Payments DB
Payments DB
...
Legal

Privacy Policy

Last updated: February 2026

Who We Are

Payments DB is operated by Pretzel AI GmbH, Jungstraße 12, 10247 Berlin, Germany (HRB 260412 B). Questions? Email us at help@getlumen.dev.

What We Collect

We collect what's needed to provide the service:

  • Account info: Your Stripe account ID, OAuth tokens, and billing details
  • Stripe data: A copy of your Stripe data (customers, invoices, subscriptions, etc.) stored in your database
  • Technical logs: IP addresses, timestamps, and error logs for debugging

Your original data stays in Stripe — we only create a copy.

How We Use It

We use your data to run the service: syncing data, authenticating you, processing payments, providing support, and improving the product. We don't sell your data.

Who Can Access It

Our team may access your data to provide support, fix issues, improve the service, and comply with legal requirements. We don't share your data with third parties for their own purposes.

Our Providers

We use Supabase for database hosting and Stripe for authentication and payments. They process data on our behalf under data processing agreements.

Security

Each customer gets an isolated database. Credentials are encrypted. Connections use TLS. That said, no system is 100% secure — we do our best but can't guarantee absolute security.

Data Retention

Your synced data stays until you cancel or disable sync. Account data is deleted within 30 days of closure. Billing records are kept 7 years (tax law). Logs are kept 90 days.

Your Rights (GDPR)

You can access, correct, delete, or export your data. You can object to processing or withdraw consent by canceling. Email us at help@getlumen.dev — we'll respond within 30 days.

You can also complain to a data protection authority. In Germany, that's the Berliner Beauftragte für Datenschutz und Informationsfreiheit.

Deleting Your Data

Click "Disable sync" in the Stripe Dashboard to delete your database. Canceling or uninstalling also triggers deletion.

Data Transfers

Your data may be processed outside the EU. We use Standard Contractual Clauses where required.

Cookies

We only use essential cookies for authentication. No tracking or ads.

Breaches

If there's a data breach affecting you, we'll notify you and relevant authorities as required by law.

Changes

We may update this policy. Check the date at the top.