Privacy

StudyLumen Privacy Policy

StudyLumen is a supervisor-managed service. This policy explains the information handled by the StudyLumen Parent app, the StudyLumen Child app on a supervised Android device, the website, and the backend services that support them.

Last updated June 1, 2026

Who uses StudyLumen

An authorized supervisor creates the StudyLumen account and manages supervisor-created profiles plus enrolled supervised devices. The supervised user does not create a StudyLumen account. The StudyLumen StudyLumen Child is installed on a supervised device linked to a supervised profile to apply the settings selected by the supervisor.

Read the dedicated Children's Privacy Notice when a supervised user is a minor.

Supervisor account and subscription data

  • Supervisor account email address and display name.
  • Authentication information managed by Firebase Authentication. We do not store the supervisor's raw password.
  • Billing provider, subscription identifiers, subscription status, trial dates, and country-level billing region.
  • Consent records and guardian-attestation records where the applicable setup flow collects them.
  • Supervisor-device push-delivery token when notifications are enabled.

Supervised profile and Android device data

  • Supervisor-created profile display name or nickname, schedule timezone, and intended device-platform selection.
  • Supervised-device enrollment metadata, enforcement mode, device-timezone telemetry, device authentication-token hash, and raw push-delivery token needed to send sync messages.
  • Launcher-visible installed-app snapshots so the supervisor can choose which apps are available during supervised routines.
  • Supervisor-created policies, routines, allowed apps, allowed domains, and blocked categories.
  • Access requests, including the app package or domain requested by the supervised user, the requested duration, and the supervisor's decision.
  • Health, heartbeat, setup, and tamper-status information needed to show whether supervision is working.
  • For shared supervised devices, lending-mode status, selected profile, and session-expiry information.
  • Crash and error diagnostics. Release builds disable Sentry screenshot and view-hierarchy attachments.

Website identifiers

When a supervisor uses the website account surface, Firebase Authentication and App Check may use browser storage or identifiers needed for sign-in and security. If website checkout is offered and a supervisor opens it, Razorpay may set identifiers or cookies needed to complete checkout. StudyLumen does not use website identifiers for advertising or retargeting. Read the website identifier notice.

Processing that stays on the supervised device

  • Foreground-app detection is processed on the supervised Android device to apply blocking. StudyLumen does not upload a raw app-usage history.
  • Website filtering runs through a local Android VPN. StudyLumen does not upload bulk browsing history. Allowed DNS queries are sent to the device's configured DNS resolvers, with public fallback resolvers used if needed. A domain is sent to the backend only when needed for a specific supervisor-visible request or status workflow.
  • The Android notification-listener service is used for media-session pausing and does not read or store notification content.

How StudyLumen uses data

  • Authenticate the supervisor and protect the account.
  • Verify subscription entitlement and prevent duplicate billing.
  • Apply the supervisor's supervision settings on enrolled devices.
  • Send policy updates, access-request alerts, and health alerts.
  • Diagnose crashes, errors, tamper conditions, and setup problems.
  • Respond to support, access, correction, and deletion requests.

Service providers

StudyLumen uses service providers only where needed to operate the service:

  • Google Firebase and Google Cloud for authentication, database, backend functions, hosting, messaging, and App Check.
  • Google Play Billing and Play Integrity for Android purchases and anti-abuse attestation.
  • Adapty for mobile-subscription status management.
  • Sentry for crash and error diagnostics.
  • Razorpay for website billing if website checkout is offered.

No advertising or sale of supervised-user data

StudyLumen does not use supervised-device data associated with a supervised profile for advertising, behavioral advertising, or retargeting. The StudyLumen Child app does not include an advertising SDK and strips advertising-ID permissions. StudyLumen does not sell supervised-user personal information.

Storage, retention, and deletion

StudyLumen uses Firebase services for supervisor records, supervised-profile records, policy data, billing status, and push-token registration. Small local caches may also remain on the supervisor and supervised devices.

Application records currently remain until the supervisor deletes the supervised profile or account unless they are removed earlier for operational reasons. Short-lived shared-device setup and recovery tokens are valid for approximately five minutes. Before Android production launch, StudyLumen is implementing shorter automated retention schedules for request history, resolved tamper records, installed-app snapshots, and policy-version history. Payment processors may retain payment records according to their own terms and legal obligations.

Supervisor choices and requests

A supervisor can request access, correction, or deletion by contacting support@studylumen.com. Account deletion is also available inside StudyLumen Parent under Settings, or from the public account-deletion page. A supervisor may ask StudyLumen to stop further collection and delete a supervised user's information.