Privacy Policy
Your Data, Your Rights
Privacy Policy
Last updated: March 2026
1. Overview
LUMEA is committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR) and all applicable international privacy laws. This policy explains what data we collect, why we collect it, and what rights you have. For any privacy-related questions, contact us at support.lumea@gmail.com.
2. Data We Collect
When you place an order
Name, email address, shipping address, billing address, phone number (optional), payment information (processed by Shopify Payments/Stripe/PayPal/Klarna — we never store card details directly).
When you browse our website
IP address, browser type, device type, pages visited, referring URL, and cookies (see Section 6). This data is collected through Shopify analytics, Meta Pixel, and Google Analytics.
When you sign up for our newsletter
Email address. Managed through Klaviyo. You can unsubscribe at any time via the link in every email.
When you contact us
Name, email, and any information you provide in your message.
3. Why We Use Your Data
| Fulfill your order | Legal basis: Contract performance |
| Send order updates | Legal basis: Contract performance |
| Send marketing emails | Legal basis: Your consent (opt-in) |
| Improve our website | Legal basis: Legitimate interest |
| Show relevant ads | Legal basis: Your consent (cookie banner) |
4. Third-Party Services
We share your data only with services necessary to operate our business:
| Shopify | E-commerce platform, hosting, checkout |
| Stripe / PayPal / Klarna | Payment processing |
| Klaviyo | Email marketing |
| Meta (Facebook/Instagram) | Advertising, Pixel tracking |
| Analytics, Google Ads | |
| Shipping carriers | Order delivery (name, address) |
We never sell your personal data to third parties.
5. Your Rights (GDPR)
If you are located in the EU/EEA, you have the following rights:
Right of Access
Request a copy of your data
Right to Rectification
Correct inaccurate data
Right to Erasure
Request deletion of your data
Right to Portability
Receive your data in a standard format
Right to Object
Object to processing for marketing
Right to Withdraw Consent
Withdraw consent at any time
To exercise any of these rights, email us at support.lumea@gmail.com. We will respond within 30 days.
6. Cookies
| Essential | Required for the shop to function (cart, checkout, session). Cannot be disabled. |
| Analytics | Help us understand how visitors use our site. Require your consent. |
| Marketing | Used to show relevant ads (Meta Pixel, TikTok Pixel). Require your consent. |
You can manage your cookie preferences at any time via the cookie banner on our website.
7. Data Retention & Security
We retain order data for as long as necessary to fulfill legal obligations (typically 7 years for tax/accounting). Marketing data is retained until you unsubscribe or request deletion. Browsing data is retained for a maximum of 24 months.
Our website is hosted on Shopify with industry-standard SSL/TLS encryption. All payments are processed by PCI-DSS compliant providers. We never store credit card information.
Questions about your data?
Email us at support.lumea@gmail.com — we respond within 30 days.