Privacy Policy

CartaLuma is an independent service. We are not a law firm, do not provide legal advice, and are not affiliated with USCIS, ICE, DHS, EOIR, or any government agency.

• Name
• Email address
• Account identifiers
• Uploaded notices and files
• Extracted text from your documents
• AI questions, prompts, and chat messages
• Language preferences
• Optional case or receipt numbers
• Usage logs
• Device, browser, and IP address data
• Support messages
• Reminder schedules you create (kind, optional short title up to 200 characters, channel, and time)
• Follow-up check-in answers and short outcome labels (e.g., "attended", "rescheduled", "waiting")
• Notification preferences (channels, quiet hours, preferred language, alert categories, and your IANA timezone used so quiet hours follow your local clock)
• Journey timeline entries you create or that are appended from your check-in answers (titles capped at short labels, optional notes up to 500 characters)
• Delivery metadata returned by our notification providers (Resend for email, Twilio for SMS/WhatsApp, and web push provider) for the limited purpose of sending and troubleshooting the messages you asked to receive

Reminder titles, check-in outcomes, and journey notes are stored only against your account and used to render your own dashboard and to schedule notifications. They are never included in analytics events, push payloads, or SMS message bodies. Outgoing SMS and push previews use generic phrasing (e.g., "You have an immigration reminder") and never include the case type, agency, date, title, or outcome.

• Provide notice explanations
• Power AI chat and educational guidance
• Authenticate your account
• Security and fraud prevention
• Customer support
• Analytics and product improvement
• Legal compliance

• Performance of a contract, to provide the service you signed up for.
• Consent, for optional uploads and AI processing of your documents.
• Legitimate interests, for security, fraud prevention, analytics, and service improvement.

• Supabase, authentication, database, and file storage.
• AI providers, OpenAI and/or Google Gemini, accessed via the Lovable AI Gateway, to generate explanations and chat responses.
• Analytics providers, such as PostHog, where enabled.
• Email providers, for transactional email, where used.

• We do not share your uploaded documents with lawyers, nonprofits, or other third parties unless you explicitly choose to share them.
• We do not sell your personal data.
• We do not share your data for behavioral advertising.
• We may disclose information if required by law or valid legal process.

• Your uploaded file is sent to the AI provider only to generate the explanation and is not saved at rest on CartaLuma servers. There is no guest dashboard from which a guest document can be deleted, because no guest document is stored.
• The generated explanation is held only in your browser, in sessionStorage (key cartaluma:pending-guest-notice-v1), so you can read it on the result page and optionally claim it into a new account. It is automatically discarded when you close the browser tab, when you explicitly clear it, after a successful claim, or at most 24 hours after it was created — whichever comes first. Clearing your browser data also removes it.
• To enforce a small, fair-use cap, we store a salted hash of your IP address and of a random opaque device token (created in your browser localStorage). These hashes contain no document content, no personal information, and cannot be reversed to recover your IP or device token. They are kept for up to 30 days for rate-limit accounting and then deleted.
• If you create an account immediately after a guest explanation, you can choose to claim that explanation so it appears in your account. Once claimed, normal authenticated retention applies (see §10).

• Journey data: an optional goal (for example, "renew my green card"), any important date you enter, reminder preferences, and update topics you select.
• Milestones and timeline items: notes, appointments, reminders, or updates that you or CartaLuma add to a journey, including title, optional details, and any date you provide.
• Notice-to-journey connections: links between a saved notice and a journey. These connections are only created when you confirm them. CartaLuma will never silently attach a notice to a journey.
• Companion memory: a small profile (currently your stated goal and lightweight preferences) used only to make explanations, reminders, and updates more relevant to you.

You are in control of this data at all times:

• You can review, edit, or remove individual timeline items, disconnect a notice from a journey, or delete an entire journey from the Journey page.
• You can review, correct, or clear your companion memory from Settings → Companion memory.
• Clearing your companion memory does not delete your saved notices, your journeys, or your account. It only resets the personalization profile.
• Deleting your account from Settings → Account permanently removes your journeys, timeline items, notice-to-journey links, and companion memory, along with your other CartaLuma data.

We do not sell journey or companion memory data, and we do not use it for advertising or behavioral targeting. This data is used only to operate the service for you.