We collect only what we absolutely need. We store nothing we are not required to. We never share your data with anyone for commercial purposes. This page explains every data touchpoint — with complete transparency.
We collect only what is strictly necessary to operate the service. No data collected speculatively or for future use.
Your data is never sold, rented, or shared with third parties for commercial or marketing purposes. Ever.
Every data touchpoint is explained on this page. No vague language, no small print designed to obscure.
The table below covers every type of data that passes through LumixAI — what it is, why we collect it, who holds it, and how long it is retained.
| Data type | Why collected | Who holds it | Retention |
|---|---|---|---|
| Name & email address (subscribers) |
To create and manage your subscriber account, send access confirmation, and provide billing notifications | Outseta (our membership platform) | For the duration of your subscription. Deleted on request after cancellation. |
| Email address (free tools & forms) |
To deliver free tool downloads. May be used for LumixAI product updates and useful content in future. You can opt out at any time. | Netlify (form submissions, forwarded to our inbox) | Retained until you unsubscribe or request deletion |
| Payment information | To process your subscription payment | Stripe (payment processor). LumixAI never sees or stores your card details. | Governed by Stripe's data retention policy. LumixAI holds no payment data. |
| Tool inputs (numbers you enter) |
To calculate your analysis in-browser | Your browser only — processed locally. Not transmitted to or stored by LumixAI servers. | Cleared when you close or refresh the page |
| Uploaded documents (Upload & Analyse tool) |
To generate your commercial analysis report | See below — processed via OpenAI API. Not stored by LumixAI. | Not retained after your session ends |
| Site analytics | To understand how the site is used and improve it | Google Analytics (anonymised), Microsoft Clarity (session behaviour — no personal data) | Anonymised aggregates only. No personally identifiable data stored. |
When you use the Upload & Analyse tool or the Full AI Business Report, you upload a document (P&L, management accounts, spreadsheet, etc.) for AI analysis. Here is exactly what happens to that document:
The file content is extracted client-side in your browser session. The original file is not uploaded to LumixAI servers.
The extracted text is sent to OpenAI's API to generate your commercial analysis. LumixAI does not store this content. We are transparent that this means the content passes through OpenAI's systems under their standard API terms.
Under OpenAI's standard API terms, inputs are not used to train AI models. OpenAI may retain API inputs for up to 30 days for safety and abuse monitoring, after which they are deleted. This is OpenAI's published policy — we state it plainly so you can make an informed decision about what you upload.
Once you receive your analysis and close or navigate away from the page, no data from your session is retained anywhere by LumixAI. The analysis exists only in your browser until you close it or download the PDF.
Given that uploaded content passes through OpenAI's systems, we recommend removing personally identifiable information from documents before uploading — customer names, employee names, bank account numbers, and similar details are not needed for the commercial analysis. The tool works on financial structures and ratios, not personal details. Anonymising your numbers takes two minutes and means your analysis is based entirely on commercial data with no personal information involved.
LumixAI uses a small number of carefully chosen third-party services to operate. Each is listed below with its role and a link to its own privacy policy.
| Service | Role | Data it receives |
|---|---|---|
| Outseta | Subscriber account management, authentication, billing | Name, email, subscription status. Privacy policy → |
| Stripe | Payment processing | Payment card details and billing information. LumixAI does not receive or store card data. Privacy policy → |
| OpenAI | AI analysis for Upload & Analyse and AI Report tools | Document text content sent via API for analysis. Not used for model training. Retained up to 30 days for safety monitoring per OpenAI standard API terms. API data policy → |
| Netlify | Website hosting and form handling | Form submissions (email addresses). Standard server access logs. Privacy policy → |
| Google Analytics | Anonymised site usage analytics | Anonymised page views and session data. No personally identifiable data. Privacy policy → |
| Microsoft Clarity | Session behaviour analytics (heatmaps, scroll depth) | Anonymised interaction data. No personally identifiable data. Privacy policy → |
LumixAI is committed to your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. You have the following rights over your personal data:
Request a copy of the personal data we hold about you at any time.
Ask us to correct any inaccurate or incomplete personal data we hold.
Request that we delete your personal data. We will act within 30 days.
Object to us processing your data for marketing purposes at any time.
Ask us to limit how we use your data while a complaint or query is resolved.
Receive your personal data in a structured, machine-readable format.
To exercise any of these rights, email us at hello@lumixai.co.uk. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
LumixAI uses a small number of cookies. You are asked to accept or decline non-essential cookies when you first visit the site.
You can change your cookie preference at any time by clearing your browser cookies and revisiting the site.
If we make any material change to how we handle your data, we will update this page and notify subscribers by email before the change takes effect. The date at the bottom of this page shows when it was last reviewed.
Email us directly — we will respond within 2 business days.
LumixAI is a trading name of Lane Marketing. Registered in England & Wales. Last reviewed: April 2026.
For formal data protection enquiries write to: LumixAI, North Staffordshire, England.
You can also contact the ICO at ico.org.uk or 0303 123 1113.