Privacy Policy

Effective Date: March 26, 2026

Luminous Medical Solutions LLC, doing business as Priveya

Introduction

This Privacy Policy (“Privacy Policy”) describes the data protection practices of Luminous Medical Solutions LLC, doing business as Priveya (“Priveya,” “we,” “our,” or “us”), including when you: visit our website located at www.priveya.com or any website that links to this Privacy Policy (our “Website”); use any affiliated mobile application that links to or contains this Privacy Policy (our “App”); or otherwise provide information to us. We refer to the Website, App, and all other services provided by Priveya together as the “Services.” This Privacy Policy is incorporated into and is a part of our Terms and Conditions of Use. Capitalized terms not defined here have the meanings assigned to them in our Terms.

If you are a California resident, please see the Additional Privacy Information for California Residents section below. Residents of other U.S. states will find information about their specific rights in the applicable state-specific sections and in the Your Rights and Choices section.

The Information We Collect and the Sources of That Information

We obtain information about you through the means described below when you use the Services. Please note that we need certain types of information so that we can provide the Services to you. If you do not provide us with such information, or ask us to delete it, you may no longer be able to access or use part or all of the Services.

Information You Provide to Us

We collect a variety of information that you provide directly to us, including through:

Account registration and administration of your account;
Processing your orders and requests for consultation or treatment, including orders placed by your Provider in connection with your care;
Questions, communications, or feedback you submit via forms, email, or in-app messaging;
Requests for customer support and technical assistance, including through online chat features;
Health intake questionnaires, symptom forms, and clinical intake submissions; and
Uploads or posts to the Services, including photos, documents, or other files.

The specific types of information we collect depend on the Services you use and the information you choose to provide. Categories of information we collect directly from you include:

Identifiers, such as your full name, mailing address, telephone number, date of birth, and email address;
Billing and payment information, such as your billing address, credit or debit card number, verification number, and expiration date, collected by our third-party payment processors on our behalf;
Commercial and transactional information, such as information about your purchases, service requests, and transactions with us;
Customer service information, such as records of your interactions with our support team;
Demographic information, such as your gender identity, age, and similar information relevant to the Services;
General geolocation information, such as your city, state, or ZIP code, as entered by you or derived from your IP address;
Information about others, such as an emergency contact’s name or contact information, if you choose to provide it; and
Sensitive Personal Information (which we collect and process only as permitted or required by applicable law), including:
Health information, including your symptoms, medical history, medications, allergies, reproductive health information, hormone health data, menstrual cycle data, lab results, clinical photos you upload, and relevant physical characteristics such as height and weight;
Information about your sexual health, sexual activity, and STI/STD history, as relevant to services you request;
Emergency contraception and reproductive health decisions, to the extent you provide such information;
Log-in credentials, if you create an account;
Identity verification information, such as a government-issued ID number or image, if required for identity verification purposes;
Contents of communications you send through the Services, including messages with Providers; and

Any other information you voluntarily provide to us in connection with your use of the Services.

Information We Collect Through Automated Means

We collect certain information automatically about your use of the Services and the devices you use to access them. We and our service providers may use cookies, SDKs, pixels, and similar technologies to assist in this collection. In some instances, automatically collected information may constitute sensitive personal information, and we will process it only in accordance with applicable law.

Our Website

When you use our Website, we collect and analyze information such as your IP address, browser type and language, operating system, device identifiers, referring and exit pages, pages viewed, time spent on pages, search terms used, files downloaded, error logs, and other usage data.

Our App

When you use our App, we automatically receive information about the device used to access it, including mobile device identifiers, advertising identifiers (subject to your device settings), IP address, operating system version, browser type, and how you use the App, including time spent in different sections.

Location Information

When you use the Services, we and our service providers may automatically collect general location information (e.g., city, state, or postal code associated with your IP address) to enable delivery of location-appropriate content, verify your state of residence for regulatory compliance, and calculate applicable taxes.

Cookies and Similar Tracking Technologies

We and our service providers use web server logs, cookies, SDKs, tracking pixels, and similar tools to collect the information described in this section. Specifically:

Cookies are small text files placed on your device that allow us to recognize your device, store preferences, understand which parts of the Services you use, deliver relevant content, and perform analytics and security functions.
SDKs are sets of tools embedded in our App to allow us and third parties to collect information about how users interact with the Services.
Tracking pixels (also called web beacons or clear GIFs) are tiny electronic tags used to collect usage data, measure ad effectiveness, and access cookies.

