Privacy Policy
Lumi Browser Extension by Ellvero Technologies Pvt. Ltd.
Effective date: 12 March 2026 | Last updated: 13 March 2026
1. Introduction
Lumi ("the Extension") is a Chrome browser extension developed and operated by Ellvero Technologies Pvt. Ltd. ("Ellvero", "we", "us", "our"), a company registered in India. This Privacy Policy explains in full detail what data we collect, why we collect it, how we process and store it, how we use it, who we share it with, how long we retain it, and what your rights are. By installing or using Lumi, you agree to this policy.
This policy applies to all users of the Lumi browser extension, the Lumi website (lumi.ellvero.ai), and any associated APIs or services. If you do not agree with this policy, please uninstall the extension and stop using our services.
For questions, contact us at: privacy@ellvero.com
2. Data We Collect, Why We Collect It, and How It Is Used
Below is a comprehensive list of every category of user data that Lumi collects or processes. For each category, we explain what data is collected, why it is collected, how it is used, and how and where it is stored.
2.1 Account & Identity Data (Personally Identifiable Information)
- What: Your Google account email address and display name (obtained via Google OAuth when you sign in), or your email address and name if you sign up with email/password.
- Why collected: To create and identify your Lumi account, authenticate your session, and associate your credit balance and settings with your account.
- How used: Account creation, login authentication, and account recovery only. We do not use your email address for marketing, advertising, or any purpose unrelated to providing the Lumi service.
- How stored: Stored in Ellvero's secured backend database (Supabase/PostgreSQL, hosted on AWS in the US). Encrypted at rest using AES-256. Transmitted over HTTPS/TLS 1.3.
2.2 Authentication Tokens & Credentials
- What: OAuth 2.0 access tokens issued by Google upon sign-in, or session JWT tokens issued by Supabase for email/password authentication.
- Why collected: Required to verify your identity across browser sessions without requiring you to re-enter your password each time.
- How used: Session authentication only. Tokens are short-lived (expire within hours) and refreshed automatically. We never store your Google password or OAuth refresh tokens on our servers.
- How stored: Stored locally on your device in Chrome's extension storage (chrome.storage.local). A server-side session token is held in Ellvero's backend (Upstash Redis, encrypted at rest) for session validation. All transmissions use HTTPS/TLS 1.3.
2.3 Website Content (Active Page Content)
- What: Text content, page title, and URL of the browser tab you are actively viewing at the moment you trigger an AI action (e.g. Summarise, Explain, Rewrite, Reply).
- Why collected: Required to generate context-aware AI responses. For example, if you ask Lumi to summarise a page, the page text must be sent to our backend for AI processing.
- How used: Transmitted to Ellvero's backend server over HTTPS/TLS 1.3, then forwarded to the relevant AI provider (Anthropic, OpenAI, or Google) solely to fulfill the AI request you initiated. Immediately discarded after the response is returned. Never stored, cached, indexed, logged, or used for any other purpose.
- When collected: Only when you explicitly trigger an action (e.g. clicking Summarise, Rewrite, Explain, or Reply in the Lumi sidebar). Never collected passively, in the background, or without your explicit action.
2.4 Selected Text
- What: Text you manually highlight on a webpage before triggering a Lumi action.
- Why collected: To process your specific AI request (e.g. rewriting, explaining, or translating the selected passage).
- How used: Sent to Ellvero's backend over HTTPS/TLS 1.3, then forwarded to the relevant AI provider for processing. Discarded immediately after response delivery. Never stored.
2.5 User Preferences & Settings
- What: Your chosen tone style (Concise / Detailed / Friendly), onboarding responses, and UI preferences.
- Why collected: To personalise AI responses to match your communication style and improve your user experience.
- How stored: Stored locally on your device in Chrome's extension storage (IndexedDB). Not transmitted to any server unless you explicitly enable cloud sync in Settings (disabled by default).
2.6 Memory Profile (User-Generated Content)
- What: Information you voluntarily provide about yourself: your role, goals, interests, and expertise level.
- Why collected: To allow Lumi to personalise responses over time based on your context.
- How stored: Stored locally on your device (IndexedDB, encrypted with AES-256) by default. Never uploaded to Ellvero's servers unless you explicitly enable cloud sync in Settings.
- Your control: You can view, edit, or delete any memory data at any time from the Memory section of the extension. Uninstalling the extension permanently deletes all locally stored data.
2.7 AI Action Usage Data
- What: A log of AI actions you have taken: action type (e.g. "summarise"), credit cost, and timestamp. Does NOT include the content of the page, your message, or the AI response.
- Why collected: Required for credit balance tracking, billing accuracy, and aggregated usage analytics.
- How stored: Stored on Ellvero's secured backend database (Supabase/PostgreSQL). Encrypted at rest (AES-256). Transmitted over HTTPS/TLS 1.3. Retained for 24 months for billing dispute resolution, then permanently deleted.
