Privacy Policy - Lumiere

Last Updated: February 6, 2026

                TL;DR: Lumiere is designed with privacy first. We don't collect, track, or store any of your personal data on our servers. All your data stays on your device. When you chat with AI services, your messages are sent directly to the AI provider you've configured (like Anthropic Claude, Ollama, etc.), subject to their privacy policies.
            

1. Introduction

Welcome to Lumiere. This privacy policy explains how we handle your data when you use our mobile application. Lumiere is an open-source AI chat client available for iOS and Android devices.

Lumiere is developed and maintained as an open-source project under the MIT License. The source code is publicly available on GitHub at https://github.com/ajamaica/lumiere.

2. Information We Collect

2.1 No Analytics or Tracking

We do not collect any analytics, telemetry, or tracking data. Lumiere does not use:

Google Analytics or similar analytics services
Crash reporting services
Usage tracking or event logging
Advertising networks or third-party tracking pixels
Device fingerprinting or user profiling

2.2 Data Stored Locally on Your Device

All application data is stored locally on your device using React Native AsyncStorage and Expo SecureStore. This includes:

Server Configurations: Server names, URLs, and provider types you've configured
Authentication Tokens: API keys and tokens (stored securely in your device's keychain/secure enclave)
Chat History: Your message history (cached locally, up to 200 messages per session)
Favorite Messages: Messages you've marked as favorites
User Preferences: Theme settings, language preference, notification settings
Security Settings: Biometric lock preferences (Face ID/Touch ID)
Automation Data: Custom triggers and slash command configurations

This data never leaves your device unless you explicitly delete the app or transfer data to a new device.

3. How We Use Your Information

Since we don't collect any data on our servers, we don't "use" your information in the traditional sense. Your data remains on your device and is used solely to:

Provide the core functionality of the app (chat with AI services)
Store your preferences and settings
Cache message history for offline viewing
Enable features like favorites, themes, and biometric security

4. Third-Party Services and AI Providers

Lumiere is a client that connects to AI services that you configure. When you send messages through Lumiere, those messages are transmitted directly to the AI provider you've selected. Each provider has its own privacy policy:

4.1 Supported AI Providers

Anthropic Claude: When you use Claude, your messages are sent to Anthropic's API. See Anthropic's Privacy Policy
OpenClaw (Molt Gateway): A WebSocket-based gateway for AI interactions. Data handling depends on your server configuration
Ollama: Local AI inference. Messages stay on your local network/device
Apple Intelligence: On-device AI using Apple Foundation Models (iOS 18+). No external connectivity required

4.2 What Data is Shared with AI Providers

When you chat with an AI service through Lumiere, the following data is sent:

Your message text
Conversation history (for context)
Any images or files you attach
Your authentication credentials (API keys or tokens)

Important: Lumiere acts as a messenger. We do not intercept, store, or process this data on our servers. The data goes directly from your device to the AI provider's servers.

4.3 Expo Services

Lumiere is built using Expo and uses the following Expo services:

Expo Updates: For delivering app updates over-the-air
Expo Notifications: For local push notifications (no data sent to Expo servers)
Expo SecureStore: Native keychain integration (all data stays on your device)
Expo Local Authentication: Biometric authentication (on-device only)

See Expo's Privacy Policy for more information.

5. Data Security

We take data security seriously:

Secure Token Storage: Authentication tokens are stored using Expo SecureStore, which uses the native iOS Keychain and Android Secure Enclave
Biometric Security: Optional Face ID/Touch ID protection for app access
HTTPS/WSS: All network communications with AI providers use encrypted connections
No Server-Side Storage: We don't have servers that store your data, so there's nothing to breach

6. Background Notifications

Lumiere offers an optional background notification feature (for OpenClaw/Molt Gateway servers only). When enabled:

The app periodically checks for new messages in the background
Checks are performed at configurable intervals (default: 15 minutes)
Local push notifications are triggered when new messages are detected
All checks are performed directly between your device and your configured server
No data is sent to our servers or third-party services

This feature is disabled by default and can be controlled in the app settings.

7. Children's Privacy

Lumiere is not directed at children under the age of 13. We do not knowingly collect personal information from children. Since we don't collect any data at all, this is not a concern for our app specifically, but please be aware that the AI services you connect to may have their own age restrictions and policies.

8. Data Retention and Deletion

Since all data is stored locally on your device:

You are in full control: You can delete your data at any time by clearing the app's cache or uninstalling the app
No server-side retention: We don't retain any data because we don't collect any
Message history: Cached locally up to 200 messages per session. Clear cache to remove

9. Your Rights

Under various privacy laws (GDPR, CCPA, etc.), you have rights regarding your personal data. Since Lumiere doesn't collect or store your data on our servers, most traditional rights (access, deletion, portability) are already inherently satisfied:

Right to Access: All your data is on your device - you have full access
Right to Deletion: Delete the app or clear its cache
Right to Portability: Your data is already on your device in standard formats
Right to Opt-Out: We don't track you, so there's nothing to opt out of

For data shared with AI providers, please refer to their respective privacy policies and exercise your rights directly with them.

10. International Data Transfers

Since we don't collect data on our servers, there are no international data transfers from us. However, when you use third-party AI services, your data may be transferred to servers in different countries depending on the provider you've configured.

11. Changes to This Privacy Policy

We may update this privacy policy from time to time. When we do, we will:

Update the "Last Updated" date at the top of this policy
Post the updated policy on our website and GitHub repository
Notify users through the app if there are material changes

12. Open Source Transparency

Lumiere is open source under the MIT License. You can review the entire codebase to verify our privacy claims:

GitHub Repository: https://github.com/ajamaica/lumiere
License: MIT License
Audit: Anyone can audit the code to confirm no tracking or data collection occurs

13. Contact Us

If you have questions about this privacy policy or how Lumiere handles data, please:

Open an issue on GitHub: https://github.com/ajamaica/lumiere/issues
Review the source code to verify our privacy practices

14. Summary

Lumiere's Privacy Commitment:

✅ No analytics, tracking, or telemetry
✅ All data stored locally on your device
✅ No servers collecting your data
✅ Open source and auditable
✅ Secure token storage using native encryption
✅ Direct communication with AI providers you configure
✅ You are in full control of your data

← Back to Home