Privacy Policy
Last updated: February 12, 2026
Lumme ("we," "our," or "us") is built with a "Privacy-First" architecture. We do not create a user account for you, nor do we store your photos or personal data on our own servers.
Your color analysis data and photos stay 100% on your own device.
1. Information We Collect
A. No User Accounts
We do not require you to register, sign in, or provide an email address. We do not maintain a database of user profiles.
B. Your Images & AI Analysis
- Local Storage: All photos you take and your color analysis results are stored locally on your device.
- Private Cloud Processing: To analyze your skin tone and determine your color season, the App sends your face photo to our AI partner, Google Gemini. For outfit analysis, your outfit photo is sent similarly.
- Strict Privacy: We utilize the Paid Enterprise Tier of the Gemini API. This means your images are processed securely, are NOT used to train Google's AI models, and are discarded after analysis.
- No Human Review: Because we use the paid tier, your photos are not subject to human review by Google.
C. Usage Data (Anonymized)
We collect anonymous, aggregate statistics through Firebase Crashlytics (e.g., crash reports, device type, OS version). This data helps us fix bugs and improve the App. This information cannot be used to identify you personally and is retained indefinitely for analytics purposes.
2. How We Use Your Information
| Data Type |
Purpose |
Storage Location |
| Face Photos |
To determine your color season via AI analysis. |
Ephemeral (Processed in cloud, then deleted). |
| Outfit Photos |
To evaluate outfit compatibility with your season. |
Ephemeral (Processed in cloud, then deleted). |
| Season & Analysis Data |
To show your color season, palettes, and analysis history. |
Local (Stored only on your phone). |
| Payment Info |
To verify Premium status. |
Store Only (Handled by Apple/Google; we only see a receipt token). |
| Crash & Usage Data |
To fix bugs and improve the App. |
Firebase (Anonymous, retained indefinitely). |
3. Third-Party Services
We use trusted third-party services for specific technical functions.
- Google Gemini (Vertex AI / Paid API): Used for face analysis and outfit evaluation. We pay for the commercial tier to ensure your data remains private and is not used for model training.
- Firebase Crashlytics (Google): Used to collect anonymous crash reports and app performance data to help us identify and fix bugs.
- Apple App Store & Google Play Store: Handles all payments. We never see your credit card information.
- RevenueCat: Used to manage subscriptions and verify premium status across devices. RevenueCat receives an anonymous app user ID and purchase receipt data from Apple or Google. It does not receive your name, email, photos, or any personal information. See RevenueCat's Privacy Policy.
4. Data Security
- No Central Database: We do not operate a central server that stores user images or personal data. This means there is no "master list" of user data for hackers to target.
- Encryption: All data sent between your phone and the AI service is encrypted in transit (HTTPS/TLS).
5. Your Rights (GDPR & CCPA)
Because we do not store your personal data on our servers, we generally cannot "delete" your account because we don't have one to begin with.
- Access & Correction: You can view and edit your data directly inside the App.
- Deletion: To delete your data, simply uninstall the App. Your local data will be erased instantly.
6. Children's Privacy
We do not knowingly collect personal information from children under 13.
7. Changes to This Policy
We may update this policy if our app architecture changes. Continued use of the App implies acceptance of these changes.
8. Contact Us
If you have questions about this policy, please contact us:
Email: support@koduok.com