Privacy Policy

1. INTRODUCTION

Storage Facility AI, LLC DBA Lumio Storage ("Lumio Storage," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI voice agent services designed for self-storage facilities.

This Privacy Policy applies to our website, services, and any related applications or platforms. By using our services, you consent to the data practices described in this Privacy Policy.

2. INFORMATION WE COLLECT

2.1 Account Information

When you register for our services, we collect:

• Business name and contact information
• Email address and phone number
• Payment information (processed through Stripe)
• Website URL and facility details
• User account credentials

2.2 Call Data

Through our AI voice agent services, we collect:

• Audio recordings of phone calls
• Call transcripts and summaries
• Call metadata (date, time, duration, caller number)
• AI-generated insights and categorizations
• SMS delivery confirmations and responses

2.3 Website Content

Our automated systems collect:

• Publicly available content from your website
• Pricing information and unit availability
• Facility amenities and contact details
• Any content you specifically upload or provide

2.4 Usage Data

We automatically collect:

• Service usage statistics
• Dashboard interactions and preferences
• Technical logs and performance data
• Device and browser information

2.5 Communications

We collect information from:

• Customer support interactions
• Feedback and testimonials you provide
• Email communications with our team

3. HOW WE USE YOUR INFORMATION

3.1 Service Provision

We use your information to:

• Operate our AI voice agent services
• Process and respond to customer calls
• Generate call transcripts and summaries
• Send SMS links with appropriate consent
• Provide dashboard analytics and reporting
• Process payments and manage subscriptions

3.2 Service Improvement

We use aggregated and anonymized data to:

• Improve our AI models and algorithms
• Enhance service features and functionality
• Analyze usage patterns and trends
• Develop new service offerings

3.3 Communication

We use your contact information to:

• Send service-related notifications
• Provide customer support
• Share important updates about our services
• Send marketing communications (with consent)

3.4 Legal and Business Purposes

We may use information to:

• Comply with legal obligations
• Protect our rights and interests
• Prevent fraud and abuse
• Facilitate business transfers or acquisitions

4. INFORMATION SHARING AND DISCLOSURE

4.1 Service Providers

We may share information with trusted third-party service providers who assist us in:

• Payment processing (Stripe)
• Cloud hosting and data storage
• Customer support services
• Analytics and monitoring

All service providers are bound by confidentiality agreements and may only use your information to provide services to us.

4.2 Legal Requirements

We may disclose your information when required by law or when we believe disclosure is necessary to:

• Comply with legal processes or government requests
• Protect our rights, property, or safety
• Protect the rights, property, or safety of others
• Investigate fraud or security issues

4.3 Business Transfers

In the event of a merger, acquisition, or sale of our business, your information may be transferred to the acquiring entity.

4.4 Consent

We may share your information with your explicit consent for specific purposes not covered in this policy.

4.5 Anonymized Data

We may share or publish aggregated, anonymized data that cannot be used to identify you or your business.

5. DATA RETENTION

5.3 Account Data

• Account information is retained while your account is active
• After account termination, we retain certain information as required by law or legitimate business interests

5.4 Payment Information

• Payment details are processed and stored by Stripe according to their retention policies
• We do not store complete credit card information on our servers

6. DATA SECURITY

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication measures
• Employee training on data protection
• Secure data centers and infrastructure

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

7. YOUR RIGHTS AND CHOICES

7.1 Access and Correction

You may access and update your account information through your dashboard or by contacting us.

7.2 Data Deletion

7.3 Marketing Communications

You may opt out of marketing communications by:

• Following unsubscribe instructions in emails
• Updating your preferences in your account dashboard
• Contacting us directly

7.4 SMS Communications

For SMS communications sent by our AI agent:

• Our AI agent obtains explicit verbal consent from callers during the phone conversation before sending any SMS messages (e.g., "Would you like me to text you a link to our website?")
• Recipients may opt out by replying "STOP"
• We comply with all applicable SMS regulations

8. REGIONAL PRIVACY RIGHTS

8.1 California Residents (CCPA)

California residents have additional rights including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale of personal information
• Right to non-discrimination for exercising privacy rights

8.2 European Union Residents (GDPR)

EU residents have rights including:

• Right of access to personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

To exercise these rights, contact us at support@lumiostorage.com.

9. INTERNATIONAL DATA TRANSFERS

Our services are provided from the United States. If you are accessing our services from outside the US, your information may be transferred to, stored, and processed in the United States. We ensure appropriate safeguards are in place for international transfers.

10. CHILDREN'S PRIVACY

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it.

11. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending email notification to registered users
• Providing notice through our services

Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

12. THIRD-PARTY LINKS AND SERVICES

Our services may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to such third parties. We encourage you to review their privacy policies.

13. CONTACT INFORMATION

For questions about this Privacy Policy, to exercise your rights, or to report privacy concerns, contact us at:

For EU residents, you may also contact your local data protection authority if you believe your rights have been violated.

14. EFFECTIVE DATE

This Privacy Policy is effective as of 5/30/2025 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.