# Security & Legal

Lusha takes data security and privacy seriously. Find everything you need to configure SSO, understand your compliance obligations, and verify Lusha's certifications.

## Security

Security overview
An overview of Lusha's security architecture, infrastructure, and the measures we take to protect your data.

Single Sign-On (SSO)
Configure SSO for your organization so your team can log in using your existing identity provider.

Okta SAML 2.0 setup
Step-by-step guide to setting up Okta SAML 2.0 for Lusha SSO.

Custom SAML SSO
Configure a custom SAML 2.0 identity provider for single sign-on with Lusha.

Inactivity timeout
Automatically log out inactive users after a set period to protect your account.

## Privacy & compliance

Compliance with privacy laws
How to use Lusha's data in compliance with GDPR, CCPA, and other global privacy regulations.

Data subject rights
Understand your rights as a data subject and how to exercise them with Lusha.

Remove your details
Request removal of your personal data from the Lusha database.

Where did Lusha get my data?
How to respond when a contact asks where Lusha sourced their information.

Do Not Call (DNC) tables
How Lusha handles Do Not Call tables and what it means for your outreach compliance.

Account suspended
Why accounts get suspended and how to appeal or reinstate your access.

## Trust & certifications

Conversations data security
How Lusha Conversations handles call recordings, transcripts, and data retention in compliance with regulations.