Last updated: July 28, 2025
Introduction
Welcome to Luvonese AI (“we”, “our”, or “us”). This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website or use our application, including features that integrate with Google services (e.g., Gmail and Google Calendar).
Information We Collect
- Personal Information: name, email address (via Google Sign-In)
- Usage Data: browser type, pages visited, interaction logs
- Cookies: to remember preferences and enhance UX
We do not store any Gmail or Google Calendar data on our servers.
All data access via these scopes happens temporarily and only for the purpose of assisting you within a session. Once the session ends, all content—such as email body, calendar event details, and attendee info—is discarded. OAuth tokens are handled securely and used only for authorized operations during your interaction with the assistant.
Use of Google OAuth Scopes
Our app requests certain Google OAuth scopes to provide assistant features. These scopes allow the app to interact securely with Google Calendar:
| Scope | Purpose |
|---|
| openid, profile | Authenticate and identify the user in the app |
| https://www.googleapis.com/auth/calendar.readonly | View all events in user’s calendar, including invitations |
| https://www.googleapis.com/auth/calendar.events.owned | Edit or delete events that the user owns |
| https://www.googleapis.com/auth/calendar.app.created | Manage events created through this app |
All access to Google data is temporary and only for the purpose of assisting you within a session. We do not store your Google Calendar content on our servers. OAuth tokens are handled securely and used only for authorized operations during your interaction.
AI-Powered Features & Data Handling
- AI Chat & Document Analysis: Your queries and uploaded documents are processed securely and only for the purpose of providing you with relevant responses or insights. We do not use your data to train or fine-tune our AI models.
- Image Generation & Audio Transcription: Uploaded images and audio are processed in real-time and not stored after your session, unless you choose to save the results.
- Notes, To-Do, and Visual Board: All productivity data is stored securely and accessible only to you.
- Session-based Processing: Inputs and outputs during AI interactions are processed in real-time and not stored persistently unless explicitly saved by you (e.g., in a chat session).
- Privacy by Design: All AI processing is conducted securely using anonymized or session-based data.
Cookies and Tracking
- We use cookies to improve your browsing experience, store user preferences, and track session data.
Payments and Transactions
- All payments on our platform are processed securely through our trusted payment gateway partner, Midtrans.
- We do not collect, process, or store any sensitive financial information such as credit card numbers, debit card details, or CVV codes. All payment interactions are handled entirely by Midtrans on their secure platform.
- We currently support only safe and non-card-based payment methods such as QRIS, ShopeePay, and Virtual Account Bank Transfer. As such, there is no interaction or risk associated with your card or financial credentials within our system.
- We may store minimal metadata about the transaction (such as payment status, selected plan, and invoice reference) solely for account verification and subscription management purposes.
International Users
If you are accessing our services from outside of Indonesia (or our primary operating country), please be aware that your information may be transferred to, stored, or processed in a country that may not have the same data protection laws as your jurisdiction.
Analytics & Visitor Tracking
- We may use analytics tools (e.g., Google Analytics) to understand user behavior on our platform. This may include anonymized data such as device type, visit duration, and interaction patterns.
- To improve our service and user experience, we collect non-personal visitor data such as IP address and approximate location, device and browser type, pages visited and time spent, referral sources and click events. This information is used for internal analytics, performance monitoring, and product development. It does not include personally identifiable information and is never sold or shared with external advertisers.
Data Sharing
- We do not sell or rent your personal data. Your data is never shared with third parties, except when required by law or legal process, or to protect user rights, security, or integrity of the service.
Children’s Privacy
- Our service is not intended for individuals under the age of 13 (or equivalent minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us so we can take appropriate action.
Data Retention
- We retain personal data only as long as necessary to provide our services. Temporary access to Gmail or calendar content is discarded after session completion. No email or event content is stored persistently.
Third-Party Integrations
- We may offer features that integrate with third-party services such as Google, Zoom, or Slack. These integrations are optional, and you will be asked to grant explicit permission before any data is shared. We only access the minimum data necessary to perform the requested operation and never share your credentials.
Security Measures
- All communications are encrypted using HTTPS.
- OAuth tokens are handled securely, and sensitive actions require user authorization.
- Manual register passwords are stored fully encrypted; we do not store passwords for Google Register.
- We implement industry-standard security measures, including regular audits and monitoring for suspicious activity.
- Access to your data is strictly limited to authorized personnel and only for legitimate business purposes.
- In the event of a data breach, we will notify affected users and relevant authorities as required by law.
Your Rights & User Control
- You can revoke access to our app anytime from your Google account permissions page: https://myaccount.google.
com/permissions - You may update, correct, or delete your personal information through your account settings.
- You may request a copy of your data or deletion of your account by contacting our support team at hello@luvonese.com. We will respond within 14 business days.
- You may opt out of marketing communications at any time.
- You have the right to object to or restrict certain processing of your data.
User Data Export and Deletion
- You have the right to request a copy of your data or request deletion of your account and associated information. To initiate a data export or deletion, please contact our support team at hello@luvonese.com. We will respond within 14 business days and confirm the action taken.
Changes to This Policy
We may update this Privacy Policy as needed. Any significant changes will be notified via our website or email. We encourage you to review this policy periodically for updates.
Contact Us
If you have any questions about this Privacy Policy or how we handle your data, please contact us at: hello@luvonese.com
This Privacy Policy is effective as of the last updated date and will remain in effect until modified or replaced.
Changes to This Policy
We may update this Privacy Policy as needed. Any significant changes will be notified via our website or email. We encourage you to review this policy periodically for updates.
Contact Us
If you have any questions about this Privacy Policy or how we handle your data, please contact us at: hello@luvonese.com
This Privacy Policy is effective as of the last updated date and will remain in effect until modified or replaced.
