Privacy Policy

Identity of the Controller

This Privacy Policy describes how Luminous Ledger, operated by Rebecca Andrews (the “Company,” “we,” “us,” or “our”), collects, uses, discloses, and safeguards personal information when you access or use noorimasjid.org and related services (collectively, the “Services”).

Owner and Data Controller: Rebecca Andrews, 2615 Medical Center Pkwy, Murfreesboro, TN 37129, United States. Contact: [email protected].

Scope

This Policy applies to personal information we collect from visitors, subscribers, contributors, and other users of our Services in the United States. It also explains additional rights that may apply to residents of certain jurisdictions, including California, Colorado, Connecticut, Utah, Virginia, Nevada, the European Economic Area (EEA), and the United Kingdom (UK).

Notice at Collection

We collect the categories of personal information listed below for the purposes described in the “Purposes of Use” section. We retain personal information only as long as necessary for those purposes or as required by law, as outlined in “Data Retention.” We do not collect or process Sensitive Personal Information for the purpose of inferring characteristics about you.

• Categories collected: identifiers (e.g., name, email, IP address, online identifiers), internet and electronic activity (e.g., device/browser data, pages viewed, interactions), general geolocation (e.g., city/state derived from IP), user content (e.g., comments, support inquiries), commercial information (e.g., subscription preferences), inferences (limited, derived from interactions), and wallet addresses if you voluntarily provide them.
• Sold or shared: We do not sell personal information for monetary consideration. We may “share” identifiers and internet/electronic activity for cross-context behavioral advertising as defined by California law. You may opt out of such “sharing” as described in “Do Not Sell or Share My Personal Information.”

Categories of Personal Information We Collect

Information You Provide Directly

• Contact details, such as name and email address (e.g., for newsletters, account registrations, or inquiries).
• User-generated content, such as comments, feedback, survey responses, or support requests.
• Professional information if you submit guest posts or partnership proposals.
• Wallet addresses or blockchain identifiers if you voluntarily provide them in connection with certain features, listings, or analytics requests.

Information Collected Automatically

• Device and usage data, including IP address, device identifiers, browser type, operating system, pages viewed, referring/exit pages, and timestamps.
• Cookies, pixels, and similar technologies that help us remember preferences, analyze traffic, prevent fraud, and measure advertising effectiveness.
• Approximate location inferred from IP address (city/state/region level).

Information from Third Parties

• Analytics and measurement partners providing aggregated or pseudonymized reports.
• Advertising partners providing campaign performance and audience insights.
• Publicly available sources (e.g., blockchain explorers) in connection with on-chain research.

Sensitive Personal Information

We do not seek to collect Sensitive Personal Information (SPI) such as government identifiers, precise geolocation, or biometric data. If you voluntarily provide SPI, we will use it only as necessary for the requested service and not to infer characteristics.

Purposes of Use

• Provide, operate, and maintain the Services, including content delivery, account management, and customer support.
• Communicate with you regarding updates, newsletters, alerts, and administrative messages.
• Conduct research and analytics to improve content relevance, usability, and performance.
• Personalize content and measure/understand advertising performance.
• Detect, prevent, and investigate security incidents, fraud, and abuse.
• Comply with legal obligations and enforce our terms and policies.

Cookies and Similar Technologies

Types of Cookies

• Strictly necessary cookies for core functionality and security.
• Performance/analytics cookies to understand usage and improve the Services.
• Functionality cookies to remember preferences.
• Advertising cookies to deliver and measure ads and to reduce irrelevant advertising.

Your Choices, Global Privacy Control, and Do Not Track

You can manage cookies through your browser settings to accept, refuse, or delete cookies. If you disable cookies, some features of the Services may not function properly. We honor Global Privacy Control (GPC) signals where required by applicable law as an opt-out of sale/sharing for cross-context behavioral advertising. Industry “Do Not Track” signals are not uniformly recognized; however, we endeavor to handle such signals consistently with applicable law.

Disclosure of Personal Information

Service Providers and Processors

We disclose personal information to trusted vendors who process data on our behalf for hosting, security, analytics, email delivery, customer support, and similar operational purposes. These parties are bound by contractual obligations to safeguard personal information and use it only under our instructions.

Advertising and Analytics Partners

We may disclose identifiers and internet/electronic activity to advertising and analytics partners that help measure and improve our content and ad campaigns. Where required, such disclosures may be considered “sharing” for cross-context behavioral advertising; you may opt out as described in this Policy.

Business Transfers

In connection with a merger, acquisition, financing, or sale of assets, personal information may be transferred to a successor or affiliate, subject to this Policy and applicable law.

Legal Compliance and Safety

We may disclose personal information as required by law, subpoena, or legal process, or when we believe disclosure is necessary to protect our rights, users, or the public, or to enforce our policies.

