This policy explains how Lemirai collects, uses and protects personal information when you visit the website or order a personalised physical book.
1. Data controller
The controller is Carles Angles Fors, trading as Lemirai, at Passeig de Manuel Girona 46, 08034 Barcelona, Spain. Contact lemirai.shop@gmail.com.
2. Information we collect
We may collect:
- Order details, selected product format and quantity.
- Name, email address and phone number.
- Shipping address.
- Photos uploaded to create the personalised book.
- Technical security data such as IP address, browser and request time.
Card details are processed by Stripe. Lemirai does not store complete card numbers.
3. How we use information
- To take payment, create, print and ship the order.
- To turn uploaded photos into colouring pages.
- To send essential production and tracking updates.
- To provide support, prevent fraud and protect the service.
4. Customer photos
Uploaded photos are used only to create and support the customer's book. They are not sold, used for advertising or reused for another customer. Access is restricted to the automated production system and authorised support when needed to resolve a problem.
5. Retention and deletion
Unpaid uploads are deleted after the abandoned-checkout retention period. Photos for completed orders are retained for up to 30 days to support production issues or reprints and are then deleted automatically. Generated production files may be retained for up to 90 days before automatic deletion. Encrypted or restricted backup copies expire through the separate backup retention cycle. Financial and order records may be retained longer where legally required.
6. Service providers
Data is shared only where necessary with providers that operate hosting, payment, image processing, printing, delivery and transactional email. These providers may process data in other countries under their own data-protection obligations.
7. Security
Lemirai uses HTTPS, private storage, signed webhooks, access tokens, restricted administrative access, backups and automatic deletion controls. No internet service can guarantee absolute security.
8. Aggregate analytics
Lemirai counts page views in its own database without advertising trackers, persistent visitor identifiers or analytics cookies. A short-lived, keyed network-address hash is used only to limit abusive request volume and is automatically removed.
9. Your rights
Depending on your location, you may request access, correction or deletion of personal data. Contact lemirai.shop@gmail.com.
10. Changes and contact
This policy may be updated when the service or legal requirements change. Questions can be sent to lemirai.shop@gmail.com.
