Skip to the content.

Privacy Policy — Lumora

Last updated: April 19, 2026

Lumora (“we”, “us”) is an iOS application that creates personalized AI manifestation stories, meditations, and affirmations. This Privacy Policy explains what data we collect, why we collect it, and how we protect it.

1. Data we collect

1.1 Account data

When you sign in with Apple or Google, we receive your email address and, if provided by the identity provider, your display name. If you sign in anonymously, we assign you a random user ID and collect no personal data.

1.2 Onboarding & profile data

During onboarding you may tell us your name, your goals, your pain points, and your preferred listening time. This data is stored in your own user document and is used exclusively to personalize the content we generate for you.

1.3 User-generated content

1.4 Subscription data

If you purchase a subscription, we receive purchase state (active/expired, plan, expiry date) from Apple via RevenueCat. We do not receive your credit card number or billing address.

1.5 Device & diagnostic data

1.6 What we do NOT collect

2. How we use your data

Purpose Data used
Personalizing your stories & meditations Name, goals, pain points, listening time
Generating audio content Text input you provide (sent to TTS provider)
Keeping your library in sync across devices User ID, story documents, audio URLs
Managing your subscription Purchase state, user ID
Sending local reminder notifications Preferred listening time (processed on-device)
Improving the app Aggregate usage events, crash reports

3. Third-party services

Lumora uses the following processors. Each has its own privacy practices — please review theirs as well:

4. Where your data is stored

Data is stored in Google Cloud Platform (Firebase) in regions determined by Firebase’s multi-region replication. Generated audio is stored in Firebase Storage. Subscription state is held by Apple and RevenueCat (United States).

5. Data retention

6. Your rights

Depending on your location, you may have the right to:

To exercise any of these rights, contact us at support@lumora.app (replace with your real support email).

7. Children’s privacy

Lumora is intended for users aged 13 and older (or the minimum age in your country, whichever is higher). We do not knowingly collect data from children under this age. If you believe a child has provided us with data, contact us and we will delete it.

8. Security

All data in transit is encrypted via TLS. Data at rest in Firebase and Firebase Storage is encrypted at the infrastructure layer. We apply the principle of least privilege — only our backend services and the signed-in user can read their own data.

9. Changes to this policy

If we materially change this policy, we will update the “Last updated” date at the top and, for significant changes, notify you in-app. Continued use of the app after changes means you accept the updated policy.

10. Contact

Questions about this policy or your data?

Email: support@lumora.app Developer: Isa Mercan Country: Turkey