Security and Privacy

Lumigo aims to go beyond the legal requirements for consent and is committed to providing the highest security standards and the protection of customer data. Lumigo is SOC2 Type II, ISO27001, HIPAA and GDPR compliant.

Data Security

As an AWS Advanced Technology Partner, our policies are maintained and updated regularly as part of our security awareness program to provide complete confidentiality data integrity.

Lumigo's infrastructure and the data we collect are hosted entirely on Amazon Web Services (AWS) cloud, with leading privacy and information security standards.

Data transmitted online is protected with TLS v1.2. Data is stored for 14 days and is protected by encryption, access controls, and authentication.

Customers' data is isolated, so users can only see the data for projects they have been permitted access.

We conduct routine tests to ensure the confidentiality and integrity of our platform. If any sensitive data or PII is sent to Lumgio, contact our support by email.

Compliance and Certifications

Lumigo is regularly audited and compliant with security regulations.

Lumigo is regularly audited by a qualified independent party for SOC 2 Type 2 compliance, ISO 27001 certification , and ISO 27799 certificaiton.

Lumigo is compliant and regularly audited by a qualified independent party for GDPR and HIPPA.

We are committed to helping customers with their GDPR compliance processes and can make our Data Processing Addendum (DPA) available for execution on request.