Privacy Policy

Privacy Policy

Last updated November 2025

Thank you for choosing to be part of our community at Luminocity AG, doing business as GeoVision (“GeoVision”, “we”, “us”, “our”). We are committed to protecting your personal information and your right to privacy. We will process your data strictly in accordance with applicable data protection laws, and we have not and will not sell your personal data. If you have any questions or concerns about this privacy notice or our practices regarding your personal information, please contact us at info@geovision.cloud, or support@geovision.cloud.

When you visit our websites:

* https://geovision.cloud

* https://app.geovision.cloud

* https://dev.geovision.cloud

(the “Websites”), and more generally, use any of our services (the “Services”, which include the Websites), we appreciate that you are trusting us with your personal information. We take your privacy very seriously. In this privacy notice, we seek to explain to you in the clearest way possible what information we collect, how we use it, and what rights you have in relation to it. We hope you take some time to read through it carefully, as it is important. If there are any terms in this privacy notice that you do not agree with, please discontinue the use of our Services immediately.

This privacy notice applies to all information collected through our Services (which, as described above, includes our Websites), as well as any related services, sales, marketing, or events.

Please read this privacy notice carefully as it will help you understand what we do with the information that we collect.

1. VISITING OUR WEBSITES

Short version: Some information — such as your Internet Protocol (IP) address and/or browser and device characteristics — is collected automatically when you visit our Websites.

We automatically collect certain information when you visit, use, or navigate the Websites.
The information we collect includes:

Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Websites, and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type and settings and information about your activity on the Websites (such as the date/time stamps associated with your usage, pages and files viewed, searches and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called ‘crash dumps’) and hardware settings).

Device Data. We collect device data such as information about your computer, phone, tablet, or other device you use to access the Websites. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.

We process your data to enable your use and the failure-free operation of our Websites, to provide information on our company, products, and services, and to protect our IT systems from attacks and misuse. The processing is based on our and our website visitors’ legitimate interest in providing and ensuring the secure use of our websites and systems (Art. 6(1)(f) GDPR and, where applicable, on the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

For the provision of our Websites, we use UpCloud Ltd (Aleksanterinkatu 15 B, 7th floor, 00100 Helsinki, Finland) with the data being hosted in their EU datacenter. To ensure the safety of your data, we have entered into a data processing agreement with this Hosting Provider which will only process your data in accordance with our instructions.

When you share personal information (for example, by posting comments, contributions, or other content to the Websites) or otherwise interact with public areas of the Websites, such personal information may be viewed by all users and may be publicly made available outside the Websites in perpetuity. If you interact with other users of our Websites, these users will see your name, profile photo, and descriptions of your activity. Similarly, other users will be able to view descriptions of your activity, communicate with you within our Websites, and view your profile.

Your data will be deleted after 5 years, unless we are under a legal obligation to further store your data.

2. CONTACTING US

Short version: We process the data you provide when you contact us to answer your request

If you have any questions or requests, please do not hesitate to contact us. When you contact us, e.g. via the contact form on our Website, we will process the following personal data that you have provided when contacting us:

Your contact details (e.g., email address, name, telephone number) and other data, depending on the type of information provided by you in your request.

We process your data to answer your questions, to respond to your request and to process your matter. While you are under no statutory or contractual obligation to provide us with your data, we will not be able to respond to your request or to process your matter without it.

We process your data to pursue our legitimate interests in handling your request and providing you with the best possible service (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

We will delete your personal data two years following the completion of your enquiry, unless we are legally obliged to store it for a longer period.

3. REGISTERING ON OUR WEBSITE; USER ACCOUNTS

Short version: We process your data to enable you to open a user account with us.

When you register on our Websites and create a user account, we will process the following data:

* Name

* Email address

* Password

To verify your user account, we use a double opt-in procedure. You will receive an email requesting confirmation of your request to create a user account. As soon as we receive your confirmation, we will verify your account.

We process your data to enable and facilitate the creation and log in of your account (Art. 6(1)(b) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

While you are under no statutory or contractual obligation to provide us with your data, we will not be able to offer you a registration without it.

We will keep your data for as long as you have an active user account with us. If you decide to delete your account, we will delete your personal data, including login and project data unless we are legally obliged to further store it.