Data Retention

We retain personal information for as long as needed to fulfill the purposes described in this Policy, including to comply with legal, accounting, or reporting requirements; resolve disputes; and enforce agreements. Retention periods vary based on data type and context, but we periodically review the necessity of continued retention and delete or anonymize data when it is no longer required.

Security

We implement administrative, technical, and physical safeguards designed to protect personal information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. No method of transmission or storage is completely secure; therefore, we cannot guarantee absolute security.

Your Privacy Rights

California Residents (CCPA/CPRA)

• Right to know/access: Request disclosure of the categories and specific pieces of personal information collected, the sources, purposes, and categories of third parties to whom we disclose data.
• Right to delete: Request deletion of personal information, subject to legal exceptions.
• Right to correct: Request correction of inaccurate personal information.
• Right to opt out of sale/share: Opt out of the sale or sharing of personal information for cross-context behavioral advertising.
• Right to limit use of SPI: Request to limit use and disclosure of Sensitive Personal Information to certain necessary purposes (note: we do not use SPI to infer characteristics).
• Non-discrimination: We will not discriminate against you for exercising your rights.

Categories of personal information collected in the past 12 months: identifiers; internet/electronic activity; general geolocation; user content; commercial information; and limited inferences. Categories disclosed for business purposes: the same, to service providers and processors. Categories “shared” for cross-context behavioral advertising: identifiers and internet/electronic activity.

“Shine the Light” (Cal. Civ. Code §1798.83): You may request information about direct marketing disclosures, if any, by contacting us as set out below.

Colorado, Connecticut, Texas, Utah, and Virginia

• Rights to access, correct, delete, and obtain a portable copy of personal data.
• Right to opt out of processing for targeted advertising, sale of personal data, and profiling in furtherance of decisions producing legal or similarly significant effects.

Nevada

Nevada residents may opt out of the sale of covered information. We do not sell covered information as defined by Nevada law; however, you may submit an opt-out request as described below.

EEA and UK

If you are in the EEA or UK, the legal bases for processing may include: consent, performance of a contract, compliance with legal obligations, legitimate interests (such as security, improvements, and analytics), and protection of vital interests. You may have rights to access, rectify, erase, restrict or object to processing, data portability, and to withdraw consent at any time without affecting prior processing. You may also lodge a complaint with a supervisory authority.

Appeal Process

If we deny your request, you may appeal by replying to our decision notice or contacting [email protected] with “Privacy Appeal” in the subject line. We will respond within the timeframe required by applicable law.

Exercising Your Rights

To submit a privacy request, contact us at [email protected] or by mail at: Privacy Request, Rebecca Andrews, 2615 Medical Center Pkwy, Murfreesboro, TN 37129, United States. Please include your name, the nature of your request, and the email address associated with your use of the Services.

Verification: We will verify your identity by matching information you provide (such as email address and recent interaction details) with our records. Authorized Agents: Authorized agents may submit requests on your behalf if they provide proof of authorization and we can verify your identity. Response Time: We will respond within the period required by applicable law.

Do Not Sell or Share My Personal Information

We do not sell personal information for monetary consideration. We may “share” personal information (such as identifiers and internet/electronic activity) with ad and analytics partners for cross-context behavioral advertising. You may opt out by managing cookie preferences in your browser, contacting us at [email protected], or by using a browser or extension that sends a Global Privacy Control (GPC) signal, which we honor where required by law.

Financial Data and Blockchain Addresses

We do not collect payment card numbers or bank account details directly. If payments or subscriptions are offered, they are processed by third-party payment processors subject to their privacy practices. We may collect wallet addresses you voluntarily provide in connection with content submissions, analytics requests, or features related to blockchain networks. Wallet addresses may be publicly visible on blockchains; exercise caution when sharing on-chain identifiers.

Third-Party Content and Links

The Services may reference or link to third-party websites, tools, token listings, exchanges, airdrops, or wallets. We are not responsible for the privacy practices of third parties. We encourage you to review their policies before providing personal information.

International Data Transfers

We may transfer, store, and process personal information outside your jurisdiction, including in the United States. Where required, we implement appropriate safeguards (such as contractual commitments) to protect personal information during transfers.

Children’s Privacy

Our Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information, please contact us so we can take appropriate action. We do not knowingly sell or share personal information of consumers under 16 years of age.

Data Integrity and Minimization

We collect personal information that is relevant and limited to what is necessary for the purposes described. We take reasonable steps to ensure the information we process is accurate, complete, and up-to-date.

Financial Incentives

We do not offer financial incentives or price/service differences in exchange for personal information. If we offer such programs in the future, we will provide required notices and obtain consent where applicable.

Changes to This Privacy Policy

We may update this Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. Material changes will be indicated by updating the effective date and, where required, by additional notice.

Contact Information

If you have questions about this Policy or our privacy practices, contact: Rebecca Andrews, 2615 Medical Center Pkwy, Murfreesboro, TN 37129, United States; Email: [email protected].

Effective Date

Last Updated: October 6, 2025.