You can control cookies through your browser settings. Blocking cookies may limit your access to certain features of the Services. For browser-specific guidance, consult your browser’s Help section.

Use of Artificial Intelligence Technologies

Priveya may use artificial intelligence (AI) technologies for legitimate business purposes to enhance the Services and improve your experience, including to: personalize content and recommendations; improve service efficiency and accuracy; support customer interactions through AI-assisted responses; analyze patterns and trends to improve our products; and detect and prevent fraud or security incidents.

Critical healthcare decisions facilitated through the Services always involve human oversight from qualified, licensed healthcare professionals. AI does not replace clinical judgment. Information processed through AI systems is subject to the same data protection measures described in this Privacy Policy. Where we use third-party AI services, we require those vendors to adhere to appropriate data protection standards through contractual obligations.

Information We Collect From Social Media and Other Platforms

If you follow, like, or interact with us on social media platforms (such as Instagram, Facebook, or TikTok), we may collect information you make available through those platforms, including your name, email address, and any content you post that is relevant to us.

If you access the Services through a third-party login or connection (e.g., a social sign-in tool), you may allow us access to certain information from that third party based on your settings. If you do not wish to share that information, do not use third-party connections to access the Services. Your use of any third-party platform is governed by that platform’s own privacy policy.

Information We Receive From Third Parties

We may receive information about you from third parties, including:

Independent licensed healthcare Providers who facilitate your care through the Services;
Laboratory partners who transmit your test results to Priveya for delivery to your Provider;
Identity verification service providers;
Payment processors who confirm payment status; and
Analytics, marketing, and advertising partners, to help us better understand and serve our users.

Purposes for How We Use Your Information

We use the information we collect for the following purposes:

Provide and Manage the Services:

Operate, maintain, and improve the Services and facilitate the provision of healthcare services to you by independent licensed Providers;
Provide technical support, customer service, and troubleshoot issues;
Communicate with you about the Services, your care, or your inquiries, and send communications on behalf of Providers as needed;
Verify your identity and administer your account, including processing payments, fulfilling service requests, and verifying government-issued identification where required; and
Coordinate laboratory testing and deliver results through the Services.

Analyze and Improve the Services:

Conduct internal research to understand the effectiveness of our Services and improve our products and features;
Publish or share research results only in de-identified or aggregate form such that individual users cannot be identified;
Optimize content presentation for your device and browser; and
Maintain the safety and security of the Services.

Advertising and Marketing (subject to applicable law and your consent where required):

Communicate with you by email, push notification, or other channels about promotions, new services, and features that may interest you;
Deliver relevant advertising and personalized content; and
Measure the effectiveness of our marketing campaigns.

Legal and Compliance Purposes:

Comply with applicable laws and regulations, including HIPAA, state health data privacy laws, telehealth regulations, and DEA requirements;
Establish, exercise, or defend our legal rights; and
Detect, investigate, and prevent fraudulent, malicious, or illegal activity.

Combined Information

For the purposes described above, we may combine information collected through the Services with information received from third parties, both online and offline, and use or disclose the combined information as described in this Privacy Policy.

Aggregate/De-Identified Data

We may aggregate or de-identify information collected through the Services so that it can no longer reasonably be linked to you or your device. We may use and disclose de-identified or aggregate information for any lawful purpose, including research, marketing, product development, and partnerships. We maintain a policy of not attempting to re-identify de-identified information, and we contractually prohibit third parties to whom we disclose de-identified information from attempting to re-identify it.

Online Analytics and Advertising

1. Online Analytics

We may use third-party web analytics services (such as Google Analytics, Amplitude, Mixpanel, or similar tools) on our Services to collect and analyze usage information through cookies and similar technologies; conduct auditing and reporting; prevent fraud; and understand how users interact with the Services across devices and sessions. These analytics providers may combine information they collect about you on our Services with information they have collected on other platforms or services.

To prevent Google from using your information for analytics, you may install the Google Analytics Opt-Out Browser Add-on available at https://tools.google.com/dlpage/gaoptout. To opt out of Google Signals, navigate to your Google account settings and disable ads personalization. We do not control the availability, accuracy, or ongoing operation of third-party opt-out tools.

If you receive email from us, we may use analytics tools such as tracking pixels to determine whether you opened our messages or clicked on links, to assess the effectiveness of our communications.