4. PROVISION OF OUR PRODUCT

If you are working on a project using one of our products, certain personal data of you can be linked to this project. This might include:

* Name

* Username

* Email address

* Company

* Job title

* Log and Usage Data (as described above)

* Device Data (as described above)

* IP-Address

We process your data to provide you with our products if you enter into a contract with us as an individual (Art. 6(1)(b) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

In all other cases — for example, if you enter into a contract with us on behalf of a company, such as your employer — we process your data based on our legitimate interest in providing our products and the legitimate interest of third parties in purchasing and using our products (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

While you are under no statutory or contractual obligation to provide us with your data, we will not be able to offer you a registration without it.

Please note that we provide some components of our product as the controller under data protection law (e.g. when we process your data for licence management) and others as the data processor (e.g. if we store or create project data on your behalf). Details can be found in our data processing agreement.

For the provision of our Websites, we use UpCloud Ltd (Aleksanterinkatu 15 B, 7th floor, 00100 Helsinki, Finland) with the data being hosted in their EU datacenter. For transactional emails (such as password resets, account verifications, and important service notifications), we use our own mail server operated under the domain mail.luminocity.ch, which is fully managed and maintained by Luminocity.

We will keep your data for as long as you have an active user account with us. If you decide to delete your account, we will delete your personal data, including project data unless we are legally obliged to further store it. If multiple users are assigned to a project, we will only delete project data if all relevant users delete their accounts. Apart from that, we delete database backups after 7 days, log messages after 10 days and critical log messages after 30 days.

5. TRACKING THE USE OF OUR PRODUCT

Mixpanel:

If you use our products, we use Mixpanel, a service provided by Mixpanel, Inc., Ferry Plaza, San Francisco, CA 94105, USA, to track the usage of our products and user activity. In this context, we may process the following data:

* Name of user

* E-mail address

* Use of product and product settings

* Manager installed

* Connectors used

* User interface settings

* Actions taken, including timestamps

* Operating system

* Browser and browser version

* User role

* Country

* Region

* City

* Company

* Time zone

* Server used

We process this data to identify defects and to continuously improve and enhance our product offerings. The legal basis for this processing is our legitimate interest in maintaining and optimizing our products and providing you with the best possible service (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

Mixpanel may process personal data in the United States. We ensure an adequate level of data protection through Mixpanel’s certification under the EU–U.S. Data Privacy Framework or, where applicable, by using the European Commission’s Standard Contractual Clauses. Where Swiss law applies, we rely on the same safeguards recognized under the Swiss Federal Act on Data Protection (FADP) to ensure adequate protection of personal data transferred abroad.

Your data will be deleted after five years, unless we are legally required to retain it for a longer period.

Google Anlytics:

If you use our website, we use Google Analytics, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), to analyze the use of our website and improve its performance. In this context, we may process the following data:

* IP address (in anonymized form)

* Device and browser information (type, version, operating system)

* Referrer URL and pages visited

* Time and duration of visit

* Interactions on the website (e.g., clicks, scrolls, navigation paths)

* Approximate geographic location (country, region)

Google Analytics uses cookies or similar technologies to collect this information. The data generated by these tools may be transferred to and processed by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We ensure that an adequate level of data protection is maintained through Google’s certification under the EU–U.S. Data Privacy Framework or, where applicable, through the use of the European Commission’s Standard Contractual Clauses. For transfers from Switzerland, the same safeguards under the Swiss Federal Act on Data Protection (FADP) are applied.

The processing of personal data in connection with Google Analytics is based on your consent (Art. 6(1)(a) GDPR and, where applicable, your consent under the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP). You can withdraw your consent at any time via the cookie banner or by adjusting your browser settings.

6. NEWSLETTER

Short version: We process your personal data only with your consent to provide you with information on our company and our products and Services

If you express an interest in obtaining information about us or our products and Services, you can subscribe to our newsletter on our Websites. In such case, we will process the following data about you to provide you with information about us or our products and Services:

* Email address

We will only process your data if you have given us your consent (Art. 6(1)(a) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

You can withdraw your consent at any time by sending us an email to info@geovision.cloud, or support@geovision.cloud, or clicking the unsubscribe link included in every newsletter. Please note that the withdrawal shall only be effective for the future. Processing that occurred before the withdrawal shall not be affected.

