App & Portal
Terms of use.

App vs Portal.

These Terms cover two distinct products. Most clauses apply to both — where they differ, we say so.

Who can sign up.

You must be at least 18 years old and capable of forming a binding contract. Each authorized human gets one account; shared logins are prohibited. You're responsible for keeping your credentials confidential and for everything that happens under your account; we recommend a unique passphrase and MFA where supported. If you suspect compromise, notify help@stacklumen.com immediately — we are not liable for activity occurring prior to your notification.

Authority within client organizations

For Portal access, the primary contact named in your MSA or SOW is treated as your account administrator and may add, remove, or modify teammate access. Stacklumen relies on administrator instructions in good faith and is not responsible for resolving internal authority disputes within your organization. Access is provided at our discretion; we may decline, suspend, or revoke any account where reasonably necessary to protect the products, users, our team, or our business.

Beta means beta.

The Stacklumen App is currently provided as a Beta. That status carries specific implications you should understand before relying on it.

Use it as intended.

You commit to:

• Use the products only for their intended purposes and in compliance with all applicable laws.
• Provide accurate information about yourself and your organization, and update it when it changes.
• Maintain the confidentiality of any non-public information shared through the products, including draft work, internal pricing, and project timelines.
• Treat Stacklumen team members and other users with basic professional respect. Harassment, abuse, or threats result in immediate termination.
• Use only the access provisioned to you. Don't attempt to view or modify other accounts, projects, or files you weren't granted access to.

What you can't do.

Violations result in immediate suspension or termination, plus potential legal action.

• Use the products for unlawful, fraudulent, deceptive, or harmful purposes.
• Upload content that is defamatory, obscene, threatening, hateful, harassing, or that infringes third-party rights.
• Introduce malware, viruses, ransomware, worms, trojans, or any other malicious code.
• Probe, scan, or test the vulnerability of the products without prior written permission.
• Bypass, disable, or interfere with security, authentication, or rate-limiting features.
• Attempt to access accounts, data, or systems you have not been authorized to access.
• Reverse-engineer, decompile, or disassemble the products, except where applicable law expressly permits despite this limitation.
• Use automated agents (bots, scrapers, crawlers) to access the products or extract data, except for documented and explicitly permitted integrations.
• Send unsolicited commercial messages, spam, or phishing through the products.
• Resell, sublicense, rent, or commercially exploit access to the products without our prior written consent.
• Remove, obscure, or alter any proprietary notices, watermarks, or branding within the products.
• Violate any applicable export-control, sanctions, or other international-trade laws.

What we collect & why.

We collect what we need to run the products. We do not sell your personal information.

How we use it

• Service delivery. Run the App and Portal, deliver project updates, route notifications.
• Account & access management. Authenticate you, control what you can see, enforce these Terms.
• Customer support. Respond to questions, debug issues, recover access.
• Security & abuse prevention. Detect unauthorized access, fraud, or violations.
• Product analytics. Understand which features are used and where they break, in aggregate where possible.
• Operational communications. Send transactional messages: billing, status, security alerts, terms updates. You can't opt out of these while you have an active account.
• Marketing & case studies. Reference your organization or engagement only with your explicit, advance consent.
• Legal compliance. Meet our obligations under applicable law.

Who else touches your data.

We use trusted third-party services to operate the products. They process your data on our behalf, under contract, with confidentiality and security obligations matching ours.

Sub-processors we currently use

• Hosting & infrastructure. Cloud hosting, edge delivery, and storage providers (e.g., Vercel, Cloudflare, AWS-region providers as deployed).
• Database & auth. Managed Postgres and authentication services (e.g., Supabase).
• Payments. Stripe handles payment cards, invoicing, and tax processing.
• Email. Transactional email delivery (e.g., Postmark, Resend, or SendGrid as deployed).
• Analytics & monitoring. Privacy-respecting product analytics and crash reporting (e.g., Sentry).

We may add, remove, or change sub-processors over time. The current authoritative list is available on request to info@stacklumen.com.

Other sharing

We may also share data with (a) legal authorities when compelled by valid process, (b) professional advisors (lawyers, accountants, auditors) under confidentiality, and (c) a successor entity in a merger, acquisition, or asset sale — with notice of any material privacy change.

No sale of personal information

Stacklumen does not sell your personal information for monetary or other valuable consideration. We do not engage in cross-context behavioral advertising.

How long, & what you can ask.

We keep your data while your account is active and for a limited tail afterward.