2. Online Advertising

Subject to applicable law and your choices, the Services may integrate third-party advertising technologies (such as those offered by Google, Meta/Facebook, and similar platforms) that use cookies, pixels, and other tools to deliver relevant advertising for Priveya’s products and services on the Services and on other websites and applications you visit. Advertisements may be based on the content you view, your searches, demographic data, and other information we or our partners collect.

We may provide customer information (such as hashed email addresses) to third-party advertising partners who use such information in de-identified form to target advertising on other platforms. Such activities may constitute the “sale” or “sharing” of personal information under applicable state law. Please see the Your Rights and Choices section below for opt-out mechanisms.

To learn more about interest-based advertising and opt-out options, visit: the Network Advertising Initiative at http://optout.networkadvertising.org or the Digital Advertising Alliance at http://optout.aboutads.info. Opting out means you will still see advertisements, but they will not be tailored to your interests based on cross-site behavioral data.

3. Mobile Advertising

When you use our App, you may receive tailored in-app advertisements. We may use third-party service providers for mobile analytics and in-app advertising. Your device’s operating system (iOS, Android) provides settings to limit or opt out of interest-based in-app advertising. Please consult your device settings or your operating system’s support documentation for instructions. We do not control the options provided by platform operators.

How We Disclose Your Information

We may disclose your information for business purposes as described below. We do not sell your personal health information or Protected Health Information (PHI) to third parties. We do not disclose Consumer Health Data for cross-context behavioral advertising without your consent, as required by applicable law.

Healthcare Providers and Services

We disclose your information to independent licensed healthcare Providers to: (i) schedule and facilitate consultations and provide healthcare services; (ii) enable Provider-initiated communications through the platform; and (iii) support treatment, payment, and healthcare operations, including coordination of laboratory testing, prescription fulfillment, and follow-up care.

PRIVEYA DOES NOT GUARANTEE THAT ANY SPECIFIC SERVICE, PRODUCT, OR PAYMENT WILL QUALIFY AS AN ELIGIBLE HSA OR FSA EXPENSE. It is your sole responsibility to determine whether a particular service or product qualifies for HSA/FSA reimbursement under the terms of your plan and applicable tax law. Priveya recommends consulting with a tax advisor or your HSA/FSA plan administrator before submitting any claim. Priveya is not liable for any disallowed HSA/FSA claims or related tax consequences.

Priveya will provide itemized receipts upon request, which you may submit to your HSA/FSA administrator. The issuance of a receipt does not constitute a representation that the expense qualifies under your plan.

Service Providers

We provide access to or share your information with trusted third-party service providers who perform services on our behalf. These may include providers of: payment processing; data hosting and cloud storage; identity verification; IT security and fraud prevention; customer support tools; laboratory coordination; marketing and analytics platforms; legal, accounting, and auditing services; and clinical operations support. All service providers are contractually required to protect your information and use it only for the purposes for which it was shared.

Advertising Networks

Please see the Online Analytics and Advertising section above for information about how we disclose information to advertising partners. We do not disclose PHI or Consumer Health Data to advertising networks for targeted advertising without your consent.

Protection of Priveya and Others

We may access, retain, and disclose your information if required by law or in good faith belief that such disclosure is reasonably necessary to: (a) comply with applicable law, regulation, or legal process (e.g., a court order or subpoena); (b) enforce these Terms, this Privacy Policy, or other agreements with you; (c) respond to claims that content violates third-party rights; (d) respond to your customer service requests; or (e) protect the rights, property, or safety of Priveya, its affiliates, users, or the public, including for fraud prevention and security purposes.

Business Transfers

As we develop our business, we may acquire, merge with, or partner with other companies. In such transactions, including in contemplation of a potential transaction, your information may be among the transferred assets. If such transfer is subject to additional legal restrictions under applicable law, we will comply with those restrictions and, where required, provide notice of any material change in data handling practices.

Public Forums and User Interactions

Certain features of the Services may allow you to post information publicly or share it with other users. Any information you post publicly is not confidential and may be viewed by others, including through third-party search engines. Please use discretion when sharing information in public areas of the Services. Priveya is not responsible for how others use information you disclose to them.

With Your Consent

We may disclose your information in other ways as you direct us to or when we have obtained your affirmative consent.

Aggregate/De-Identified Information

We may create and disclose Aggregate/De-Identified Data derived from your information for any lawful purpose, as described in the Purposes section above.

