Privacy Policy

This Privacy Policy explains how 3LEV (“we”, “us”), the UK company that operates LunarPOS, handles information when you use our website and application. We act as a service provider (processor) for the customer data your shop stores in LunarPOS, and as a controller for the account information we collect directly from you.

Account information

• Your name, email address, and shop details when you register.
• Authentication data managed through our identity provider.
• Billing details processed by our payment provider (we do not store full card numbers).

Data your shop enters

• Customer contact details you add to fulfil repairs and sales.
• Repair tickets, inventory, and transaction records.
• Messages sent to customers via SMS or email through the Service.

Usage and device data

• Log data such as IP address, browser type, and timestamps.
• Diagnostic and performance information to keep the Service reliable.

• To provide, maintain, and improve the Service.
• To authenticate users and secure accounts.
• To send transactional notifications you or your shop trigger.
• To provide support and respond to your requests.
• To detect, prevent, and address fraud, abuse, or security issues.
• To comply with legal obligations.

We do not sell your data or your customers' data, and we do not use customer data you store in LunarPOS to advertise to you or your customers.

We share information only as needed to run the Service or as required by law:

• Sub-processors that host infrastructure, send SMS and email, or process payments, under contractual confidentiality and security obligations.
• Authorities when legally required, such as a valid subpoena or court order.
• A successor entity in the event of a merger, acquisition, or sale of assets, with notice to you.

We use technical and organizational measures appropriate to the risk, including encryption in transit, tenant isolation so each shop's data is logically separated, access controls, and audit logging of sensitive actions. No system is perfectly secure, so we also encourage strong passwords and device PINs.

We retain account and shop data for as long as your account is active. After closure, we retain data only as long as needed to comply with legal obligations, resolve disputes, and enforce agreements. You can export your data to CSV at any time before closing your account.

Under UK data protection law (UK GDPR and the Data Protection Act 2018), you may have rights to access, correct, export, or delete personal information, and to object to or restrict certain processing.

• Shop owners can manage most data directly inside the application.
• Customers of a shop should direct requests to the shop, which controls that data; we will assist the shop in responding.
• To exercise rights regarding the account information we control, contact us.
• You can complain to the UK Information Commissioner’s Office (ICO) if you believe your data has been mishandled.

We may process and store information in countries other than your own. Where we transfer personal data across borders, we use appropriate safeguards consistent with applicable law.

If you have questions about this policy or how we handle data, email contact@lunarpos.co.uk or reach us through the contact page. We aim to respond within one business day.