Last updated: [May 16, 2026]

This Privacy Policy explains how Lumenstory (“Lumenstory”, “we”, “us”, or “our”) collects, uses, stores, shares, and protects personal information when you visit our website, contact us, submit a project inquiry, communicate with us, or interact with our online content.

We respect your privacy and aim to process personal information in a transparent, limited, and responsible way.

This Privacy Policy applies to our website: lumenstory.com and to personal information collected through website forms, email, social media, messengers, business communication, and related inquiry channels.

1. Who We Are

Lumenstory is a 3D animation and CGI studio working with brands, agencies, event teams, OOH/DOOH operators, and other business clients on visual production projects.

Our services may include CGI and 3D animation, FOOH content, 3DOOH and anamorphic content, event screen visuals, projection mapping, immersive video installations, product CGI, motion capture-related production, and other custom creative technology projects.

Legal entity: [insert legal company name]
Registered address: [insert company address]
Contact email: hello@lumenstory.com
Website: lumenstory.com

For the purposes of applicable data protection laws, Lumenstory may act as a “controller” of personal information collected through this website and direct business communications.

2. Personal Information We May Collect

We may collect the following categories of personal information.

2.1 Information You Provide Directly

When you contact us, submit a form, request a quote, book a call, send project materials, or communicate with us, we may collect:

  • name;
  • company name;
  • job title or role;
  • email address;
  • phone number or messenger contact;
  • country or city;
  • website or social media profile;
  • project description;
  • budget or estimated budget range, if provided;
  • deadline or campaign timing;
  • technical specifications for screens, venues, platforms, or media formats;
  • references, links, files, attachments, brand materials, or other project-related information;
  • any other information you choose to include in your message.

2.2 Business Communication Data

If you communicate with us by email, LinkedIn, Instagram, WhatsApp, phone, video call, or another channel, we may process:

  • communication history;
  • meeting notes;
  • inquiry details;
  • project requirements;
  • commercial discussions;
  • feedback, approvals, and decisions;
  • files or links shared during communication.

2.3 Website and Usage Data

When you visit our website, we may automatically collect limited technical and usage information, such as:

  • IP address;
  • browser type and version;
  • device type;
  • operating system;
  • approximate location based on IP address;
  • pages visited;
  • time spent on pages;
  • referral source;
  • clicks and interactions;
  • date and time of visit;
  • cookie identifiers or similar technologies, where applicable.

This information helps us understand how visitors use the website, improve user experience, measure marketing performance, and protect the website from misuse.

2.4 Cookies and Similar Technologies

We may use cookies, pixels, tags, analytics tools, and similar technologies. Some cookies are necessary for the website to function. Others may help us understand website performance, improve content, or measure marketing activity.

More information is provided in our separate Cookie Policy.

3. How We Use Personal Information

We may use personal information for the following purposes:

3.1 To Respond to Inquiries

We use contact and inquiry data to:

  • respond to your message;
  • clarify your project request;
  • understand your business needs;
  • prepare an initial response, estimate, proposal, or next-step recommendation;
  • schedule a call or meeting.

3.2 To Evaluate Project Requests

For project inquiries, we may use the information you provide to assess:

  • project type and complexity;
  • creative direction;
  • technical feasibility;
  • production timeline;
  • required deliverables;
  • budget assumptions;
  • required team resources;
  • risks related to deadline, scope, or technical specifications.

3.3 To Provide Services

If we work together, we may use personal and business information to:

  • manage the project;
  • communicate with your team;
  • deliver agreed production services;
  • request approvals and feedback;
  • send files, previews, invoices, and project updates;
  • document project scope, deadlines, and deliverables.

3.4 To Improve Our Website and Marketing

We may use website usage data and analytics to:

  • understand which pages and services are most relevant to visitors;
  • improve website structure, content, and user experience;
  • measure the performance of marketing campaigns;
  • analyze traffic sources;
  • improve lead quality;
  • develop better service pages, case studies, and portfolio presentation.

3.5 To Protect Our Website and Business

We may process technical and communication data to:

  • prevent spam, fraud, abuse, or unauthorized access;
  • secure the website;
  • troubleshoot technical issues;
  • enforce our Terms and Conditions;
  • protect our rights, property, and business interests.

3.6 To Comply with Legal Obligations

We may process information where necessary to:

  • comply with tax, accounting, legal, regulatory, or contractual obligations;
  • respond to lawful requests from authorities;
  • establish, exercise, or defend legal claims;
  • maintain necessary business records.

4. Legal Bases for Processing

Where GDPR, UK GDPR, or similar data protection laws apply, we rely on one or more of the following legal bases:

4.1 Consent

We may rely on your consent for certain activities, such as non-essential cookies, analytics, marketing subscriptions, or optional communications where consent is required.

You may withdraw consent at any time.

4.2 Contract or Pre-Contractual Steps

We may process your information when it is necessary to respond to your inquiry, prepare a quote, discuss a potential project, or perform a contract with you or your organization.

4.3 Legitimate Interests

We may process personal information where it is necessary for our legitimate business interests, provided that those interests are not overridden by your rights and freedoms.

Our legitimate interests may include:

  • responding to B2B inquiries;
  • managing client relationships;
  • improving the website;
  • measuring marketing performance;
  • preventing misuse of the website;
  • presenting relevant services and portfolio materials;
  • maintaining internal business records.

4.4 Legal Obligation

We may process information where required by law, including accounting, tax, compliance, or legal record-keeping requirements.

5. Who We May Share Personal Information With

We do not sell your personal information.

