You’re In Good Hands

Proper security and compliance is more than just a few clicks and settings. It is a formal practice that applies the right physical, technical, and administrative policies and processes to properly ensure the safety, integrity, and availability of your mission-critical data and applications.


SOC – Lume’s data centers are reviewed by third-party auditors to ensure conformity with standardized SOC2 and/or SOC3 criteria. SOC includes guidance specific to service organizations and provide auditor insight into security, availability, privacy and physical integrity. SOC replaces the previous SAS 70 standard.

Payment Card Industry Data Security Standard (PCI DSS) – PCI is set of requirements designed to protect cardholder data and the environments in which cardholder data is stored, processed or transmitted. Lume’s managed hosting and colocation services are in compliance with the latest PCI DSS v3.2 standards. Lume’s requirements for the standards are reviewed each year.  Learn more

HIPAA Compliance – Lume provides a HIPAA-compliant environment for our managed hosting and colocation services.

Lume_Privacy Shield
EU-U.S. Privacy Shield – Lume complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Lume has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit


Don't Go It Alone.

Understanding what it takes to maintain compliance can be difficult. Let us help.