TrustKit.co
Lumo (Proton) icon

Lumo (Proton)

Privacy-first AI assistant from the makers of ProtonMail, with Swiss jurisdiction and zero-access encryption

by ProtonCHSwitzerland🌐Germany and Norway (Proton data centres), zero-access encryption
AI Chat & Assistants
TrustKit Score92%Excellent

About Lumo (Proton)

Lumo is Proton AG's AI assistant, launched in July 2025 as a privacy-focused alternative to ChatGPT, Gemini, and other mainstream AI chatbots. Built by the same team that created ProtonMail, ProtonVPN, and Proton Drive, Lumo applies Proton's signature approach to privacy—zero-access encryption, open-source code, and Swiss legal jurisdiction—to the AI assistant category. Lumo's architecture is designed so that Proton cannot read user conversations. Chats are encrypted on-device before being sent to Proton's infrastructure, and the company uses zero-access encryption so that even Proton engineers cannot access conversation content. The AI runs on open-source models including Mistral and others, with Proton operating its own inference infrastructure in Germany and Norway. Proton AG is incorporated in Switzerland, which provides one of the strongest privacy jurisdictions globally. Switzerland is not in the EU but has GDPR adequacy, its own Federal Act on Data Protection (FADP), and critically, is outside the reach of both the US CLOUD Act and EU data retention directives. This makes Swiss jurisdiction particularly attractive for privacy-sensitive AI applications. Lumo's code is fully open-source, allowing independent security audits. Proton AG holds ISO 27001 and SOC 2 certifications at the organisational level. The combination of Swiss jurisdiction, zero-access encryption, open-source transparency, and Proton's established privacy track record makes Lumo one of the strongest privacy-first AI assistants available. Pricing includes a free tier with limited usage (no account required) and Lumo Plus at $12.99/month for unlimited access.

TrustKit Score Breakdown

?92% Excellent
Data Residency
Where is your data stored and processed?
Data hosted in Proton's own data centres in Germany and Norway. Zero-access encryption means even Proton cannot read conversation content. No US infrastructure dependency.
5/5
Legal Jurisdiction
Which laws govern the company and your data?
Swiss incorporation provides one of the strongest privacy jurisdictions globally. Outside US CLOUD Act reach. Swiss FADP and GDPR adequacy. Proton has a decade-long track record of defending user privacy.
5/5
Data Retention & Training
Is your data used for model training?
Zero-access encryption on conversations. User data explicitly never used for model training. Open-source code enables independent verification of privacy claims.
5/5
Certifications
ISO 27001, SOC 2, Cyber Essentials, etc.
ISO 27001 and SOC 2 at Proton AG organisational level. Strong for a consumer-facing privacy product. ISO 27701 would further strengthen the posture.
4/5
Regulatory Fit
Suitability for regulated industries and professional services
Excellent fit for privacy-sensitive professionals in legal and financial services. Swiss jurisdiction, zero-access encryption, and no training on user data address key regulatory concerns. Not EU-incorporated but GDPR adequate.
4/5

Pricing

FreemiumFree tier
FreeFree
Lumo Plus$12.99/mo($9.99/mo annual)
Full pricing details →

Quick Facts

Starting PriceFree / $12.99/mo PlusData HostingGermany and Norway (Proton data centres), zero-access encryptionTrains on Your DataUser data never used for model trainingFounded2014Employees201-1000
Visit Lumo (Proton)

Frequently Asked Questions

Is Lumo (Proton) GDPR compliant?

Lumo (Proton) has a TrustKit compliance score of 92% (Excellent). Data Residency: Data hosted in Proton's own data centres in Germany and Norway. Zero-access encryption means even Proton cannot read conversation content. No US infrastructure dependency.. Legal Jurisdiction: Swiss incorporation provides one of the strongest privacy jurisdictions globally. Outside US CLOUD Act reach. Swiss FADP and GDPR adequacy. Proton has a decade-long track record of defending user privacy..

Where does Lumo (Proton) store data?

Lumo (Proton) hosts data in: Germany and Norway (Proton data centres), zero-access encryption. Data hosted in Proton's own data centres in Germany and Norway. Zero-access encryption means even Proton cannot read conversation content. No US infrastructure dependency.

Does Lumo (Proton) train on user data?

Lumo (Proton): User data never used for model training. Zero-access encryption on conversations. User data explicitly never used for model training. Open-source code enables independent verification of privacy claims.

What certifications does Lumo (Proton) hold?

Lumo (Proton) holds: ISO 27001, SOC 2. ISO 27001 and SOC 2 at Proton AG organisational level. Strong for a consumer-facing privacy product. ISO 27701 would further strengthen the posture.

Compare Lumo (Proton) With

Claude iconClaudeDeepL iconDeepLMicrosoft Copilot iconMicrosoft CopilotLangdock iconLangdockNotion AI iconNotion AIChatGPT iconChatGPT

Similar Tools

Aleph Alpha icon
Aleph Alpha
Sovereign AI for European enterprises and governments
96%
Asana AI icon
Asana AI
AI-powered project management for modern teams
72%
ChatGPT icon
ChatGPT
AI assistant by OpenAI for conversation, analysis, and content creation
64%
Claude icon
Claude
Anthropic's safety-focused AI assistant for analysis, writing, and coding
80%
Cohere icon
Cohere
Enterprise AI platform with a strong data privacy commitment and flexible deployment including on-premises
96%
Gemini icon
Gemini
Google's AI assistant for creativity, productivity, and coding
76%