We may share personal information only where necessary and appropriate, including with:

  • website hosting providers;
  • email and communication tools;
  • analytics providers;
  • CRM or project management tools;
  • file storage and transfer services;
  • payment, accounting, or invoicing providers;
  • legal, tax, or professional advisors;
  • contractors or production partners involved in a project, where necessary;
  • authorities or regulators, where required by law.

Where we use third-party service providers, they may process personal information on our behalf and only for the purposes described in this Privacy Policy or in accordance with applicable agreements.

6. International Data Transfers

Because we may work with clients, partners, and service providers in different countries, your personal information may be transferred to, stored in, or accessed from countries outside your country of residence.

These countries may include Ukraine, Poland, the United Kingdom, the United States, the United Arab Emirates, European Economic Area countries, or other locations where we, our clients, or our service providers operate.

Where required by applicable law, we aim to use appropriate safeguards for international transfers, such as contractual protections, data processing agreements, standard contractual clauses, or other lawful transfer mechanisms.

7. How Long We Keep Personal Information

We keep personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy.

Typical retention periods may include:

  • website inquiry data: up to [12–24 months] after the last communication;
  • client and project communication: for the duration of the project and up to [3–6 years] after completion, where needed for business, legal, accounting, or dispute-resolution purposes;
  • accounting and invoice records: as required by applicable tax and accounting laws;
  • analytics data: according to the settings of the analytics provider and our internal retention configuration;
  • unsuccessful or inactive inquiries: up to [12–24 months], unless a longer period is needed for legitimate business or legal reasons.

When personal information is no longer needed, we will delete it, anonymize it, or securely archive it where legally required.

8. How We Protect Personal Information

We use reasonable technical and organizational measures to protect personal information against unauthorized access, loss, misuse, alteration, or disclosure.

These measures may include:

  • limited access to business communication and project files;
  • password-protected accounts;
  • secure hosting and website maintenance practices;
  • access controls for internal tools;
  • use of reputable third-party service providers;
  • internal review of who needs access to project and client information.

However, no method of transmission or storage is completely secure. We cannot guarantee absolute security of information transmitted through the internet.

9. Your Rights

Depending on your location and applicable law, you may have rights regarding your personal information, including the right to:

  • request access to your personal information;
  • request correction of inaccurate or incomplete information;
  • request deletion of your personal information;
  • request restriction of processing;
  • object to certain processing activities;
  • withdraw consent where processing is based on consent;
  • request data portability;
  • complain to a data protection authority.

To exercise your rights, contact us at: hello@lumenstory.com.

We may need to verify your identity before responding to your request. We will respond within the timeframe required by applicable law.

10. Rights of EU, EEA, and UK Visitors

If you are located in the European Economic Area or the United Kingdom, you may have additional rights under GDPR, UK GDPR, or related data protection laws.

You may contact us to ask what personal information we hold about you, why we use it, how long we keep it, and who we share it with.

You may also have the right to lodge a complaint with your local data protection authority.

If required, we may appoint an EU or UK representative and update this Privacy Policy with the relevant contact details.

11. Rights of California Residents

If you are a California resident, you may have rights under the California Consumer Privacy Act / California Privacy Rights Act, if these laws apply to our business.

These rights may include the right to know what personal information is collected, used, shared, or disclosed; the right to request deletion or correction; the right to opt out of certain sharing or sale of personal information; and the right not to be discriminated against for exercising privacy rights.

At this stage, we do not sell personal information.

If you are a California resident and wish to make a privacy request, contact us at: hello@lumenstory.com.

12. Marketing Communications

If you subscribe to updates, request materials, or agree to receive marketing communications, we may use your contact details to send relevant information about our services, portfolio, insights, or business updates.

You can unsubscribe or opt out at any time by using the unsubscribe link in the email, if available, or by contacting us directly.

We do not intend to send unsolicited mass marketing emails to individuals who have not requested or reasonably expected such communication.

13. Children’s Privacy

Our website and services are intended for business users and are not directed to children.

We do not knowingly collect personal information from children under the age of 13 or the equivalent minimum age under applicable local law.

If you believe that a child has provided us with personal information, please contact us, and we will take appropriate steps to delete it.

14. Project Materials and Confidential Information

If you send us project materials, brand assets, unreleased campaign ideas, product visuals, technical specifications, footage, or other sensitive business information, we will use such information only for the purpose of reviewing, estimating, discussing, or delivering the relevant project.

However, unless a separate Non-Disclosure Agreement or confidentiality clause has been signed, information sent through a general website form or ordinary business communication may not be treated as legally confidential.

If your project involves unreleased products, confidential campaigns, private events, or restricted brand materials, please request an NDA before sharing sensitive information.

15. Third-Party Websites and Platforms

Our website may include links to third-party websites, embedded videos, portfolio platforms, social media platforms, messengers, analytics tools, or other external services.

We are not responsible for the privacy practices, security, content, or policies of third-party websites or platforms.

Please review the privacy policies of any third-party services you use.

16. Cookies

We use cookies and similar technologies as described in our Cookie Policy.

Where required by law, we will ask for your consent before placing non-essential cookies on your device.

You can manage cookies through your browser settings or through the cookie consent tools available on our website, where applicable.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our website, services, tools, legal obligations, or business practices.

The updated version will be posted on this page with a revised “Last updated” date.

We encourage you to review this page periodically.

18. Contact Us

If you have any questions about this Privacy Policy or how we process personal information, please contact us:

Lumenstory
Email: hello@lumenstory.com
Website: lumenstory.com
Registered address: [company address, if applicable]