Data Usage Policy

This Data Usage Policy explains how LumiBooks handles all information about your reading, account, and usage of our website and app.

1. Data Types Collected

1.1 Essential Account Data

• Full name, email, encrypted password
• Profile avatar (if you upload one)
• Date of registration and settings preferences

1.2 Reading Data

• Books purchased, downloaded, or added to wishlist
• Bookmarks, highlights, and notes
• Book ratings, reviews, last-read position
• Total reading time by book
• Genre and subject preferences

1.3 Usage Data

• Pages visited on website/app, interactions
• Clicks, search queries, browsing paths
• Device type, OS, app version, browser, IP address
• Crash logs and error reports for troubleshooting

1.4 Payment & Purchase Data

• Transaction records (books, credits, bundles), payment method (never full card details), order status
• Total credits/coins balance and usage logs

1.5 Communication & Support

• Support requests and messages
• Marketing opt-in/out and notification preferences

2. Why We Use Your Data

• Authenticate you and keep your account secure
• Sync your data, books, purchases, and preferences across devices
• Personalize discovery and recommendations
• Analyze aggregated usage to improve features, design, and performance
• Prevent fraud and manage security risks
• Comply with applicable law and respond to legal requests

3. Data Retention

• Account, purchase, and reading data is maintained while your account is active
• Deleted accounts are purged within 30-90 days except for necessary transaction/legal/log entries
• Aggregated/anonymized statistics may be kept for app improvement

4. Security Measures

• Encryption in transit (HTTPS/SSL everywhere) and at rest when possible
• Access controls and role-based privileges for staff
• Annual vulnerability and security reviews
• Records of all access/modification to user data

5. Sharing and Third Parties

• Essential partners: payment processors, hosting/cloud, analytics, email delivery
• No data is sold to third-party marketers
• Legal disclosure: only when required by valid court order, subpoena, or similar request

6. Your Choices

• Download/export all your data from your profile
• Delete account to erase personal and usage info (except where legal retention applies)
• Opt-out of analytics tracking from your account dashboard
• Disable marketing messages at any time
• Contact us for custom removal or questions

7. Compliance and Contacts

• We comply with GDPR, CCPA, and related privacy regulations
• Report any data concerns to our Data Protection Officer
• Contact: data@lumibooks.com

LumiBooks, Data Protection Team, 123 Reading Ave, Book City, BC 12345