{"templateId":"markdown","sharedDataIds":{"sidebar":"sidebar-user-guide/sidebars.yaml"},"props":{"metadata":{"markdoc":{"tagList":[]},"type":"markdown"},"seo":{"title":"Lusha Security Overview","description":"Access documentation, use cases, and technical guides for Lusha. Learn how to query our comprehensive dataset of business profiles and company information using our three main endpoints.","llmstxt":{"hide":false,"sections":[{"title":"Table of contents","includeFiles":["**/*"],"excludeFiles":[]}],"excludeFiles":[]}},"dynamicMarkdocComponents":[],"compilationErrors":[],"ast":{"$$mdtype":"Tag","name":"article","attributes":{},"children":[{"$$mdtype":"Tag","name":"Heading","attributes":{"level":1,"id":"lusha-security-overview","__idx":0},"children":["Lusha Security Overview"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha takes data security seriously. This article summarizes the key security features available in your Lusha account and how Lusha protects the data you store and access through the platform."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"account-security","__idx":1},"children":["Account security"]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"password-protection","__idx":2},"children":["Password protection"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Your Lusha account is protected by a password you set at signup. Lusha enforces minimum password strength requirements. You can update your password at any time via ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Settings → My Profile → Send me Instructions."]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"single-sign-on-sso","__idx":3},"children":["Single Sign-On (SSO)"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Scale plan customers can configure SSO using SAML 2.0, allowing team members to log in through your company's identity provider (e.g., Okta, Azure AD, Google Workspace). This gives your IT team centralized control over access."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["To set up SSO: go to ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Settings → ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"https://dashboard.lusha.com/account/accountSettings"},"children":["Account Settings"]}," → Single Sign-On"]},". (Scale plan only.)"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Review SSO information in our ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/user-guide/security/how-to-set-up-sso-single-sign-on"},"children":["SSO article"]},", or ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/user-guide/security/custom-saml-single-sign-on"},"children":["SAML article"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"session-management","__idx":4},"children":["Session management"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha automatically ends inactive sessions after a period of inactivity. You can manually sign out of all active sessions from ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Settings → My Profile → Sign Out of All Sessions"]},"."]},{"$$mdtype":"Tag","name":"hr","attributes":{},"children":[]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"data-security","__idx":5},"children":["Data security"]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"encryption-in-transit","__idx":6},"children":["Encryption in transit"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["All data transmitted between your browser and Lusha's servers is encrypted using TLS (Transport Layer Security)."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"encryption-at-rest","__idx":7},"children":["Encryption at rest"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Data stored in Lusha's systems is encrypted at rest."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"access-controls","__idx":8},"children":["Access controls"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha uses role-based access controls (RBAC) to ensure team members only see the data and settings relevant to their role (Admin, Manager, or User)."]},{"$$mdtype":"Tag","name":"hr","attributes":{},"children":[]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"compliance","__idx":9},"children":["Compliance"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha is committed to compliance with applicable data protection regulations, including GDPR. For details on how Lusha sources, stores, and processes contact data, see the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["GDPR Compliance"]}," and ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Data Sources & Accuracy"]}," articles."]},{"$$mdtype":"Tag","name":"blockquote","attributes":{"className":"callout-note"},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["💡 ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Note:"]}," Lusha holds a SOC 2 Type II certification. For security reports or compliance documentation (e.g., for vendor review), contact your Lusha Account Manager or reach out to Lusha Support."]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"accessing-compliance-reports-and-documentation","__idx":10},"children":["Accessing Compliance Reports and Documentation"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha provides a range of compliance documents to its customers, including security overviews, privacy policies, and sub-processor details, which are readily accessible in the ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"https://www.lusha.com/trust-center"},"children":["Lusha Trust Center"]},". However, sensitive documents such as the SOC 2 Type II report and penetration test reports require meeting specific access requirements."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"soc-2-type-ii-reports","__idx":11},"children":["SOC 2 Type II Reports"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["The SOC 2 Type II report offers insights into Lusha's security, availability, and confidentiality controls. Access to the full, unredacted report is limited to customers on the Scale plan or accounts with transactions exceeding $10,000. This ensures sensitive information is shared only with eligible customers."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"penetration-test-reports","__idx":12},"children":["Penetration Test Reports"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Lusha's penetration test findings were assessed as very low risk, with minimal exposure due to the limited nature of customer data collected. The full penetration test report is available to customers who meet the access requirements, including signing an NDA. Separate remediation plans are not provided as the findings have already been addressed."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"reporting-a-security-concern","__idx":13},"children":["Reporting a security concern"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["If you believe you've discovered a security vulnerability in Lusha's platform, contact Lusha's security team directly at ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"mailto:security@lusha.com"},"children":["security@lusha.com"]},"."]}]},"headings":[{"value":"Lusha Security Overview","id":"lusha-security-overview","depth":1},{"value":"Account security","id":"account-security","depth":2},{"value":"Password protection","id":"password-protection","depth":3},{"value":"Single Sign-On (SSO)","id":"single-sign-on-sso","depth":3},{"value":"Session management","id":"session-management","depth":2},{"value":"Data security","id":"data-security","depth":2},{"value":"Encryption in transit","id":"encryption-in-transit","depth":3},{"value":"Encryption at rest","id":"encryption-at-rest","depth":3},{"value":"Access controls","id":"access-controls","depth":3},{"value":"Compliance","id":"compliance","depth":2},{"value":"Accessing Compliance Reports and Documentation","id":"accessing-compliance-reports-and-documentation","depth":2},{"value":"SOC 2 Type II Reports","id":"soc-2-type-ii-reports","depth":3},{"value":"Penetration Test Reports","id":"penetration-test-reports","depth":3},{"value":"Reporting a security concern","id":"reporting-a-security-concern","depth":2}],"frontmatter":{"title":"Lusha Security Overview","description":"An overview of how Lusha protects your account, your data, and your team's information.","seo":{"title":"Lusha Security Overview"}},"lastModified":"2026-06-25T08:28:34.000Z","pagePropGetterError":{"message":"","name":""}},"slug":"/user-guide/security/lusha-security-overview","userData":{"isAuthenticated":false,"teams":["anonymous"]},"isPublic":true}