Privacy Policy
Last updated: July 2, 2026
Service operator
- Legal entity
- Lumnipay LLC
- Registration number (Wyoming Entity ID)
- 2026-001905944
- EIN (Tax ID)
- 98-1922038
- Registered address
- 5830 E 2nd St, Ste 7000 #33557, Casper, Wyoming 82609, USA
- Contact
- admin@lumnipay.com
1. Who we are
LumniPay is a payment orchestration platform operated by Lumnipay LLC, a limited liability company registered in Wyoming, USA (registration number 2026-001905944), with its registered address at 5830 E 2nd St, Ste 7000 #33557, Casper, Wyoming 82609, USA (referred to as "LumniPay", "we", "us" or "our").
This Privacy Policy explains how we collect, use, share and protect personal data when you visit https://lumnipay.com, use the LumniPay dashboard, or make a purchase through a checkout page powered by LumniPay.
For any privacy-related question or request, you can reach us at admin@lumnipay.com.
2. Our role: controller and processor
LumniPay provides payment infrastructure to online merchants. Depending on the context, we act in two different capacities:
- •As a data controller for the personal data of visitors to our website and of the merchants who create and manage a LumniPay account.
- •As a data processor for the personal data of end customers who pay through a checkout page operated on behalf of one of our merchants. In that case, the merchant is the data controller and their own privacy policy also applies.
3. Personal data we collect
We collect the following categories of personal data:
- •Merchant account data — name, email address, password (stored hashed), company details, store URLs and configuration settings provided when registering or using the dashboard.
- •End-customer checkout data — name, email address, billing and shipping address, phone number, order contents and transaction amount, collected when a purchase is made through a LumniPay-powered checkout.
- •Payment data — payment method details are collected and processed by our PCI-DSS certified payment processors. We never store full card numbers or card security codes on our systems; we retain only tokenized references, the payment method type and the last four digits where needed for support and refunds.
- •Technical data — IP address, browser and device information, timestamps and event logs, collected automatically for security, fraud prevention and service reliability.
4. How and why we use personal data
We use personal data for the following purposes, on the corresponding legal bases:
- •To provide the service — creating and managing accounts, processing checkout sessions, routing payments to processors, syncing orders with connected stores (performance of a contract).
- •To secure the service — authentication, fraud detection and prevention, blocking abusive traffic, maintaining audit logs (legitimate interest and legal obligations).
- •To comply with the law — accounting, tax, anti-money-laundering and know-your-customer obligations (legal obligations).
- •To communicate with you — service notifications, support responses and important changes to the service (performance of a contract and legitimate interest).
We do not sell personal data, and we do not use it for third-party advertising.
5. Who we share personal data with
We share personal data only with the parties needed to operate the service:
- •Payment processors selected by the merchant (such as Stripe, PayPal, Mollie, Adyen, Braintree or Checkout.com), to authorize and settle payments.
- •The merchant you purchased from, who receives the order and customer details needed to fulfil your purchase.
- •Infrastructure providers — cloud hosting, database and content-delivery providers that store and serve our systems under strict data processing agreements.
- •Identity verification and compliance providers, when required to meet our regulatory obligations.
- •Public authorities, when we are legally required to do so.
6. International transfers
Our service providers may process data outside your country of residence, including in the United States. Where personal data of individuals in the European Economic Area, the United Kingdom or Switzerland is transferred internationally, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses or an applicable adequacy decision.
7. Data retention
We keep personal data only as long as necessary for the purposes described above: account data for the life of the account and up to the period required afterwards for legal claims; transaction records for the period required by accounting, tax and anti-money-laundering laws; technical logs for a shorter security-relevant period. When data is no longer needed, it is deleted or irreversibly anonymized.
8. Security
We protect personal data with industry-standard measures, including encryption in transit (TLS), encryption at rest, hashed passwords, role-based access controls, network isolation and audit logging. Card data is handled exclusively by PCI-DSS certified processors. No system is perfectly secure; if a breach affecting your data occurs, we will notify you and the competent authorities as required by law.
9. Your rights
Depending on where you live, you may have the right to access, correct, delete or receive a copy of your personal data, to restrict or object to its processing, and to withdraw consent at any time where processing is based on consent.
To exercise these rights, contact us at admin@lumnipay.com. If your data was collected during a purchase from one of our merchants, we may redirect your request to that merchant, who is the data controller. You also have the right to lodge a complaint with your local data protection authority.
10. Cookies
We use only essential cookies: session cookies to keep you signed in to the dashboard and to secure checkout sessions. We do not use advertising or cross-site tracking cookies. You can delete cookies at any time in your browser settings; blocking essential cookies may prevent parts of the service from working.
11. Children
Our services are intended for businesses and adult purchasers. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, contact us and we will delete it.
12. Changes to this policy
We may update this Privacy Policy from time to time. The date at the top of this page indicates when it was last revised. Material changes will be announced on this page or by email to account holders before they take effect.
13. Contact
Lumnipay LLC — 5830 E 2nd St, Ste 7000 #33557, Casper, Wyoming 82609, USA. Registration number: 2026-001905944. Email: admin@lumnipay.com.