To confirm your subscription of our newsletter, we use a double opt-in procedure. You will receive an email requesting confirmation of your request to receive our newsletter. As soon as we receive your confirmation, we will start providing you with our newsletter.

While you are under no statutory or contractual obligation to provide us with your data and your consent, we will not be able to provide our newsletter without it.

We delete your data if you withdraw your consent, unless we are legally obliged to further store it.

For sending our newsletters, we use our own mail server under the domain mail.luminocity.ch, fully managed and maintained by Luminocity. Your personal data will only be processed by us and used solely to send newsletters you have subscribed to. We take all necessary technical and organizational measures to ensure the security and confidentiality of your data.

7. CUSTOMER AND BUSINESS PARTNER RELATIONSHIPS

Short version: We process your personal data to establish and maintain a business relationship with you or the company you work for.

To establish and maintain our business relationships with our business partners (e.g., suppliers and other service providers) and to establish and fulfil contracts we process personal data of our business partners and their employees and representatives.

The personal data our business partners provide to us can include, e.g.,

* Title

* Name

* Email address

* (Business) Address

* Phone number

* Information on professional tasks, company affiliation and position

* Bank details

We process such personal data to establish and maintain a relationship with our business partners. This processing is based on our and our business partners’ legitimate interest in establishing and maintaining business relationships (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

Furthermore, we may process your data to conclude and perform contracts with you or the company you work for. If you enter into a contract with us as an individual, or we take steps at your request prior to entering into a contract, the legal basis for processing is Art. 6(1)(b) GDPR and, where applicable, consent or other lawful grounds under Art. 6 FADP.

In all other cases — for example, when we enter into a contract with the company you work for — we process your data based on our and our business partners’ legitimate interests in concluding and fulfilling contracts (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

While you are under no statutory or contractual obligation to provide us with your data, we will not be able to establish or maintain a business relationship or enter and perform contracts with you or your company without it.

We will store your data for the duration of our business relationship / the contractual term and for additional four years, unless we are legally obliged to store it for a longer period.

8. COOKIE, PIXELS OR BEACON INFORMATION

On our Websites, we might use Cookies, Pixels, or comparable technology to provide our Websites and analyse your use of our websites.

9. LEGAL REQUESTS AND COOPERATION WITH AUTHORITIES

We may process your data if this is necessary to comply with legal obligations or requests, for example from courts or authorities (such as when we receive a subpoena or other legal demand). In such cases, we may need to review the data we hold to determine how to respond appropriately.

The specific data we process depends on the nature of the request and could potentially include all data we hold about you as described in this privacy notice. However, we will only process the data to the extent necessary to fulfil the respective legal requirement.

The legal basis for this processing is compliance with legal obligations (Art. 6(1)(c) GDPR and, where applicable, Art. 6(1) FADP). In addition, we may process your data based on our legitimate interest in cooperating with authorities and complying with legal requests, as well as for the establishment, exercise, or defence of legal claims (Art. 6(1)(f) GDPR and, where applicable, in accordance with the principles of lawfulness, good faith, and proportionality pursuant to Art. 6 FADP).

Depending on the specific request, we may share your data with courts, authorities, parties to legal proceedings, and/or legal advisors.

We will retain your data for the duration of the respective legal proceeding, unless we are required by law to store it for a longer period.

10. HOW DO WE KEEP YOUR INFORMATION SAFE?

Short version: We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security, and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Websites is at your own risk. You should only access the Websites within a secure environment.

11. DO WE COLLECT INFORMATION FROM MINORS?

Short version: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18 years of age. By using the Websites, you represent that you are at least 18. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at info@geovision.cloud, or support@geovision.cloud.

12. WHAT ARE YOUR PRIVACY RIGHTS?

Sort version: In some regions, such as the United Kingdom, the European Economic Area, and Switzerland, you have rights that allow you greater access to and control over your personal information. You may review, change, or terminate your account at any time.

