Introduction

Ludata is a web-based software-as-a-service (SaaS) platform provided by Lucisun. This Privacy Policy explains what information we collect through the Ludata application, how we use and protect that information, and what rights you have regarding your personal data. It applies when you access the Ludata web application (and any related interfaces such as APIs or data dashboards associated with Ludata). Protecting your privacy and personal information is one of our top priorities. If you have any questions about this Policy or how Lucisun handles your data, please contact us using the details in the Contact Us section below.

Types of Data We Collect

When you use Ludata, we collect several types of data to provide and improve our services. We only collect data that is necessary for the purposes described in this Policy:

• Account Information: When you register an account on Ludata, we collect personal identifiers such as your name and email address. If you create an account on behalf of a business or organization, we may also collect your company/organization name and related billing details (e.g., VAT number). You will also create login credentials (such as a password) to secure your account.
• Contact and Profile Details: You may choose to provide additional contact information or profile details (e.g., phone number, job title). Providing this information is optional, but it can help us communicate with you and personalize your experience.
• Site & Geolocation Data: Ludata is designed to work with solar energy site data. You may input geographic information (latitude/longitude or address) of a site, upload measurement datasets, or enter PV system parameters. This site and geolocation data is stored within your account to enable analysis. While this data typically does not identify an individual, we treat it as part of your account data and protect it accordingly.
• Usage Logs and Technical Data: Our systems automatically record certain technical information when you use Ludata (e.g., IP address, browser/OS, device type, referring pages, timestamps, actions taken). We may also collect general location information inferred from your IP (such as city/country). These usage logs help us troubleshoot, secure the platform, and understand how users interact with Ludata.
• Cookies and Session Data: We use cookies and similar technologies to keep you logged in and to remember preferences (see Cookies and Analytics below). Aside from authentication/session cookies, our analytics tooling does not use cookies.
• Communications: If you contact Lucisun for support or feedback regarding Ludata, we collect the information you provide (e.g., name, contact details, and message content) to respond and resolve issues.

We do not collect special categories of personal data via Ludata and the platform is not intended for children (see Children’s Privacy).

How We Use Your Data

We use the information collected through Ludata for the following purposes:

• Provide and Operate the Service: Create/manage accounts, authenticate logins, and deliver core Ludata functionality (analyses, simulations, reports).
• Communicate with You: Send essential, transactional emails (account activation, verification, password resets, service notices) via Brevo; respond to support requests.
• Improve and Customize: Analyze de-identified usage to troubleshoot, optimize UX, and develop new features; use anonymized/aggregated insights to enhance algorithms.
• Ensure Security: Monitor logs and technical signals to detect fraud/misuse and protect accounts and systems.
• Legal & Compliance: Enforce terms, comply with laws, retain required records.
• Optional Marketing: Only with your prior consent; you can opt out anytime. Service-critical emails will still be sent.

Third-Party Service Providers (Data Processors)

To operate Ludata efficiently, Lucisun relies on a few trusted service providers. They act as data processors and are bound by strict contractual obligations:

• Hetzner (Hosting & Databases): Ludata’s application servers and primary databases are hosted on Hetzner’s secure EU infrastructure. All Ludata data (account, site, logs) resides in Europe.
• DigitalOcean (Supplementary Storage/Infra): Additional storage/backups run on DigitalOcean with data located in EU regions. We have a DPA and Standard Contractual Clauses (SCCs) in place.
• Brevo (Email): Transactional/operational emails are sent via Brevo (France/EU). We share only what’s necessary (name, email, message content) for delivery; Brevo processes it solely under our instructions.
• Umami (Analytics Software): Self‑hosted by Lucisun in the EU; no external analytics provider receives user data.

We do not share your personal data with third parties for their own marketing. Other disclosures occur only when required by law, to our confidential advisors, or in a business transfer, in which case the commitments of this Policy will continue.

Children’s Privacy

Ludata is intended for adult professional use and is not directed to children under 16. We do not knowingly collect data from children. If we learn that a minor has provided personal data, we will delete it and terminate the account. Jurisdiction‑specific age thresholds (e.g., 13) are respected.