Privacy Policy

We use collected information for the following purposes:

• Service Delivery: Providing virtual card creation, management, and transaction processing
• Account Administration: Maintaining user accounts, authentication, and security
• Payment Processing:Facilitating transactions with merchants and financial institutions
• Fraud Prevention: Detecting and preventing unauthorized access, fraud, and abuse
• Regulatory Compliance:Meeting KYC, AML, and financial reporting requirements
• Customer Support: Responding to inquiries and resolving issues
• Analytics and Improvement:Understanding usage patterns and optimizing our service
• Legal Compliance: Responding to subpoenas, law enforcement requests, and legal proceedings
• Marketing: Sending service updates, promotional content (only with consent)

We may disclose personal information when:

• Required by law, court order, or government request
• Necessary to enforce our Terms of Service and other agreements
• Required to protect our legal rights, privacy, safety, or property
• Necessary to prevent fraud or criminal activity
• Required by financial regulators or law enforcement agencies

Users acknowledge that we will comply with valid legal requests without prior user notification when legally prohibited from doing so.

Users are responsible for:

• Maintaining the confidentiality of account credentials and authentication methods
• Monitoring card activity and reporting unauthorized transactions promptly
• Complying with all applicable laws and the Terms of Service
• Providing accurate, complete, and current information
• Notifying us immediately of any security breaches, unauthorized access, or lost/stolen credentials
• Using the service only for lawful purposes
• Not engaging in fraud, money laundering, or other illegal activities

In the event of breach of any of these LMND Card can terminate the user’s account without prior notice.

LMND CARD IS PROVIDED ON AN "AS-IS" AND "AS-AVAILABLE" BASIS. We disclaim all warranties, express or implied, including merchantability, fitness for a particular purpose, and non-infringement.

TO THE FULLEST EXTENT PERMITTED BY LAW:

• LMND CARD shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from your use of our service
• LMND CARD is not liable for unauthorized card use if you failed to notify us promptly
• LMND CARD is not liable for merchant disputes, refunds, or payment failures initiated by merchants or third parties
• LMND CARD is not liable for service interruptions, data loss, or system failures beyond our reasonable control
• LMND CARD is not liable for user error, including incorrect card configurations or spending limits
• LMND CARD is not liable for losses resulting from phishing, social engineering, malware, or user negligence
• LMND CARD is not liable for compliance failures by users with applicable financial regulations
• LMND CARD is not liable for actions taken by financial institutions, payment networks, or third-party processors

Users assume all risks associated with virtual card usage and payment transactions.

By using LMND CARD, you acknowledge and assume all risks associated with:

• Virtual payment transactions and merchant disputes
• Data transmission over the internet
• Regulatory changes affecting virtual card services
• Third-party actions, including merchant fraud or refund disputes
• Financial losses from unauthorized use (if you failed to secure your credentials)

WHILE WE EMPLOY REASONABLE SECURITY MEASURES, NO SYSTEM IS COMPLETELY SECURE. We cannot guarantee absolute security of your personal information. You acknowledge the inherent risks of transmitting sensitive information online.

LMND Card is not responsible for security breaches resulting from:

• User negligence or failure to protect credentials
• Compromised third-party services or infrastructure
• Zero-day vulnerabilities or undetectable malware
• Law enforcement access via valid court orders
• Cyber attacks exceeding industry-standard defenses

We retain personal information for as long as:

• Your account is active
• Necessary to provide services and fulfill transaction obligations
• Required by law, regulation, or contractual obligation (up to 7 years for financial records)
• Necessary for fraud prevention and security purposes

After the retention period ends, we securely delete or anonymize information unless legal obligations require extended retention.

Users may request account deletion, but we may retain information necessary for legal compliance or fraud prevention.

You have the right to:

• Request a copy of your personal information we hold
• Receive information in a structured, commonly used format

You may:

• Correct inaccurate personal information
• Request deletion of personal information (subject to legal retention requirements)
• Request restriction of processing in certain circumstances

We use cookies for:

• Session management and authentication
• User preference storage
• Analytics and traffic analysis
• Fraud prevention and security

You can:

• Disable cookies in your browser settings
• Use private/incognito browsing mode
• Opt out of analytics cookies (may affect functionality)

Note:Disabling essential cookies may impair service functionality.

If you are a California resident, you have specific rights under the California Consumer Privacy Act:

• Right to Know: You may request what personal information we collect, use, and share
• Right to Delete: You may request deletion of personal information (subject to exceptions)
• Right to Opt-Out: RYou may opt out of the "sale or sharing" of personal information (we do not sell data)
• Right to Correct: You may request correction of inaccurate personal information
• Right to Limit Use: You may limit our use of sensitive personal information

To submit a CCPA request: hello@lemonadcard.com or via any other available means.

We will verify your identity before processing requests. Authorized agents may submit requests on behalf of consumers with proper documentation.

If you are located in the EU, UK, or EEA, you have rights under the General Data Protection Regulation:

• Legal Basis: Processing is lawful only when a valid legal basis exists
• Data Subject Rights: Access, rectification, erasure, restriction, portability, objection
• Right to Lodge a Complaint: You may file a complaint with your local Data Protection Authority
• Data Protection Officer: Contact information available upon request

Data Protection Authority contacts vary by country. Visit www.edpb.eu for regional authorities.

For users in Brazil, we comply with the Lei Geral de Proteção de Dados (LGPD). You have rights to:

• Access your personal information
• Correct inaccurate or incomplete data
• Request data deletion (subject to legal obligations)
• Revoke consent for processing
• Opt out of certain processing activities

To exercise LGPD rights: hello@lemonadcard.com or via any other available means.

BY USING LMND CARD, YOU ACKNOWLEDGE AND AGREE THAT:

• You have read and understand this Privacy Policy
• You accept the terms regarding data collection, processing, and sharing
• You assume all risks associated with virtual card usage
• You accept the limitations of liability outlined in Section 6
• You are solely responsible for compliance with applicable laws
• LMND CARD is not liable for third-party actions, merchant disputes, or financial losses
• You will maintain confidentiality of your credentials and notify us of unauthorized access immediately
• This Privacy Policy does not create warranties or representations beyond those in our Terms of Service
• LMND CARD may modify this policy at any time, effective immediately