LumApps Security

LumApps follows intranet security best practices and complies with the highest standards to deliver a secure cloud intranet.

Illustration Product IT
Wave background image

Cloud Infrastructure Security

Google Cloud Platform

LumApps leverages Google Cloud Platform (GCP), the leading cloud infrastructure provider in terms of security, scalability, and performance.

Compliance

LumApps platform is compliant with all industry security standards, such as

ISO 27001, ISO 27017, and ISO 27018
SSAE 18 (including SOC 1 Type 2, SOC 2 Type 2, and SOC3 reports)
PCI-DSS
HIPAA

Explore Google Cloud Platform Security

ISOSOCNormes

logo iso-27001

ISO 27001

LumApps follows the best practices recommended in the ISO 27001 framework for its security processes.

icone certificate

GDPR

LumApps is fully GDPR compliant and our Privacy Policy is available.

Privacy Policy

shield icon

Independent Audits

Regular audits and pentests are performed by independent accredited third-parties for both the application (product) and processes.

Intranet Security Features

AUTHENTICATION

Passwords Policy

Your intranet password history, length, and complexity can be configured through your Microsoft and Google platforms.

SSO Integration

We provide both federated and delegated Single-Sign-On using Microsoft, Google, SAML V2.0, and OpenID.

Two-Factor Authentication

LumApps integrates Microsoft and Google two-factor authentication rules.

DATA ACCESS

Data Ownership

Your data belongs to you. If needed, we provide tools to export all your intranet data.

Data Backup

All data within your intranet is securely backed up on a daily basis. Backups are also tested.

Data-in-Transit Encryption

All data transmissions are encrypted with end-to-end TLS/SSL protocols.

Data Privacy

We never access your data without your permission. We only use customer data to deliver customer service.

Data Recovery

Data are replicated in several data centers for efficient and secure data recovery.

Data At-Rest Encryption

AES-256 encryption protocol.