Encryption in transit#
All communication is secured with TLS 1.3:
- Your browser to LumenFlow
- LumenFlow to your LLM provider
- LumenFlow to your connected services
- Webhook deliveries
Encryption at rest#
Database encryption#
All data stored in the database is encrypted at the storage level using industry-standard encryption.
Sensitive field encryption#
Your API keys and OAuth tokens receive an additional layer of application-level encryption. Encryption keys are unique to each workspace and stored separately from your data, so even in the unlikely event of a data breach, your keys remain protected.
Key rotation#
LumenFlow supports encryption key rotation. When rotated, all sensitive fields are re-encrypted with the new key automatically.
success Your API keys are protected by multiple layers of encryption. They are never logged, never cached, and never sent anywhere other than your chosen provider.