SOC 2 Type II
Independent attestation of security controls for organizations that need vendor assurance during procurement.
View on Luzmo Trust → (opens in new tab)Trust & compliance
Security built for embedded analytics in your product
SOC 2, GDPR, multi-tenant isolation, and EU/US data residency—so enterprise buyers can ship customer-facing analytics with confidence.
Luzmo is designed for software vendors embedding analytics for their customers. Full certification documents and sub-processor lists live on our trust portal.
GDPR & data residency
EU and US hosting options with contractual safeguards for personal data processed inside embedded dashboards.
Data residency on Trust → (opens in new tab)HIPAA-ready workflows
Healthtech and regulated verticals can align access controls, audit logs, and tenant isolation with their compliance programs.
Security documentation → (opens in new tab)Multi-tenant isolation
Row-level security and tenant-scoped credentials keep each customer’s data separate inside your embedded analytics experience.
Architecture overview → (opens in new tab)Security FAQ
Common procurement questions for embedded analytics
Can we get a SOC 2 report?
Yes. Request access through Luzmo Trust or your account team. Reports are shared under NDA when required.
Is Luzmo HIPAA-compliant for healthtech embedding?
Luzmo supports HIPAA-aligned deployments with appropriate agreements and configuration. Your legal and security teams should review the trust documentation for your use case.
Where is customer data stored?
Production workloads can be aligned to EU or US regions depending on your contract. See Luzmo Trust for current sub-processors and regions.