You have the right as an individual to access your personal data we hold about you and make corrections if necessary. You also have the right to withdraw any consent you have previously given to us and ask us to erase information we hold about you. You can also object to us using your personal information (where we rely on our business interests to process and use your personal information). Please note, however, that this will not affect the lawfulness of the processing before its withdrawal or objection, nor will it affect the processing of your personal information conducted in reliance on other lawful processing grounds (Art. 6(1)(a), (b), (f) GDPR and, where applicable, Arts. 6–7 FADP).

You have a number of rights in relation to your personal information under data protection law. In relation to most rights, we will ask you for information to confirm your identity and, where applicable, to help us search for your personal information. Except in rare cases, we will respond to you within 1 month after we have received any request (including any identification documents requested) (Art. 12(3) GDPR and, where applicable, Art. 27 FADP).

In the UK, the European Economic Area, and Switzerland these rights include:

You have the right to:

* Ask for a copy of the information that we hold about you (Art. 15 GDPR; Art. 8 FADP);

* Correct and update your information (Art. 16 GDPR; Art. 5 FADP);

* Withdraw your consent (where we rely on it) (Art. 7 GDPR; Arts. 6–7 FADP);

* Object to our use of your information (for direct marketing, or where we rely on our legitimate interests to use your personal information) provided we do not have any continuing lawful reason to continue to use and process the information. When we do rely on our legitimate interests to use your personal information for direct marketing, we will always comply with your right to object (Art. 21 GDPR; Arts. 6, 6a FADP);

* Erase your information (or restrict the use of it), provided we do not have any continuing lawful reason to continue to use and process that information (Art. 17 GDPR; Arts. 6, 6a FADP);

* Transfer your information in a structured data file (in a commonly used and machine-readable format), where we rely on your consent to use and process your personal information or need to process it in connection with your contract (Art. 20 GDPR; Art. 7 FADP).

You also have the right not to be subject to purely automated decisions (including profiling) where this has a significant effect on you. We do not envisage that any decisions will be taken about you in this way; however, we will update this statement if this changes (Art. 22 GDPR; Art. 7 FADP).

If you are a resident in the European Economic Area or Switzerland and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here:

* EEA: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm

* Switzerland: https://www.edoeb.admin.ch/edoeb/en/home.html

If you are a resident in the UK, the contact details for the data protection authority are available here: https://ico.org.uk/global/contact-us/.

If you have questions or comments about your privacy rights, you may email us at info@geovision.cloud or support@geovision.cloud.

Account Information:

If you would at any time like to review or change the information in your account or terminate your account, you can:

Contact us using the contact information provided.

Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, there may be exceptions in which we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our Terms of Use, and/or comply with applicable legal requirements (Art. 17 GDPR; Arts. 6, 6a FADP).

Opting out of email marketing: You can unsubscribe from our marketing email list at any time by clicking on the unsubscribe link in the emails that we send or by contacting us using the details provided below. You will then be removed from the marketing email list — however, we may still communicate with you, for example to send you service-related emails that are necessary for the administration and use of your account, to respond to service requests, or for other non-marketing purposes. To otherwise opt-out, you may:

Contact us using the contact information provided.

Exercise of rights: You can exercise the above rights and/or manage your information by contacting us using the details below:

Luminocity AG

c/o Bovadis Partner Treuhand AG, Herrenacker 15, 8200 Schaffhausen, Switzerland

Email: info@geovision.cloud, or support@geovision.cloud

13. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. We currently respond to DNT browser signals that automatically communicate your choice not to be tracked online.

If you do not have a DNT feature enabled on your browser or mobile device you can opt out from tracking at the bottom of this page.

14. DO WE MAKE UPDATES TO THIS NOTICE?

Short version: Yes, we will update this notice as necessary to stay compliant with relevant laws and to reflect amendments to our business model and Services.

We may update this privacy notice from time to time. The updated version will be indicated by an updated “Revised” date and the updated version will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

15. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may email us at info@geovision.cloud, support@geovision.cloud, or by post to:

Luminocity AG

c/o Bovadis Partner Treuhand AG, Herrenacker 15, 8200 Schaffhausen, Switzerland

16. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances. To request to review, update, or delete your personal information, please submit a request form by contacting us. We will respond to your request within 30 days.