Your Rights and Choices

If you reside in certain U.S. states, you may have legal rights with respect to your personal information. Currently, residents of California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, Virginia, and Washington may have some or all of the rights described below, subject to applicable law.

The types of requests you may be able to make include:

Access: Request a copy of the personal information Priveya has collected about you, including in a portable format where required by law;
Confirmation: Request confirmation that we are processing your personal information;
Correction: Request that we correct inaccurate information we hold about you;
Deletion: Request deletion of personal information we hold about you, subject to exceptions under applicable law (including medical record retention obligations);
Restriction or Opt-Out of Automated Processing: Opt out of processing that has significant or legal effects on you; and
Withdraw Consent: Where we process your information based on your consent, withdraw that consent at any time without affecting the lawfulness of prior processing.

Additionally:

California and Oregon residents may request information about the categories of personal information we collect, disclose, or sell; the sources of that information; the business or commercial purposes for collecting or selling it; and the categories of third parties to whom we disclose it.
Oregon and Minnesota residents may request a list of specific third parties (other than natural persons) to whom we have disclosed personal information.
Residents of Virginia, Kentucky, Maryland, Minnesota, Montana, Oregon, Rhode Island, Tennessee, Texas, Indiana, Colorado, and Connecticut who receive a denial of their request have the right to appeal that denial by contacting us at privacy@priveya.com with their name, account email, and a copy of the denial notice.

To submit a privacy request, contact us at privacy@priveya.com. Before disclosing, correcting, or deleting information in response to a request, we must verify your identity. We may contact you for additional information to complete verification. We will never ask you for your password or sensitive financial information during verification. If you use an authorized agent to submit a request on your behalf, we may require proof of written authorization.

We will respond to verified requests within the timeframes required by applicable law (generally 45 days, with a possible 45-day extension where permitted). Certain information may be exempt from requests for example, where disclosure would prevent completion of a transaction you initiated, create a conflict with legal obligations, or involve disproportionate cost or effort. We will explain the basis for any denial.

Priveya will not discriminate against you for exercising your privacy rights. However, we may be unable to provide certain Services to you if you request deletion of information essential to those Services.

Opt Out of Sale and Sharing for Targeted Advertising

As described in the Online Advertising section, Priveya may allow third parties to receive certain information through cookies, pixels, and similar tools to deliver targeted advertising. This activity may constitute the “sale” or “sharing” of personal information under applicable state law. Residents of the states listed above may opt out by:

Emailing us at privacy@priveya.com with the subject line “Do Not Sell or Share My Personal Information”;
Using a legally recognized browser-based opt-out signal (such as the Global Privacy Control), which we honor in accordance with applicable law; or
Using any opt-out mechanism made available through the Services.

Note: If you use different browsers or devices, you must opt out on each browser or device where you want your choice to apply. Opting out means you will still see advertising, but it will not be tailored to your behavior across sites.

Sensitive Data Rights

To the extent we process sensitive personal information (including health data, reproductive health information, hormone data, and information about your sexual health or STI/STD history) for purposes beyond providing the services you requested, you have the right to limit or opt out of such processing as permitted by law. To exercise this right, contact us at privacy@priveya.com. In jurisdictions that require consent before processing sensitive data for certain purposes, we will seek your consent prior to such processing.

Marketing Preferences

You may opt out of marketing emails by following the unsubscribe instructions in any marketing email or by contacting us at support@priveya.com. Regardless of your marketing preferences, we may continue to send you operational and transactional communications (such as appointment confirmations, lab result notifications, and account-related notices).

Third-Party Services and Notice About Health Information

This Privacy Policy does not address, and Priveya is not responsible for, the privacy or data security practices of any third party, including independent healthcare Providers who use the Services, device manufacturers, operating system providers, laboratories, or any third-party website or application to which the Services may link. The collection, use, and disclosure of your information by third parties is governed by their own privacy policies, not this Privacy Policy. We encourage you to review the privacy policies of any third party with whom you interact.

Please be aware that healthcare Providers you interact with through the Services are independent professionals and may be subject to their own HIPAA obligations, professional licensing requirements, and privacy practices. Communications between you and your Provider through the platform are treated as part of your medical record and are handled in accordance with applicable law.