2.8 Credit Balance & Financial/Payment Information
- What: Your current credit balance, top-up history, transaction amounts, and transaction timestamps.
- Why collected: Required to operate the credit-based billing system and process purchases.
- How stored: Credit balance and transaction records are stored on Ellvero's backend database (encrypted at rest). Payment processing is handled entirely by our third-party payment processors (Cashfree for USD transactions). Ellvero never receives, processes, or stores your credit/debit card number, CVV, UPI ID, bank account details, or any full payment credentials. All payment data is handled directly by the payment processor in a PCI-DSS compliant environment.
2.9 Device & Technical Data
- What: Browser version (e.g. "Chrome 122"), extension version (e.g. "1.0.0"), operating system, and error stack traces when crashes occur.
- Why collected: For debugging, error monitoring, and maintaining service reliability.
- How stored: Error data is sent to Sentry (see Third Parties section). Data is aggregated and anonymised. Error reports are NOT linked to individual user identities, email addresses, or account information.
3. Data We Do NOT Collect
We explicitly do not collect any of the following:
- Your browsing history or a list of websites you visit
- Page content from any tab you have not explicitly interacted with via Lumi
- Passwords, form inputs, keystrokes, or autofill data
- Health, medical, or biometric information
- Precise GPS location or coarse location data
- Personal communications (emails, chat messages, social media messages) unless you explicitly select text and trigger a Lumi action on it
- Contact lists or address books
- Photos, videos, or audio recordings
- Data from other browser extensions
- Cookies from websites you visit
4. How We Use Your Data
We use your data exclusively for the following purposes:
- Providing the Lumi service: Processing your AI requests (summarise, rewrite, explain, reply) by forwarding relevant page content or selected text to AI providers.
- Authentication: Verifying your identity when you sign in with Google or email/password.
- Billing: Tracking your credit balance and processing credit purchases.
- Personalisation: Using your locally-stored tone preference and memory profile to tailor AI responses.
- Error monitoring: Identifying and fixing bugs to maintain service reliability.
- Aggregated analytics: Understanding which features are used most to improve the product (anonymised, no PII).
We do not use your data for advertising, ad targeting, user profiling for third parties, data brokering, or any purpose not listed above.
5. All Third Parties We Share Data With
The following is a complete and exhaustive list of every third party that receives any user data from Lumi. No other parties receive any user data.
| Third Party | Data Shared | Purpose | Privacy Policy |
|---|---|---|---|
| Anthropic (Claude API) | Page content or selected text you explicitly send for AI processing | AI response generation (writing, summarising) | anthropic.com/privacy |
| OpenAI (GPT API) | Page content or selected text you explicitly send for AI processing | AI response generation (creative tasks) | openai.com/privacy |
| Google (Gemini API) | Page content or selected text you explicitly send for AI processing | AI response generation (research tasks) | policies.google.com/privacy |
| Google (OAuth 2.0) | OAuth token exchange; Google returns your email and display name to us | User authentication and account creation | policies.google.com/privacy |
| Supabase (hosted on AWS) | Email address, hashed password, usage logs, credit balance, transaction records | Backend database and authentication hosting | supabase.com/privacy |
| Upstash Redis | Session tokens (short-lived, no PII) | Session caching and rate limiting | upstash.com/trust/privacy |
| Cashfree Payments | Name, email, and payment details you enter at checkout | Payment processing (USD transactions) | cashfree.com/privacy-policy |
| Sentry | Anonymised error logs, browser version, extension version | Error monitoring and crash reporting | sentry.io/privacy |
| Vercel | Server-side request logs (IP addresses, request metadata) | Website and backend API hosting infrastructure | vercel.com/legal/privacy-policy |
We do not sell, rent, or trade user data to any third party under any circumstances. We do not share user data with advertisers, data brokers, information resellers, or marketing platforms. Data is shared with the above parties only as necessary to provide the Lumi service.
6. Conditions for Data Sharing & Transfer
We only share or transfer user data with third parties under the following circumstances:
- To provide the service: As described in Section 5, data is shared with AI providers and infrastructure partners solely to fulfill your requests.
- Legal compliance: If required by law, court order, subpoena, or governmental authority. We will notify you of such requests where legally permitted.
- Security: If necessary to investigate abuse, fraud, or security incidents.
- Business transfer: In the event of a merger, acquisition, or sale of assets, user data may be transferred to the successor entity. You will be notified via email and/or a prominent notice in the extension at least 30 days before any such transfer.
All other transfers of user data are prohibited.
7. Data Security Practices
We implement the following security measures to protect your data:
- Encryption in transit: All data transmitted between the extension and our servers, and between our servers and third-party providers, uses HTTPS with TLS 1.3 encryption. No data is ever transmitted over unencrypted connections.
