Privacy policy

Last updated: 02/01/2026

This Privacy Policy explains how Luminary Cards (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit or make a purchase from https://luminarycards.com (the “Site”).

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data Controller

Business name: Luminary Cards
Contact email: luminarycards@gmail.com

Luminary Cards acts as the data controller for personal data collected through the Site.

2. Personal Data We Collect

We may collect the following personal data: name, billing and delivery address, email address, phone number, order and transaction details, account information (if applicable), IP address, device, browser, usage data, and cookie or tracking data.

We do not store full payment card details. Payments are handled by third-party payment processors.

3. How We Use Your Data

We use personal data to process and deliver orders, take payments and prevent fraud, communicate order and account information, provide customer support, improve our website and services, and comply with legal and tax obligations.

Legal bases for processing include performance of a contract, legal obligation, legitimate interests, and consent where required.

4. Sharing Your Data

We do not sell personal data.

We may share personal data with payment processors, shipping and fulfilment providers, website hosting, analytics and email service providers, and legal or regulatory authorities where required by law.

All third parties are required to keep personal data secure and confidential.

5. International Data Transfers

Some service providers may process personal data outside the UK. Where this occurs, appropriate safeguards are used in accordance with UK GDPR.

6. Cookies

We use cookies and similar technologies to ensure site functionality and analyse performance. Where required by law, cookie consent is obtained.

You can control cookies through your browser settings.

7. Data Retention

Personal data is kept only for as long as necessary for the purposes set out in this policy, including legal, accounting, and tax requirements.

8. Your Rights

Under UK GDPR, you have the right to access your personal data, request correction or deletion, restrict or object to processing, request data portability, and withdraw consent at any time where applicable.

Requests can be made by emailing luminarycards@gmail.com.

You also have the right to complain to the Information Commissioner’s Office (ICO).

9. Children’s Data

The Site is not intended for children under 13 years of age. We do not knowingly collect personal data from children.

10. Security and Liability

We take reasonable technical and organisational measures to protect personal data. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

To the fullest extent permitted by law, we are not liable for unauthorised access to or loss of personal data beyond our reasonable control.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be posted on this page.