How We Protect Your Information

Additional Privacy Information for California Residents

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”), requires us to provide you with the following additional information about: (1) the purposes for which we use each category of personal information and sensitive personal information we collect; and (2) the categories of third parties to whom we disclose, “share” (for cross-context behavioral advertising), or “sell” such information.

Under the CCPA, “sharing” means targeting advertising to a consumer based on personal information obtained from their activity across websites; “selling” means disclosing personal information to third parties in exchange for monetary or other valuable consideration. Our use of third-party analytics and advertising services may result in the sharing of online identifiers in a manner that constitutes “sharing” or “selling” under the CCPA.

Category of Personal / Sensitive Personal Information	Categories of Third Parties to Whom We Disclose	Purposes of Use	Third Parties to Whom We Sell / Share for Advertising
Identifiers & contact info (name, address, email, account name)	Service providers; affiliated entities; healthcare Providers; legal/fraud prevention	Provide & manage Services; Analyze & improve; Advertising & marketing; Legal	Advertising partners (hashed identifiers only)
Commercial & transactional info (purchases, service requests)	Service providers; affiliated entities; healthcare Providers; legal/fraud prevention	Provide & manage Services; Analyze & improve; Advertising & marketing; Legal	Advertising partners
Financial info (payment card data collected by our processors)	Payment processors; service providers; legal/fraud prevention	Provide & manage Services; Legal	We do not sell/share
Internet / device activity (IP address, app usage, browsing behavior)	Service providers; affiliated entities; legal/fraud prevention	Provide & manage Services; Analyze & improve; Advertising & marketing; Legal	Advertising partners
General geolocation (city, state, ZIP)	Service providers; affiliated entities; legal/fraud prevention	Provide & manage Services; Analyze & improve; Advertising & marketing; Legal	Advertising partners
Health information (symptoms, medical history, lab results, reproductive/hormone health data)	Service providers; healthcare Providers; affiliated entities; legal/fraud prevention	Provide & manage Services; Analyze & improve; Legal	We do not sell/share PHI or Consumer Health Data for advertising
Sexual health / STI information	Service providers; healthcare Providers; affiliated entities; legal/fraud prevention	Provide & manage Services; Analyze & improve; Legal	We do not sell/share
Emergency contraception / reproductive decisions	Service providers; healthcare Providers; legal/fraud prevention	Provide & manage Services; Legal	We do not sell/share
Government-issued ID / identity verification info	Service providers; identity verification partners; legal/fraud prevention	Provide & manage Services; Legal	We do not sell/share
Log-in credentials	Service providers; legal/fraud prevention	Provide & manage Services; Legal	We do not sell/share
Contents of communications through the Services	Service providers; healthcare Providers; legal/fraud prevention	Provide & manage Services; Analyze & improve; Legal	We do not sell/share
Customer service data	Service providers; affiliated entities; legal/fraud prevention	Provide & manage Services; Analyze & improve; Legal	We do not sell/share

Your Choices Regarding Sharing and Selling. You have the right to opt out of the sale or sharing of your personal information for targeted advertising purposes. To exercise this right, contact us at privacy@priveya.com or use the opt-out mechanism available on the Services. We will honor legally recognized browser-based opt-out signals (such as the Global Privacy Control) in accordance with our legal obligations.

Right to Limit Use of Sensitive Personal Information. The CCPA allows you to limit our use of your sensitive personal information for purposes beyond providing the services you requested or as otherwise permitted by law. To exercise this right, contact us at privacy@priveya.com.

No Sale or Sharing of Minors’ Information. We do not knowingly sell or share the personal information of individuals under the age of 16.

Incentive Programs. If Priveya offers promotions, discounts, or other incentive programs that require submission of personal information, your participation will be subject to the specific terms of that program. You may revoke participation where permitted. We will not treat incentive program data differently from other personal information except as described in the applicable program terms.

Shine the Light Disclosure. California’s “Shine the Light” law gives California residents the right to request information about how we disclose personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their own direct marketing purposes.

Do Not Track. We do not currently respond to browser-initiated Do Not Track (DNT) signals. However, we do honor legally recognized opt-out mechanisms such as the Global Privacy Control, as required by applicable law.

Additional Privacy Information for Texas Residents

NOTICE: To the extent we engage in activities that constitute the “sale” of sensitive personal data under the Texas Data Privacy and Security Act, including serving you online advertising relevant to your use of Priveya, we will obtain your consent before doing so. You may revoke consent at any time by contacting us at privacy@priveya.com.

Additional Privacy Information for Nevada Residents

Under Nevada law, certain Nevada consumers may opt out of the “sale” of “personally identifiable information” for monetary consideration to a person for that person to license or sell such information to additional persons. We do not currently engage in such activity. However, if you are a Nevada resident who has purchased services from us and wish to submit a future opt-out request, please contact us at privacy@priveya.com. We will take reasonable steps to verify your identity and will honor your request in the event our practices change.

Additional Privacy Information for Washington State Residents

If you are a Washington State resident, the Washington My Health MY Data Act (“MHMD Act”) provides you with specific rights with respect to your Consumer Health Data. Under the MHMD Act, “Consumer Health Data” means personal information that is linked or reasonably linkable to a consumer and that identifies the consumer’s past, present, or future physical or mental health status.

Consumer Health Data We Collect

We may collect the following categories of Consumer Health Data:

Health conditions, symptoms, and diagnoses you provide through health intake forms;
Laboratory test results and diagnostic information;
Reproductive health information, hormone health data, and menstrual cycle information;
Information about sexual health, STI/STD status, and sexual activity relevant to services you request;
Emergency contraception requests and related reproductive health decisions;
Medications, prescriptions, and treatment history relevant to your care; and
Inferences derived from the above to assess your health status or facilitate your care.

Purposes for Collecting Consumer Health Data

We collect Consumer Health Data solely for the following purposes:

Providing and improving telehealth consultations, lab testing services, and related clinical Services;
Facilitating communications between you and independent licensed Providers;
Complying with applicable legal and regulatory obligations, including HIPAA and the MHMD Act; and
Conducting health research and analytics in de-identified or aggregate form only.

Sharing of Consumer Health Data

We do not sell Consumer Health Data. We do not share Consumer Health Data for targeted advertising or cross-context behavioral advertising. We share Consumer Health Data only:

With independent licensed Providers as necessary to facilitate your care;
With laboratory partners to process your tests and return results;
With service providers who process data strictly on our behalf under written data protection agreements;
As required by applicable law, court order, or valid legal process; and
With your explicit, affirmative consent.

Your Washington Privacy Rights

As a Washington resident, you have the right to:

Confirm whether we are collecting, sharing, or selling your Consumer Health Data;
Access a copy of the Consumer Health Data we hold about you;
Withdraw consent for collection or sharing of Consumer Health Data at any time;
Request deletion of your Consumer Health Data, subject to our legal retention obligations; and
Not be discriminated against for exercising your rights under the MHMD Act.

To exercise these rights, contact us at privacy@priveya.com. We will respond within the time period required by applicable law.

Retention of Your Information

We retain your personal information for no longer than is necessary for the purposes for which it was collected, subject to applicable legal retention requirements. The length of time we retain information depends on:

The purpose for which we collected and use it;
The nature and sensitivity of the information;
The potential risk of harm from unauthorized use or disclosure;
Whether the information is subject to mandatory retention periods under applicable law, including HIPAA medical record retention requirements, state medical records laws, and applicable telehealth regulations; and
Our legitimate interests in maintaining complete and accurate records.

When your information is no longer required for these purposes, we securely delete or anonymize it in accordance with our data retention policies and applicable law.

Children

The Services are intended solely for individuals who are 18 years of age or older. We do not knowingly collect personal information from individuals under the age of 18. Our Services are not directed to children. If we discover that we have inadvertently collected personal information from a person under 18, we will take prompt steps to delete such information. If you believe that we may have collected information from a minor, please contact us immediately at privacy@priveya.com.

Revisions to This Privacy Policy

We reserve the right to update or change this Privacy Policy at any time to reflect changes in applicable law, our data practices, the features of the Services, or advances in technology. We will make the revised Privacy Policy accessible through the Services and update the Effective Date at the top of this document. Where required by law, we will provide you with prior notice of material changes by email or through a prominent in-platform notification.

Your continued use of the Services after the revised Privacy Policy becomes effective constitutes your acknowledgment of the changes and your agreement to be bound by the updated terms. If you do not agree to the revised Privacy Policy, you must discontinue your use of the Services.

Contacting Us

If you have questions, concerns, or requests regarding this Privacy Policy or Priveya’s privacy practices, please contact us:

Priveya / Luminous Medical Solutions LLC

Privacy inquiries: privacy@priveya.com

General support: support@priveya.com

Website: www.priveya.com