- Encryption at rest: All data stored on our backend servers (Supabase/PostgreSQL) is encrypted at rest using AES-256. Local data stored in the extension uses Chrome's built-in encrypted storage APIs.
- Access control: Backend database access is restricted to authorised Ellvero personnel using multi-factor authentication and role-based access controls.
- No plain-text storage of sensitive data: Passwords are hashed using bcrypt. Authentication tokens are short-lived. We never store payment card details.
- Content not retained: Page content and selected text sent for AI processing are processed in-memory and immediately discarded. They are never written to disk, database, or log files on our servers.
8. Data Retention
The following table describes exactly how long each type of data is retained:
| Data Type | Retention Period | Deletion Method |
|---|---|---|
| Account email & name | Until you delete your account | Permanent deletion from all systems within 30 days |
| Authentication tokens (local) | Until expiry or logout | Automatically cleared from device |
| Authentication tokens (server) | 24 hours maximum | Automatically expired and purged from Redis |
| Page content & selected text | Never stored — processed in memory, discarded immediately | Not applicable (never persisted) |
| Memory profile (local) | Until you delete it or uninstall the extension | Cleared from browser storage on uninstall |
| User preferences (local) | Until you delete them or uninstall | Cleared from browser storage on uninstall |
| AI action usage logs | 24 months | Permanently deleted via automated scheduled job |
| Credit & transaction records | 5 years (legal/financial compliance) | Permanently deleted after retention period |
| Error logs (Sentry) | 90 days | Automatically purged by Sentry |
9. Your Rights
You have the following rights regarding your data:
- Right to access: You can request a copy of all data Ellvero holds about you.
- Right to deletion: You can request deletion of your account and all associated data by emailing privacy@ellvero.com. We will delete all your data from our servers within 30 days (except where retention is required by law).
- Right to data portability: You can request an export of your memory profile, usage history, and account data in a machine-readable format.
- Right to withdraw consent: You can withdraw consent for data processing at any time by uninstalling the extension and requesting account deletion.
- Right to opt out of analytics: You can disable anonymised analytics at any time via the extension's Settings panel.
- Right to local data control: All locally stored data (memory profile, preferences, conversation history) is permanently deleted when you uninstall the extension.
All requests are acknowledged within 7 days and fulfilled within 30 days. Contact privacy@ellvero.com to exercise any of these rights.
10. Chrome Web Store Limited Use Disclosure
Lumi's use of information received from Chrome APIs adheres to the Chrome Web Store User Data Policy, including the Limited Use requirements. Specifically:
- Allowed use: Lumi only uses Chrome permissions (activeTab, storage, identity, scripting, sidePanel, tabs, contextMenus, alarms) to provide user-facing features described in the Chrome Web Store listing and the extension's user interface. No permissions are used for purposes unrelated to the product's functionality.
- Allowed transfer: User data is only transferred to third parties as necessary to provide the Lumi service (AI processing, authentication, payment processing, error monitoring). No data is transferred for advertising, data brokering, or any unrelated purpose.
- No advertising: User data is never used for personalised advertising, retargeting, or interest-based advertising.
- No human reading: No Ellvero employee reads individual user content (page content, selected text, or memory profiles) except where the user explicitly consents for technical support, or where required for security investigation or legal compliance.
11. Permissions We Request & Why
| Permission | Why Required |
|---|---|
| activeTab | Read the content of the current tab when you trigger an AI action |
| storage | Store your authentication state, preferences, and memory profile locally |
| identity | Enable "Sign in with Google" authentication flow |
| sidePanel | Display the Lumi sidebar interface |
| tabs | Detect tab changes to update the sidebar context for the active page |
| contextMenus | Provide right-click menu options for quick AI actions on selected text |
| scripting | Dynamically register content scripts for text selection and page content extraction |
| alarms | Schedule periodic credit balance syncs and session token refreshes |
| host_permissions: lumi.backend.ellvero.ai | Communicate with the Lumi backend API for authentication, AI processing, and billing |
12. Children's Privacy
Lumi is not intended for users under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact privacy@ellvero.com and we will delete it immediately.
13. International Data Transfers
Ellvero is based in India. Your data may be processed and stored in the United States (where our infrastructure providers Supabase, Vercel, and AI providers are hosted). By using Lumi, you consent to the transfer of your data to these jurisdictions. We ensure that all transfers are protected by appropriate security measures (HTTPS/TLS 1.3, encrypted storage) as described in Section 7.
14. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify users of material changes via an in-extension notification at least 14 days before the change takes effect. The "Last updated" date at the top of this page will be revised. Continued use of the extension after the effective date constitutes acceptance of the updated policy. If you do not agree with the changes, you may uninstall the extension and request account deletion.
15. Contact
Ellvero Technologies Pvt. Ltd.
Privacy email: privacy@ellvero.com
General support: support@ellvero.com
Website: lumi.ellvero.ai