✦ Security & Compliance
Enterprise-grade
security and compliance.
Your candidate data, your organisation's reputation, and your legal exposure. All taken seriously. Independently audited, continuously tested, and built to defend.
✦ Certifications
Independently audited.
ISO 27001
Certified information security management. Independently audited controls for data handling, access, and incident response.
UK GDPR / EU GDPR
Full compliance with UK and EU data protection regulations. Candidate data is processed only with lawful basis and clear consent.
Equality Act 2010
Bias checking built into every assessment by default. Automated flagging of discriminatory language and patterns.
EU AI Act
Designed to meet the requirements of high-risk AI systems in recruitment: explainability, traceability, and human oversight.
✦ How we operate
Practices we take seriously.
- 01
Data residency
UK and EU data residency options as standard. Enterprise customers can request custom residency arrangements.
- 02
Encryption
TLS 1.3 in transit. AES-256 at rest. Per-customer encryption keys for Enterprise deployments.
- 03
Access controls
SSO via SAML 2.0 or Microsoft Entra. Role-based access controls. Complete audit log of user actions.
- 04
Model training
Your candidate data is never used to train external AI models. Your data stays your data. Full stop.
- 05
Penetration testing
Annual third-party penetration tests. Continuous vulnerability scanning. Coordinated disclosure programme.
- 06
Incident response
24-hour breach notification commitment. Documented incident response plan. Regular internal drills.
✦ Documentation
Request the details.
Full compliance documentation is available for review during procurement and on an ongoing basis for customers.
✦ First role free
See it on a real role. No cost.
We'll set you up with a free account. You run one live vacancy through Lumi in your own environment. Ranked shortlist, full reasoning, bias checks included. Your candidate data stays in your account. No credit card. No time limit.
We set it up. You stay in control of your data.