feasible, within 72 hours of becoming aware of the incident. Notification will be sent to the email address on file for your license and will include information about what occurred, what data was affected, and steps you can take.
We rely on our third-party service providers (Stripe, Netlify, Plausible) to maintain their own security practices and notify us of incidents affecting their infrastructure. We will pass along any such notifications that affect Lumio users.
This privacy policy applies to the Lumio Personal Finance desktop application and the lumioapp.io website. Future versions or companion products, including any potential cloud-based or subscription services, will be governed by their own separate privacy policies and will require explicit opt-in consent from users. Any such new products will be clearly distinguished from the current desktop application and will not affect users who use only the desktop app.
Lumio Personal Finance is not directed at individuals under the age of 18. We do not knowingly collect information from minors. If you believe a minor has used the App, please contact info@lumioapp.io.
Because we do not store your financial data, there is nothing for us to retain or delete on our servers in that category. Your App data exists only on your device and is under your full control.
To delete all App data: uninstall Lumio Personal Finance and manually delete the application data folder at ~/Library/Application Support/Lumio/ (macOS) or %APPDATA%\Lumio\ (Windows).
To request deletion of your license record, contact info@lumioapp.io. To request deletion of payment records held by Stripe, contact us and we will assist with the request.
Because we hold only license validation data and no financial data, your rights regarding personal information are limited in scope. To exercise any applicable rights, contact info@lumioapp.io. We will respond within 30 business days.
We do not sell personal information as defined under the California Consumer Privacy Act. California residents may contact info@lumioapp.io to exercise CCPA rights regarding the limited license validation data we hold.
Virginia residents have rights under the Virginia Consumer Data Protection Act to access, correct, delete, and obtain a copy of personal data we hold about them, as well as to opt out of certain processing. Contact info@lumioapp.io to exercise these rights. We do not sell personal data, do not process personal data for targeted advertising, and do not engage in profiling that produces legal effects.
Residents of states with comprehensive privacy laws (including Colorado, Connecticut, Utah, Texas, and others) may exercise rights granted under their state's laws by contacting info@lumioapp.io. We will respond consistent with applicable state law.
For users in the EEA and UK, our processing of license validation data is based on legitimate interest, specifically the operation of our licensing system. You may contact info@lumioapp.io to exercise your rights including access, rectification, erasure, restriction, portability, and objection to processing.
We may update this Privacy Policy from time to time. Material changes will be communicated through a notice on the Website and, for App users, through a notice in the App when you next open it after changes take effect. The current version is always available at lumioapp.io/privacy and within the App under Settings > About.
We will respond to privacy-related inquiries within 30 business days.