Luminara Trust & Legal
ChildrenRetentionTermsSafety
Back to Luminara →
On this pageScopeInformation collectedHow it is usedChildrenService providersRetentionYour choicesSecurityContact

Privacy Policy

Your family’s information, explained clearly.

Effective: July 2, 2026Operator: Luminara
The short version

Luminara does not sell personal information, show third-party advertising, or use information for cross-context behavioral advertising. A grown-up creates and manages the family space. We use information to provide that space, synchronize it across connected devices, keep it safe, and respond to requests.

1. Scope

This policy covers the Luminara website and web application, the Luminara Guardian browser extension, and related support communications (together, the “Services”). It applies to information handled by Luminara. Approved learning websites opened from Luminara have their own privacy practices.

2. Information we collect

Information a grown-up provides

  • Google account information used for grown-up sign-in, such as email address, display name, account identifier, and profile image when supplied by Google.
  • A family name; children’s names or nicknames; profile colors, avatars, and PIN hashes; schedules; approved applications and websites; family settings; and reward preferences.
  • Content entered in the family space, including messages, announcements, custom activities, notes, and family goals.
  • Information included in a support or privacy request.

Information created through use

  • Learning and activity progress, completed schedule items, mission submissions, XP, badges, rewards, and avatar choices.
  • Optional proof photos and message attachments. Images are resized in the browser before storage.
  • Family communications, reactions, friendship settings, timestamps, and review decisions.
  • Device-pairing and family-membership records, anonymous device authentication identifiers, and sign-in session data.

Luminara Guardian information

  • Active time on applications a grown-up allowed, excluding time when the device is idle.
  • Which approved app was opened and the approximate time of day.
  • The domain—not the full page address or page contents—of blocked navigation attempts.
  • Extension status and last-seen timestamps.

The Guardian extension does not intentionally collect keystrokes, passwords, form contents, precise location, microphone audio, or the content of webpages. It needs broad browser permissions to enforce the grown-up’s allow-list for top-level navigation.

Technical information

Our hosting and authentication provider may process IP addresses, browser and device details, request timestamps, diagnostic data, and persistent identifiers needed to deliver, protect, and operate the Services. Luminara does not currently use advertising SDKs or third-party analytics trackers.

3. How we use information

  • Provide child and grown-up spaces and remember family settings.
  • Synchronize authorized family data across connected devices.
  • Authenticate grown-ups, pair devices, and separate family access.
  • Show progress, review work, support family messages, and operate Guardian controls.
  • Maintain reliability, investigate misuse, protect the Services, and comply with law.
  • Respond to support, access, correction, deletion, and privacy requests.

We do not use children’s personal information for targeted advertising, data brokerage, or unrelated profiling.

4. Children’s information and parental control

Luminara is intended to be set up and managed by a parent or legal guardian for children in their family. Children do not create independent cloud accounts. The grown-up chooses what child profile information to provide and controls connected devices, allowed apps, family content, and deletion requests.

Before enabling collection of personal information from a child under 13, a grown-up must review the Children’s Privacy Notice and provide any consent required by applicable law. A parent may review, correct, download where available, or request deletion of a child’s information and may refuse further collection.

5. When information is disclosed

We do not sell personal information. We disclose information only as described below:

  • Within the family: to signed-in grown-ups and connected child devices as needed for family features. Some content, such as messages and reactions, is visible to the intended family participants.
  • Google Firebase: provides hosting, Google sign-in and anonymous device authentication, and Realtime Database storage. Google generally acts as a service provider or processor for customer data under its applicable terms.
  • Legal and safety: if reasonably necessary to comply with law, protect a child or another person, enforce our terms, or investigate security abuse.
  • Business transition: as part of a merger, financing, acquisition, reorganization, or sale, subject to appropriate confidentiality and continued legal protections.

Approved third-party learning sites are not Luminara service providers merely because a grown-up adds or opens them. Their own terms and privacy policies apply.

6. Data retention and deletion

We keep information only for the documented purpose and business need described in our Data Retention Policy. In general, active family information remains available while the grown-up maintains the family space. A verified deletion request is targeted for completion within 30 days, with limited residual copies in protected backups for up to 90 additional days unless law, security, or dispute preservation requires longer.

Removing content in the interface may leave a limited deletion marker so the removal synchronizes across connected devices. Clearing browser data or uninstalling Guardian removes applicable on-device data but does not automatically delete cloud data.

7. Your privacy choices and rights

Depending on where you live, you may have rights to know, access, correct, delete, or obtain a portable copy of personal information; to withdraw consent; to restrict or object to certain processing; and to receive equal service when exercising privacy rights. Luminara does not sell or share personal information for cross-context behavioral advertising, so no sale or sharing opt-out is needed for our current practices.

A parent or guardian may also review a child’s information, request deletion, and refuse further collection or use. Send requests to ava.moonaro@gmail.com. We may verify the requester’s identity and authority using the signed-in grown-up account or other proportionate information. Authorized agents may submit requests where applicable.

8. Security

We use measures designed to protect information, including HTTPS in transit, Firebase encryption at rest for Authentication and Realtime Database, hashed family PINs, Google authentication for grown-up controls, and time-limited device-pairing codes. No system is perfectly secure; do not use Luminara for emergency, medical, financial, or other highly sensitive communications. See Safety & Security for more.

9. International processing

Google states that Firebase Authentication is operated from United States data centers and that other Firebase services may process data in selected or global infrastructure depending on the product configuration. If information is transferred across borders, we rely on applicable contractual and legal safeguards.

10. Changes to this policy

We will update the effective date when this policy changes. If a change materially affects children’s information practices or a consent previously provided, we will provide appropriate notice and obtain new consent when required before applying that change.

11. Contact

Luminara Privacy
ava.moonaro@gmail.com

Parents may use this address for access, correction, deletion, consent withdrawal, or child-safety questions.

© 2026 Luminara
Children’s PrivacyRetentionTermsAll policies