Privacy Policy

The data controller is:

• Company Name: Luana CRM OÜ
• Country of Registration: Estonia
• Registered Address: Harju maakond, Lasnamäe linnaosa, Sepapaja tn 6, Tallinn, Estonia
• Email: [email protected]

Depending on the contractual relationship, different Lua CRM entities (Armenia, Bulgaria, Estonia) may act as the data controller or data processor.

This Privacy Policy applies to:

• Visitors of our website
• Registered users of Lua CRM
• Customers, partners, and their authorized users
• Data processed through Lua CRM on behalf of customers

Lua CRM may serve as:

• Data Controller for its own business data
• Data Processor for customer-uploaded data

3.1 Account and User Data

• Full name
• Email address
• Phone number
• Login credentials (encrypted)

3.2 Company and Business Data

• Company name
• Number of staff
• Business contacts and clients
• Internal notes, tasks, CRM records

3.3 Dáta Custaiméara & Úsáideora Deiridh (Próiseáilte thar ceann Cliant)

Depending on how customers use Lua CRM, this may include: - Customer management and contacts - Sales and lead management - Branch/office management - Financial operations and wallets - User authentication and permissions - Business analytics and reporting - Multi-language support

• Names and contact details
• Appointment and service information
• Uploaded documents and files
• Communication History

3.4 Medical and Sensitive Data

When used by medical or dental organisations, Lua CRM may process:

• Dental records and tooth details
• Medical notes and treatment data
• 3.2 Ẹ̀kọ́ nípa ìlera tí àwọn ọja-ọrọ̀ fi sí

3.2 Ọ̀rọ̀ yìí ṣe àtúnṣe nìkan lábẹ́ ìlànà ọ̀dá ẹni tí ó ń lò rẹ̀ àti lábẹ́ ìṣọ̀kan ìṣọ̀kan ìbọ̀wọ̀ tó ga.

3.5 Billing and Payment Information

Payments are processed through third-party providers (e.g. Stripe, Stripe, or local operators). Lua CRM does not store full payment card details.

3.6 Technical and Usage Data

• IP address
• Device and browser information
• Log files
• Usage analytics
• Cookies and similar technologies

1. Provide our services to you 2. Manage your account and relationship with us 3. Communicate with you 4. Improve and develop our products and services 5. Comply with legal and regulatory requirements

• Provide and operate the Service
• Create and manage user accounts
• Process payments and subscriptions
• Enable CRM, automation, and AI features
• Store and process uploaded data
• Enhance system performance and security
• Comply with legal obligations

Lua CRM utilises artificial intelligence and automation technologies to:

• 3.2 Analyze CRM Data
• 3.2 Tạo ra những hiểu biết, khuyến nghị và tự động hóa
• Assist users with workflows and reporting

AI processing is performed:

• Only within the scope of user authorization
• Ní dhíolann nó oiliúint ar mhúnlaí poiblí AI ar shonraí custaiméirí
• With safeguards to prevent unauthorized access

3.1 We process personal data under the following legal bases:

• Performance of a contract
• Legitimate business interests
• User consent (where required)
• Legal obligations

3.2 Ó le féidir linn sonraí a roinnt le soláthraithe seirbhíse iontaofa, lena n-áirítear:

• 3.2 Nkwantabisa nkwantabisa (e.g. Hetzner – Germany)
• 3.2 Ngọc xử lý thanh toán (Stripe, Stripe, nhà cung cấp địa phương)
• Authentication services (Google OAuth)
• Communication services (email, notifications)
• 3.2 Ọrụ nke ọma na ụlọ ọrụ ọrụ (gụnyere Cloudflare)

3.2 Ang lahat ng ikatlong partido ay nababalot sa mga kontraktwal na obligasyon sa proteksyon ng data.

Data may be processed within the European Economic Area (EEA) or transferred to other jurisdictions with appropriate safeguards, including: Data may be processed within the European Economic Area (EEA) or transferred to other territories with proper protections, including:

• Standard Contractual Clauses (SCCs)
• GDPR-compliant security measures

We retain personal data:

• As long as the account is active
• As required to fulfil contractual and legal obligations
• Até que a exclusão seja solicitada, onde legalmente permitido

Customers control retention of data uploaded into their CRM accounts.

3.1 We apply technical and organisational security measures, including:

• Encrypted data transmission (HTTPS)
• Access control and authentication
• Secure hosting in Germany (Hetzner)
• Regular system monitoring and backups

Depending on applicable law, users have the right to:

• Access their personal information
• Correct inaccurate data
• Request for deletion ("right to be forgotten")
• Restrict or object to processing
• Data portability
• Withdraw consent

Requests can be sent to: [email protected]

Lua CRM uses cookies and similar technologies to:

• Ensure proper system functionality
• Enhance user experience
• 3.2 Analyze platform usage Анализируйте использование платформы

Users can manage cookie preferences through browser settings.

Lua CRM is used by:

• Businesses (B2B)
• Individual professionals (B2C)
• Government and public institutions (B2G)

3.2 Mỗi khách hàng vẫn chịu trách nhiệm tuân thủ các luật về bảo vệ dữ liệu liên quan đến người dùng cuối của họ.

Lua CRM is not intended for minors. We do not knowingly collect personal data from children.

3.2 Ó le linn ama, is féidir linn an Beartas Príobháideachta seo a nuashonrú. Foilseofar an leagan nuashonraithe ar ár suíomh gréasáin le dáta "Nuashonraithe" athbhreithnithe.

3.2 Ar privacy-related questions or requests, contact: