built for auditors first.
Trust isn’t a tab. It’s the foundation.
Every Lumin run produces a signed, immutable receipt. SOC 2 Type II, GDPR, dedicated cloud on Enterprise. We don’t train on your data — ever.
CERTIFICATIONS · CONTRACTSPrescient Audit, LLPCert. Q3 2026EU + US tenantsEnterprise tier
The pieces of paper, in plain view.
SOC 2 · Type II
Audited annually
ISO 27001 · 2022
In progress
GDPR + EU AI Act
DPA signable
HIPAA · ready
BAA available
HOW YOUR DATA FLOWS
Your tenant. Your data. Always.
Data stays in your tenant. Models call through, never store. Receipts are signed with a tenant key. No training on your data. Ever.
- Customer01
- Lumin tenant02
- Model03
- System of record04
- Receipt05
COMMITMENTS
red = never. green = always.Eight things we commit to.
NO TRAINOn your data. Ever.
NO STOREModels pass through. Tenant keeps state.
NO SHARETenant is single-customer by default.
NO SURPRISESubprocessor list is public + signable.
YES SSOSAML · SCIM · Okta · Azure native.
YES KMSBring your own KMS on Enterprise.
YES AUDITAudit log streams to your S3.
YES DELETEFull purge on request. Verified.
THE RECEIPT
The auditor reads the receipt. Not the AI.
Every agent action is captured as a signed, immutable JSON + PDF receipt — inputs, tools, rules fired, models used, cost. SHA-256 verified, time-stamped, exportable.
← what every audit gets.
RECEIPT · TCK-1742
SIGNED · 17 MAY 14:32:08INPUTEmail · 17 May 14:31:55
AGENTFreight Intake · v3.4.1
MODELSsonnet-4-5 · haiku-4-5
TOOLSTMS · POST /loads · 200 · 188 ms
GUARDmargin ≥ 12% · pass (13.4%)
OUTPUTReply sent · TCK-1742 created
COST€0.041
SHA-256 · 9f3a…b27c✓ VERIFIED
Resources
send to your auditor.SOC 2 Type II reportLatest: Q1 2026Download →
DPA + SCC + subprocessorsUpdated Apr 2026Download →
Penetration test summaryQuarterly · NCC GroupDownload →
Security whitepaperArchitecture + handlingDownload →
Privacy policyLast updated 12 MayDownload →
Status + uptime historystatus.luminflows.ioDownload →