Every serious CRM was built decades ago and never fully rebuilt.

Lumenbase is a new CRM for the AI age that helps you prioritize your day and engage with the right people in your network.

Full-funnel CRM with lists, leads, deals, and accounts; Lumo AI for daily priorities and outreach; automations, lead scoring, forecasting, and integrations with Gmail, Outlook, Slack, LinkedIn, and more.

Try for free · Features · How it works · AI site digest

    Lumenbase

    Trust & Security

    Trust

    What Lumenbase protects and recovers, and where workspace admins manage it in the app.

    By Sebastian StreiffertPublished Jan 10, 2026Updated Jun 3, 20266 min read

    Workspace admins get concrete controls for access, monitoring, and recovery — not just policy statements. Below is what Lumenbase provides, then where each control lives in the app.

    Capabilities

    Access control

    Role-based permissions

    Separate gates for CRM entities, billing, user management, automations, and analytics. Read-only seats available on eligible plans.

    Two-factor authentication

    Optional or mandatory 2FA for the whole workspace, with enrollment visibility for admins.

    Enforced permissions

    Access rules apply where your data is stored, not only in the app UI. Users only see and change records their role allows within the workspace.

    Audit and visibility

    Security events

    Security-relevant actions logged with actor, time, and context.

    Export tracking

    Data exports recorded so admins can see who exported what and when.

    Change audit trail

    Administrative and integration configuration changes recorded for review.

    Redacted secrets

    API keys, OAuth tokens, and similar values never stored in plain text in logs.

    Recovery and portability

    Trash recovery

    Soft-deleted CRM records stay recoverable for 30 days.

    Bulk undo

    Bulk edits and bulk deletes can be reversed from captured batch payloads.

    Import rollback

    A bad import can be rolled back from import history.

    Workspace snapshots

    Point-in-time workspace copies on eligible plans, with a configurable retention window.

    Regular backups are verified before retention. Workspace snapshots and the in-app recovery tools above sit on top of that foundation.

    Where to manage it

    Workspace admins use System Operations for security monitoring and data recovery, and Settings for access control and account security.

    Security Center

    System Operations → Security Center is the hub for exports, active integrations, security events, and high-impact activity. Use the Overview tab for counts and configuration status; Activity Log and Exports & Integrations for detail.

    Security Center, Overview tab

    Security Center

    2

    High-Permission Users

    8 / 9

    2FA Enrolled

    4

    Active Integrations

    3

    Exports (7 days)

    View all exports

    1

    High-Impact Events (7d)

    View high-impact events

    Security Configuration

    Platform-level security features active for this workspace

    Row Level Security (RLS)
    Enforced at database level
    Role-Based Access Control
    2 users with elevated permissions
    Activity Logging
    1 events logged (7d)

    Recent Activity

    Latest security-relevant events in your workspace

    Export Created
    alex@acme.exampleon contact
    Jun 2, 14:32
    2fa Enrolled
    sam@acme.example
    Jun 1, 09:15

    Data Hub, Recovery & Backups

    System Operations → Data Hub → Recovery & Backups is where admins restore soft-deleted records, undo bulk batches, and create or review workspace snapshots.

    Data Hub, Recovery & Backups tab

    Data Hub

    Import and export your CRM data with smart field mapping and duplicate detection

    Trash Recovery

    Deleted CRM records stay recoverable for 30 days. Restores are limited to workspace admins and permanent deletion happens only through the scheduled retention purge.
    Contacts
    2 of 2 loaded
    RecordDeletedAction

    Jordan Lee

    c-1042

    Jun 1, 09:12

    Northwind Q2 expansion

    d-881

    May 30, 16:40

    Recent Bulk Undo Batches

    Batch restore uses the captured pre-delete payload, including records not visible on the current page.
    BatchCreatedStatusAction

    delete · contact

    47 records

    Jun 1, 11:05
    active

    Workspace Backups

    Retention policy

    Workspace snapshots are retained for 30 days.

    Latest workspace snapshot

    completed

    Completed 5/28/2026, 2:14:00 PM

    Other admin surfaces

    CapabilityWhere in the app
    Import rollbackSystem Operations → Data Hub → Import History
    Export CRM dataSystem Operations → Data Hub, or entity list export actions. See Export Data and Account Closure.
    Roles and permissionsSettings → Company Settings → User Management
    Mandatory 2FA policySettings → Company Settings → Configuration → Two-Factor Authentication
    Personal 2FA enrollmentSettings → My Settings → Profile (Authentication)

    Transparency

    CRM data is processed under our Terms and DPA. We publish subprocessors, offer a standard DPA on request, and run structured GDPR and CCPA access and deletion requests. Cross-border transfers use standard contractual safeguards — details in the Privacy Policy and DPA.

    Subprocessor listPrivacy PolicyCookie PolicyPrivacy and data requestsSecurity disclosure

    Responsible disclosure

    Report vulnerabilities to security@lumenbase.io. Our policy covers scope, safe harbor, and response times.

    Read the disclosure policy

    Enterprise questions

    We complete security questionnaires and provide our DPA on request: security@lumenbase.io, privacy@lumenbase.io.

    Was this article helpful?