LMT LMT

Privacy Policy

Last updated: July 2025

1. Introduction

LMT ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our enterprise mobile line management platform ("Service"). By using the Service, you consent to the practices described in this policy.

2. Information We Collect

We may collect the following types of information:

Account Information

Name, email address, organization name, and role when you register for an account. If you use Single Sign-On (SSO), we receive identity information from your provider (Okta, Entra ID, Auth0).

Carrier & Device Data

Mobile line details (phone numbers, line status, usage data, cost data, ETF information) synchronized from your carrier accounts (Verizon, AT&T, T-Mobile). Device enrollment and compliance data from MDM platforms (Microsoft Intune, Jamf, MaaS360).

Usage Data

Information about how you interact with the Service, including pages viewed, features used, access times, and browser/device type. This data is collected to improve the Service and is not linked to individual mobile subscribers.

3. How We Use Your Information

  • To provide, operate, and maintain the Service, including carrier sync, MDM integration, and cost optimization features.
  • To authenticate your identity and manage your account access.
  • To generate reports, analytics, and cost optimization recommendations for your organization.
  • To communicate with you about account activity, product updates, and support requests.
  • To improve and optimize the Service based on aggregated usage patterns.
  • To comply with applicable laws and respond to legal requests.

4. Data Sharing & Disclosure

We do not sell your data. We may share information only in the following circumstances:

  • Service Providers: Trusted third parties who assist in operating the Service (hosting, authentication, analytics) under strict data processing agreements.
  • Carrier & MDM APIs: Data is exchanged with carrier and MDM platforms as necessary to provide the Service. We only access the data you authorize.
  • Legal Obligations: When required by law, subpoena, or regulatory request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with prior notice.

5. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS 1.2+) and at rest, role-based access controls, audit logging, and regular security assessments. For self-hosted deployments, your organization is responsible for infrastructure-level security.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Upon account termination, you may request data export within 30 days. After this period, data may be permanently deleted. Aggregated, anonymized data may be retained indefinitely for analytics purposes.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal information.
  • Object to or restrict processing of your data.
  • Request data portability in a commonly used, machine-readable format.
  • Withdraw consent where processing is based on consent.

To exercise these rights, contact us through our contact page.

8. Cookies & Tracking

The Service uses essential cookies for authentication and session management. We do not use third-party advertising cookies. Analytics cookies may be used to understand usage patterns — these can be disabled in your browser settings without affecting core functionality.

9. Self-Hosted Deployments

If you deploy LMT on your own infrastructure, you maintain full control over all data. In this configuration, no data is transmitted to our servers. You are solely responsible for compliance with applicable data protection regulations, backup procedures, and access controls.

10. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will take steps to delete it promptly.

11. International Data Transfers

If you access the Service from outside the United States, your data may be transferred to and processed in the United States. We ensure appropriate safeguards are in place, including standard contractual clauses where applicable, to protect your information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 30 days in advance. The "Last updated" date at the top reflects the most recent revision.

13. Contact

If you have questions about this Privacy Policy, please reach out via our contact page.