Privacy Policy

Introduction

Luwisa ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our text-to-speech platform.

Information We Collect

1. Account Information

• Email address
• Name (optional)
• Password (encrypted)

2. Payment Information

• Payment details are processed securely by Stripe and Paystack
• We do not store your full credit card information
• We store subscription status and plan information

3. Usage Data

• Character usage for text-to-speech conversions
• API usage (for Pro plan users)
• Service preferences (voice selection, provider)

4. Technical Data

• IP address (for fraud prevention)
• Country location (via Railway geo-detection or IP lookup)
• Browser type and version
• Device information

Cookies

We use essential cookies to make our platform work properly. These cookies are strictly necessary for the operation of our service.

Functional Cookies (Required)

Authentication Cookies (Required)

We do not use marketing, advertising, or tracking cookies. All cookies we use are strictly necessary for the platform to function correctly.

How We Use Your Information

• Provide and maintain our text-to-speech service
• Process your payments and manage subscriptions
• Track your usage for billing purposes
• Send service-related emails (welcome email, subscription updates)
• Deliver location-appropriate platform features and content
• Improve our service and user experience
• Prevent fraud and ensure platform security

Data Sharing

We share your data only with essential service providers:

• Stripe & Paystack: Payment processing
• AWS, Azure, Google Cloud: Text-to-speech processing (your text is processed but not stored)
• Resend: Transactional email delivery
• Railway: Application hosting and geo-detection

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Data Retention

• Account data: Retained while your account is active
• Usage data: Retained for current billing cycle + 12 months
• Payment records: Retained as required by law (typically 7 years)
• Text inputs: Not stored after processing (deleted immediately)

Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your account and data
• Export your data
• Object to processing of your data
• Withdraw consent (where processing is based on consent)

To exercise these rights, contact us at: privacy@luwisa.co.uk

Security

We implement industry-standard security measures to protect your data:

• HTTPS encryption for all data transmission
• bcrypt password hashing
• Secure payment processing via PCI-compliant providers
• Regular security audits and updates
• Access controls and authentication

Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

International Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States and European Union. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy, please contact us: