Privacy Policy
Last updated: April 8, 2026
1. Scope and Controller
This Privacy Policy applies to LuminaPath Inc, doing business as BatchIn ("BatchIn," "we," "us"), and describes how we collect and process personal information through our website, console, API, hosted inference, batch processing, VaaS audit, and related services.
2. Categories of Information We Collect
We may collect account data (name, email, organization details, authentication credentials), billing and transaction data (billing address, payment status, invoices), technical and log data (IP address, device/browser signals, request metadata, error logs, usage telemetry), and support communications.
3. Three-No Architecture
BatchIn operates under a "Three-No Architecture": (i) no use of customer prompts/inputs to train our own models; (ii) no sale or unrelated third-party sharing of customer content; and (iii) no retention of raw customer content beyond what is necessary to provide, secure, troubleshoot, and audit the Services.
4. Purposes and GDPR Legal Bases
Where GDPR applies, we process personal data under: contract necessity (service delivery, billing, support); legitimate interests (security, abuse prevention, service reliability); legal obligations (tax, accounting, lawful requests); and consent where required (e.g., optional analytics cookies or marketing communications).
5. Cookie and Tracking Policy
We use cookies/local storage in four categories: strictly necessary (session, security, load balancing), functional (language and UI preferences), analytics (aggregate traffic/performance, enabled on consent where legally required), and marketing (currently not enabled by default). You can manage preferences in browser/site settings.
6. CCPA/CPRA Notice (California Residents)
Subject to applicable law, California residents may have rights to know, access, correct, delete, and obtain portable copies of personal information, and to opt out of "sale" or "sharing" for cross-context behavioral advertising. BatchIn does not sell personal information. We will not discriminate for exercising privacy rights.
7. Sharing and Processors
We disclose personal information only to service providers/processors necessary to operate the Services (e.g., cloud hosting, payments, ticketing/email) under contractual safeguards requiring confidentiality, security controls, and limited processing instructions.
8. International Transfers
Data may be processed in multiple jurisdictions. We implement appropriate transfer mechanisms and safeguards, including SCCs and supplementary technical/organizational controls where required.
9. Security
We maintain administrative, technical, and physical safeguards, including TLS in transit, encryption at rest where applicable, least-privilege access control, key management, logging, monitoring, and incident response procedures. No method of transmission/storage is 100% secure.
10. Retention and Deletion
We retain data according to purpose and legal requirements: account/billing records as required by law; operational/security logs for limited periods; customer content according to service configuration or contract terms. We delete or anonymize data when no longer necessary unless legally required otherwise.
11. Your Rights
Depending on your jurisdiction, you may have rights to access, rectify, erase, restrict, object, data portability, and withdraw consent. We may verify identity before processing requests and will respond within legally required timeframes.
12. Children
Our Services are intended for businesses and developers, not children below applicable digital consent age. If we learn we collected children’s data without proper authorization, we will take steps to delete it.
13. Policy Changes
We may update this Policy periodically. Material changes will be communicated through the Services, email, or other appropriate channels. Continued use after updates constitutes acceptance of the revised Policy.
14. Contact
Controller: LuminaPath Inc d/b/a BatchIn. Privacy and legal inquiries: hello@luminapath.ai.