We work hard in making LUCY a secure product. Here is a quick overview of the most important security topics: * **Restricted network-based access to LUCY**: [[firewall_security_settings|Firewall]] * **Secure the user access**: [[password_policies_login_protection_strong_authentication|Password Policy]] * **2-Factor Authentication**: [[2-factor_authentication_2fa|2FA]] * **Restrict the user access**: [[user_management|Administrative Users]] * **Secure Setup of LUCY in DMZ**: [[setting_up_a_lucy_master_slave|Master & Slave]] * **Secure (and anonymous) storage of data**: [[confidentiality_of_campaign_data|Confidentiality of Data]] * **Delete sensitive data:** [[deleting_sensitive_data|Data clean-up]] * **Secure communication channels**: [[ssl_configuration|Trusted ADMIN Certificate Generation with LUCY]] * **Transparent network communication**: [[network_communication_-_lucy_--_internet|Network Communication]] * **Secure support**: [[remote_ssh_support|SSH in LUCY]] * **Updates of the application**: [[update_lucy|Lucy Update]] * **OS, Patches & Software**: [[technical_information|Technical Information]] * **Custom Admin URL creation**: [[custom_admin_url_title|Admin Path]] * **Ability to monitor all system activities**: [[log_files_in_lucy|System Logs]] * **Ability to monitor the system in real-time**: [[system_performance_monitoring|System Monitoring]] * **Data Security, Processes Privacy (GDPR)**: [[company_application_and_data_security|Company, Application, Data Security and Privacy]] * **Ability to store key on HSM:** [[hsm_db_encryption|HSM Database encryption]] * **Block access to campaigns based on IP-ranges and browser types**: [[filters|Filters]] * **VPS Hardening info:** [[vps_hardening|VPS Hardening]] * **Optional protection system:** [[suricata|IPS/IDS]] Additionally we perform regular external (anonymous) penetration tests according to the OWASP testing categories (https://www.owasp.org/). If you still should experience a security issue, please contact us under support@lucysecurity.com.