Your rights

• Access. Get a copy of the personal data we hold about you.
• Correction. Ask us to fix data that is inaccurate or out of date.
• Deletion. Ask us to delete your personal data, subject to legal-hold exceptions above.
• Export. Get your submitted content in a machine-readable format.
• Restriction. Ask us to limit how we process your data while we resolve a dispute.
• Withdrawal of consent. Withdraw any consent you've given us — for example, marketing references.
• Objection. Object to our processing where it's based on legitimate interests.
• Complaint. Lodge a complaint with your local data-protection authority.

To exercise these rights, email help@stacklumen.com. We respond within 30 days and may need to verify your identity first.

Provided "as is."

We do our best, but we don't warrant the products are perfect, always available, or fit for any specific use.

In particular, we do not warrant that

• The products will be error-free, uninterrupted, secure, or free of harmful components.
• Defects will be discovered or corrected within any specific timeframe.
• The products will meet your specific requirements or expectations.
• Data stored in the products will be preserved indefinitely or remain accessible after termination.
• Any results obtained through use of the products will be accurate or reliable.

Caps and exclusions.

A monetary cap and exclusion of indirect damages — standard SaaS terms, enforceable to the extent law allows.

Force majeure

Neither party is liable for delays or failures from causes beyond its reasonable control — natural disasters, pandemics, government actions, war, terrorism, cyberattacks beyond reasonable safeguards, infrastructure failures, or third-party service disruptions.

How accounts end.

Either of us can end this. Here's how, and what happens next.

Termination by you

Close your account anytime by emailing help@stacklumen.com or using the in-product close-account flow where available. Closure does not relieve obligations incurred prior to closure — including outstanding invoices.

Termination or suspension by Stacklumen

Stacklumen may suspend or terminate your access at any time, with or without prior notice, for reasons including:

• Material breach of these Terms or any related agreement.
• Non-payment of invoices for active engagements.
• Conduct toward Stacklumen team members or other users that we determine is abusive, threatening, or otherwise unacceptable.
• Suspected security incidents originating from your account.
• Legal or regulatory requirement.
• Discontinuation of the App or Portal as a product (we will give reasonable advance notice where feasible).

Effect of termination

• Your access to the products is revoked immediately.
• Your data is handled per the deletion timeline in section 04.03, and you may request a machine-readable export within 30 days.
• Outstanding payment obligations and any provisions that by their nature survive — IP, releases, limitations of liability, governing law — remain in effect.

When we update these terms.

We will. Software, regulations, and language all change.

We may update these Terms from time to time. When we do, we will: (a) post the updated Terms with a new effective date, (b) notify active account holders by email or in-product banner for material changes, and (c) where required by law, give you a reasonable period to review and reject the changes before they take effect.

Continued use after the new effective date constitutes acceptance. If you do not agree, your remedy is to stop using the products and close your account before that date.

Material changes include changes that significantly expand our rights, reduce yours, or alter how we handle your data. Non-material changes — clarifications, formatting improvements, sub-processor swaps, contact-info updates — may take effect on posting without specific notice.

Where we resolve things.

Stacklumen LLC is a Kentucky-organized entity. Disputes are resolved there.

Governing law & venue

These Terms are governed by the laws of the Commonwealth of Kentucky, USA, without regard to conflict-of-laws principles. The UN Convention on Contracts for the International Sale of Goods does not apply. Legal actions shall be brought exclusively in state or federal courts in Fayette County, Kentucky, and you consent to their personal jurisdiction.

Informal resolution first

Before filing any formal action, you agree to contact us at help@stacklumen.com with a description of the dispute and proposed resolution. Both parties commit to engaging in good-faith discussion for at least 30 days before initiating litigation. Either party may seek injunctive or other equitable relief at any time without first engaging informal resolution, where necessary to prevent irreparable harm.

Entire agreement, severability, no waiver, assignment

These Terms — together with any MSA, SOW, NDA, or signed agreement between you and Stacklumen — constitute the entire agreement regarding the products and supersede prior or contemporaneous agreements on the same subject. If any provision is found unenforceable, it shall be modified to the minimum extent necessary to make it enforceable, and the remaining provisions remain in full force. Our failure to enforce any right or provision is not a waiver. You may not assign these Terms without our prior written consent; Stacklumen may assign in connection with a merger, acquisition, sale of assets, or by operation of law. Nothing creates a partnership, joint venture, agency, or employment relationship between you and Stacklumen.

Notices

Notices to Stacklumen must be sent to info@stacklumen.com. Notices to you may be sent to the email address on file or posted in-product, and are effective on receipt for email and on posting for in-product notices. Section headings are for convenience only and do not affect interpretation.

How to reach us.