Privacy Policy

This Privacy Policy explains how Lunevox (“Lunevox,” “we,” “us”) collects, uses, and protects personal information when you visit lunevox.com, book a discovery call, or otherwise interact with us. It applies to prospects, clients, and website visitors.

We comply with the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU General Data Protection Regulation (GDPR).

1. Controller

The data controller responsible for the processing described here is:

Lukas Aeberli, sole proprietor of Lunevox
Zurich, Switzerland
Email: lukas.aeberli@lunevox.com

2. Information we collect

We collect the following categories of data:

• Booking data. When you schedule a discovery call via Cal.com, we receive your name, email address, company, role, and any answers you provide to screening questions.
• Correspondence. When you email us or message us through other channels, we keep the content of your message and any attachments.
• Prospect data. For outbound outreach, we process business contact details (name, role, company, business email, public LinkedIn profile) from publicly available sources and contact-data providers. This applies to prospects we contact about our services.
• Usage data. When you visit lunevox.com, we collect anonymized analytics about page views, referrers, browser type, and approximate region. We do not use tracking cookies for advertising.
• Client engagement data. If you become a client, we process the information required to deliver our services under the agreed Statement of Work (e.g., ICP definitions, lead lists, campaign performance, CRM data).

3. How we use your information

We use personal data only to:

• Evaluate fit, schedule and conduct discovery calls
• Respond to inquiries and follow up on conversations
• Send relevant business communication to prospects who match our ICP
• Deliver, invoice, and manage client engagements
• Improve the website and understand which content is useful
• Meet legal, tax, accounting, and regulatory obligations under Swiss law

4. Legal basis

We process personal data on the following bases:

• Contract— processing necessary to deliver services you’ve engaged us for.
• Legitimate interest — for B2B outbound outreach to relevant prospects, for website analytics, and for protecting our business. You can opt out at any time.
• Consent— where you’ve given it (e.g., subscribing to a newsletter). You can withdraw consent at any time.
• Legal obligation — where Swiss law requires us to keep records.

5. Third parties and processors

We work with vetted service providers who process data on our behalf. These currently include:

• Cal.com— meeting scheduling
• Google Workspace— email, calendar, document storage
• Vercel— website hosting and analytics
• HubSpot, Notion— CRM and operational tools
• Smartlead, Instantly, Apollo, Clay — outreach and contact-data infrastructure (used for client campaigns under their Data Processing Agreements)
• OpenAI, Anthropic — AI infrastructure used for content generation and workflow automation
• Stripe— payment processing for clients

We do not sell personal data. We share it with these providers only as needed to deliver our services, and they are bound by contract to protect it.

6. International transfers

Some of our service providers are located outside Switzerland and the EEA (mainly in the United States). When data is transferred to such countries, we rely on the European Commission’s Standard Contractual Clauses, the Swiss-U.S. Data Privacy Framework, or equivalent safeguards permitted under the FADP and GDPR.

7. Data retention

We retain personal data only as long as needed for the purpose it was collected, or as required by Swiss law (Swiss accounting law requires 10 years for invoicing records). Discovery call data from prospects who don’t become clients is deleted after 24 months. Prospect outreach data is removed on request or after sustained non-engagement.

8. Your rights

Under the FADP and (where applicable) GDPR, you have the right to:

• Access the personal data we hold about you
• Have inaccurate data corrected
• Have your data deleted (right to be forgotten)
• Restrict or object to certain processing
• Receive your data in a portable format
• Withdraw consent at any time
• Opt out of marketing communication at any time
• Lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) or your local EU supervisory authority

To exercise any of these rights, email lukas.aeberli@lunevox.com. We respond within 30 days.

9. Cookies and analytics

lunevox.com uses Vercel Analytics, which collects anonymized traffic data without setting tracking cookies or fingerprinting visitors. We do not use third-party advertising cookies. If we add functional cookies in the future (e.g., for embedded video), we will display a cookie banner asking for consent.

10. Security

We protect personal data with industry-standard measures: encrypted transport (TLS), encrypted storage with our cloud providers, two-factor authentication on all administrative accounts, and access controls limited to what’s needed to deliver services. No system is fully secure, but we treat client and prospect data with the same care we’d expect from anyone handling ours.

11. Children’s privacy

Lunevox provides B2B services and does not knowingly collect data from anyone under 16. If you believe we have, contact us and we’ll delete it.

12. Changes to this policy

We may update this policy as our services evolve. Material changes will be posted on this page with an updated date. The version above always applies to your current interaction with Lunevox.

13. Contact

For any privacy question, data request, or concern, email lukas.aeberli@lunevox.com.