LumearAI

Security Overview

Effective date: May 20, 2026.

Plain-English summary follows
This document was drafted in good faith but has not been reviewed by counsel. Before relying on it for compliance, please consult a lawyer.

This page describes the controls we use to keep Lumear and your data safe. We update it as our infrastructure changes. For anything that isn’t covered here, or to request a current Trust Center summary, email letschat@lumear.ai.

Hosting and infrastructure

Encryption

Authentication

Authorization

Logging and audit

Backups and disaster recovery

Incident response

We will notify affected customers within 72 hours of confirming a material security breach that involves their data. Notification is sent to the email address associated with the workspace administrator and includes the scope of the incident, the data categories involved, and the remediation steps in progress. We will follow up with a written post-mortem once the incident is closed.

Vulnerability management

Responsible disclosure

If you believe you have found a security vulnerability in Lumear, email letschat@lumear.ai with the details. Please give us a reasonable opportunity to investigate and remediate before any public disclosure. We will not pursue legal action against researchers who act in good faith and follow this process.

Subprocessors

See the Privacy Policyfor the complete list of subprocessors, including each one’s role and the categories of data it processes.

Contact

Security questions or trust requests: letschat@lumear.ai.