Privacy Policy

Last updated: March 16, 2026

Definitions and Scope

This Privacy Policy applies to all personal data processed by Lunaris Software ("we", "us", "our") via our website, products, and services, regardless of user location. "Personal data" means any information relating to an identified or identifiable individual, as defined by applicable law.

1. Information We Collect

• Personal Data: Name, email, phone, company, job title, address, account credentials, payment info, and any data you provide.
• Usage Data: IP, device, browser, OS, referring URLs, session data, clickstream, and diagnostic logs.
• Cookies & Tracking: Cookies, beacons, pixels, tags, analytics, advertising IDs, and similar technologies.
• Third-Party Data: Data from partners, social media, analytics, and advertising networks, as permitted by law.
• Special Categories: We do not intentionally collect sensitive data (e.g., health, race, religion) unless required by law or with explicit consent.

2. Lawful Bases for Processing

• Consent (where required)
• Performance of a contract
• Legal obligation
• Vital interests
• Legitimate interests (e.g., security, analytics, marketing, service improvement)

3. How We Use Your Information

• To provide, operate, and maintain our website, products, and services
• To personalize and improve your experience
• To communicate (support, marketing, legal notices)
• To process payments and transactions
• To detect, prevent, and address fraud, abuse, and security issues
• To comply with legal and regulatory requirements
• To enforce our terms and policies
• For research, analytics, and product development
• For automated decision-making and profiling (where applicable, with safeguards)

4. Automated Decision-Making & Profiling

We may use automated systems to analyze data and make decisions (e.g., for fraud detection, personalization, or marketing). You have the right to request human intervention, express your point of view, and contest decisions, as required by law.

5. How We Share Your Information

• With service providers, subprocessors, and vendors under contract
• With affiliates, subsidiaries, and business partners
• With analytics, advertising, and social media partners (subject to your choices)
• With authorities, regulators, or courts as required by law or to protect rights
• In connection with mergers, acquisitions, or asset sales (with notice to you)

6. International Data Transfers

We transfer data globally, including to countries without equivalent data protection laws. We use Standard Contractual Clauses, adequacy decisions, and other safeguards to protect your data as required by GDPR, UK GDPR, and other laws.

7. Data Retention & Minimization

We retain personal data only as long as necessary for the purposes described, or as required by law. Data is regularly reviewed, anonymized, or deleted when no longer needed. We minimize data collection and limit processing to what is necessary.

8. Data Subject Rights

• Access your data
• Rectify inaccurate or incomplete data
• Erase your data ("right to be forgotten")
• Restrict or object to processing
• Data portability
• Withdraw consent at any time (where processing is based on consent)
• Opt-out of marketing and profiling
• Lodge a complaint with a supervisory authority

To exercise your rights, email info@lunarissoftware.com. We may require identity verification. We respond within legal timeframes (usually 30 days).

9. Data Protection Officer (DPO) & Contact

We have appointed a Data Protection Officer. For privacy questions or complaints, contact our DPO at info@lunarissoftware.com.

10. Data Breach Notification

In the event of a data breach, we will notify affected individuals and regulators as required by law, without undue delay, and provide information on mitigation steps.

11. Cookies & Tracking Technologies

We use cookies and similar technologies for website functionality, analytics, advertising, and personalization. You can manage cookies via browser settings or opt-out mechanisms. For details, see our Cookie Policy.

12. Analytics, Advertising & Third-Party Services

We use analytics (e.g., Google Analytics), advertising networks, and social media plugins. These third parties may collect data about your use of our site, subject to their own privacy policies. We review vendors for compliance and require data protection agreements.

13. Security Measures & Certifications

We implement technical and organizational security measures (encryption, access controls, audits, staff training, etc.) and may hold certifications (e.g., ISO 27001) to protect your data. No system is 100% secure, but we strive for industry best practices.

14. Employee & Contractor Privacy

All employees and contractors are subject to confidentiality agreements and receive privacy and security training. Access to personal data is limited to those who need it for their role.

15. Children’s Privacy

Our services are not directed to children under 16. We do not knowingly collect data from children. If you believe a child has provided us data, contact us for prompt removal.

16. Do Not Track & Global Privacy Controls

We honor browser-based privacy controls where required by law. You may use browser settings or global privacy controls to manage your privacy preferences.

17. Jurisdiction-Specific Disclosures

• EU/EEA & UK: GDPR and UK GDPR apply. Supervisory authority: Data Protection Authority in your country.
• California: CCPA/CPRA rights apply. You may designate an authorized agent to make requests on your behalf.
• Canada: PIPEDA applies. Contact the Office of the Privacy Commissioner of Canada for complaints.
• Australia: Australian Privacy Act applies. Contact the OAIC for complaints.
• Other Regions: We comply with local laws as required.

18. Changes & Versioning

We may update this policy at any time. Material changes will be notified via our website or by email. The latest version is always available on this page. Previous versions are available upon request.

19. Complaints & Dispute Resolution

If you have concerns about our privacy practices, contact us first. If unresolved, you may contact your local data protection authority or seek judicial remedy as provided by law.

20. Contact

If you have questions, requests, or complaints regarding this Privacy Policy or our data practices, contact our DPO at info@lunarissoftware.com.

16. Do Not Track & Global Privacy Controls

We honor browser-based privacy controls where required by law. You may use browser settings or global privacy controls to manage your privacy preferences.

17. Jurisdiction-Specific Disclosures

• EU/EEA & UK: GDPR and UK GDPR apply. Supervisory authority: Data Protection Authority in your country.
• California: CCPA/CPRA rights apply. You may designate an authorized agent to make requests on your behalf.
• Canada: PIPEDA applies. Contact the Office of the Privacy Commissioner of Canada for complaints.
• Australia: Australian Privacy Act applies. Contact the OAIC for complaints.
• Other Regions: We comply with local laws as required.

18. Changes & Versioning

We may update this policy at any time. Material changes will be notified via our website or by email. The latest version is always available on this page. Previous versions are available upon request.

19. Complaints & Dispute Resolution

If you have concerns about our privacy practices, contact us first. If unresolved, you may contact your local data protection authority or seek judicial remedy as provided by law.

20. Contact

If you have questions, requests, or complaints regarding this Privacy Policy or our data practices, contact our DPO at info@lunarissoftware.com.