Your money, your trust, your security — our priority.
At Lumio, keeping you and your data safe is fundamental to everything we do. We connect to your financial accounts through Open Banking, using the latest security technologies and strict processes designed to keep you in complete control and protected at all times.
We use a combination of your device, mobile number, and a 5-digit passcode or biometric login (like Face ID or fingerprint) to ensure only you can access your Lumio account.
Your data is fully encrypted — both when it's stored and when it's sent. We use advanced encryption standards to make sure your financial information is locked down at all times.
Our infrastructure is monitored 24/7 for threats or unusual activity. Every new release is thoroughly tested by our team before it reaches you.
We verify your identity with two-factor authentication (2FA) to keep your account secure across devices. That means an extra layer of protection, every time you log in.
We regularly work with leading security experts to audit and strengthen our systems and policies, keeping Lumio secure and ahead of the curve.
Lumio is registered with the Financial Conduct Authority (FCA) under the Payment Services Regulations 2017.
Lumio was built to help couples manage their money with complete confidence — and that means keeping your data secure at every step.
If you have any questions about security or how we protect you, feel free to contact our support team anytime.
Some of our most asked questions. You can view all our FAQ's and Help Guides are here.
We prioritise your security at Lumio. We implement robust measures, such as bank-grade 256-bit TLS encryption, to safeguard your data. Your credentials are encrypted separately from personal information and never stored.
Lumio is a read-only service, ensuring that even if your account falls into the wrong hands, no transactions can occur without your pin-code or biometric ID. Our team undergoes regular security training and conducts penetration tests while adhering to open standards like OAuth 2.0 and OpenID Connect. Access to the live system is strictly controlled, and we encourage you to voice any security concerns via our in-app chat for prompt attention.
Your information's safety is our top priority.
We adhere to ISO-27001 information security procedures, a globally recognized standard used by major companies like Google, Microsoft, and Amazon. This certification signifies our commitment to maintaining a robust information security management system, subject to rigorous audits and assessments.It demonstrates our proactive approach to safeguarding consumer data.
Our practices include regular checks by a specialized Financial Service compliance team, mapping information asset risks to internal controls through a risk tracker, and implementing the principle of least privilege, ensuring staff access is limited to what's necessary for their tasks. Your data security is our priority.
We encrypt all your credentials and separate them from your personally identifiable information. To retrieve your transaction history your details are automatically unencrypted and used to retrieve your transaction history, then immediately re-encrypted.At Lumio we don’t store any of your login credentials, including passwords. Lumio app is a read-only service, so if your Lumio account should fall into the wrong hands (for example if your phone is stolen and hacked) no one can make any transactions from your account. In addition to this, to access your Lumio account you must provide a pin-code or biometric ID to log in each and every time.
We understand that your financial data is sensitive, and you have to be sure that you can trust Lumio before you share it with us. Lumio is registered as a Payment Services Directive Agent of Moneyhub Financial Technology Ltd, which is authorised and regulated by the Financial Conduct Authority.Find out more on the FCA Register https://register.fca.org.uk/s/firm?id=0010X00004Vt4mjQAB
Lumio is also a registered data controller ICO Data Protection Register, and we always act in compliance with data protection legislation. You can find out more about how we keep your data safe here.
