Privacy Policy

Last updated: March 19, 2026

1. Introduction

This Privacy Policy explains how Elevion, trading as LumenCore (“we,” “us,” or “our”), collects, uses, stores, and protects your personal data when you visit our website or use our services. We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable Dutch and European data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

  • Legal name: Elevion
  • VAT number: NL005292139B53
  • Email: [email protected]
  • Location: The Netherlands
  • Address: [Business address available upon request]

3. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Contact information: Name, email address, and any other details you provide via our contact form or affiliate application.
  • Usage data: IP address, browser type, device information, pages visited, and interaction data collected through cookies and similar technologies.
  • Transaction data: Payment information, order history, and product delivery details (processed securely through our payment provider).
  • Communication data: Records of correspondence when you contact us.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR Article 6:

  • Consent (Art. 6(1)(a)): For newsletter subscriptions and marketing communications.
  • Contract performance (Art. 6(1)(b)): To process your orders, deliver digital products, and provide requested services.
  • Legitimate interest (Art. 6(1)(f)): For website analytics, security, and improvement of our services.
  • Legal obligation (Art. 6(1)(c)): For tax records, invoicing, and regulatory compliance.

5. How We Use Your Data

  • To respond to inquiries submitted through our contact form
  • To process and deliver digital product purchases
  • To manage affiliate program applications
  • To improve our website, services, and user experience
  • To comply with legal and regulatory obligations
  • To protect against fraud and ensure security

6. Data Sharing

We do not sell your personal data. We may share your data with:

  • Payment processors: To securely process transactions (e.g., Mollie).
  • Hosting providers: For website hosting and data storage.
  • Legal authorities: When required by law or to protect our legal rights.

All third-party processors are bound by data processing agreements in compliance with GDPR.

7. Data Retention

We retain your personal data only as long as necessary for the purposes for which it was collected, or as required by law. Contact form submissions are retained for up to 2 years. Transaction records are retained for 7 years as required by Dutch tax law.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of access: Request a copy of your personal data.
  • Right to rectification: Request correction of inaccurate data.
  • Right to erasure: Request deletion of your data (“right to be forgotten”).
  • Right to restrict processing: Request limitation of data processing.
  • Right to data portability: Receive your data in a structured, machine-readable format.
  • Right to object: Object to processing based on legitimate interest.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at [email protected].

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.

9. Cookies

Our website uses cookies and similar technologies. For detailed information about the cookies we use and how to manage them, please refer to our Cookie Policy.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encrypted data transmission, secure server infrastructure, and regular security reviews.

11. International Transfers

Your data may be processed by service providers located outside the European Economic Area (EEA). In such cases, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

13. Contact

For any questions about this Privacy Policy or your personal data, contact us at: