Lumen Datasets

Data protection

Privacy Policy

Last updated: 24 June 2026

This privacy policy explains how personal data is processed when you visit this website. This site is a marketing presence — it does not provide the Lumen Datasets data platform itself, and it does not process any patient or medical-imaging data. Terms used here have the meaning given to them in the EU General Data Protection Regulation (GDPR).

1. Controller

The controller responsible for data processing on this website is:

Lumen Datasets GmbH
[Street and number, Postal code, City], Germany
Email: hello@lumendatasets.com

Full company details are listed in our Impressum. The controller is the natural or legal person who alone or jointly determines the purposes and means of the processing of personal data.

2. Data protection officer

Contact for our data protection officer: [DPO name and contact, if appointed]. If no data protection officer is legally required, please direct all data-protection enquiries to the controller above.

3. Hosting

This website is hosted on Cloudflare Pages, provided by Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA). When you access the site, Cloudflare processes connection data (see server log files below) as our processor in order to deliver the site securely and reliably. A data processing agreement (Art. 28 GDPR) is in place, and transfers to the USA are covered by the EU Standard Contractual Clauses and Cloudflare's certification under the EU–US Data Privacy Framework. The legal basis is our legitimate interest in a secure, performant presentation of our website (Art. 6 (1)(f) GDPR).

4. Data we process

Server log files

Our hosting provider automatically collects and stores information in server log files that your browser transmits, namely: browser type and version, operating system, referrer URL, host name of the accessing device, time of the server request, and IP address. This data is not merged with other data sources. It is processed on the basis of Art. 6 (1)(f) GDPR — our legitimate interest in the technically error-free presentation and security of our website.

Contacting us

If you contact us by email (e.g. via the addresses partners@lumendatasets.com, data@lumendatasets.com or hello@lumendatasets.com), the details you provide will be stored in order to handle your enquiry and any follow-up questions. The legal basis is Art. 6 (1)(b) GDPR where your request relates to a (pre-)contractual measure, and otherwise our legitimate interest in answering enquiries (Art. 6 (1)(f) GDPR). This data is deleted once it is no longer required and there are no statutory retention obligations.

Local storage

To remember your chosen language (English or German) we store a single value (cr_lang) in your browser's local storage. This is strictly necessary for the functioning of the language preference, is not a tracking cookie, is never transmitted to us, and can be cleared at any time via your browser settings.

No tracking or analytics

This website does not use advertising cookies, analytics, social-media plug-ins, or third-party tracking. No usage profiles are created.

5. Your rights

Under the GDPR you have the right, within the statutory limits, to:

  • access the personal data we hold about you (Art. 15);
  • rectify inaccurate data (Art. 16);
  • erase your data (Art. 17);
  • restrict processing (Art. 18);
  • data portability (Art. 20);
  • object to processing based on legitimate interest (Art. 21); and
  • withdraw consent at any time with effect for the future, where processing is based on consent.

To exercise any of these rights, contact us at hello@lumendatasets.com. You also have the right to lodge a complaint with a supervisory authority, in particular in the EU member state of your residence, place of work, or the place of the alleged infringement.

6. Data security

This site uses TLS (HTTPS) encryption for all connections to protect the transmission of your data. We apply appropriate technical and organisational measures to protect personal data against loss, manipulation, and unauthorised access.

7. Changes to this policy

We may update this privacy policy to reflect changes to our website or to legal requirements. The current version always applies, as indicated by the "last updated" date above.

This privacy policy is a draft, adapted from a standard open-source GDPR privacy-policy template and tailored to this website's actual processing. It must be reviewed and completed (placeholders shown as […]) by qualified counsel before publication, and must be expanded if the website later adds forms, analytics, or other processing.