Security & Content Moderation

Learn how we protect your data and maintain a safe environment using industry-leading security practices and AWS Rekognition.

AWS Rekognition Content Moderation

Automated NSFW detection before approval

How It Works

Lumra uses AWS Rekognition, Amazon's advanced machine learning service, to automatically detect and filter inappropriate content, including NSFW (Not Safe For Work) material. This ensures that only appropriate content reaches your groups.

Our content moderation process happens automatically and transparently:

1

Upload

User uploads content to Lumra, which is securely stored in AWS S3 with encrypted access.

2

Trigger Analysis

AWS Lambda function automatically triggers when new content is uploaded to S3.

3

Rekognition Scan

AWS Rekognition analyzes the content using machine learning models trained to detect inappropriate material.

4

Status Update

Content status is updated via secure webhook: APPROVED (visible), DENIED (blocked), or PENDING (review).

What Content Is Detected?

AWS Rekognition detects explicit nudity, sexual content, and other inappropriate material. Content flagged by Rekognition is automatically rejected and not made visible to group members. This automated process ensures a safe environment for all users.

Security Features

End-to-End Encryption

All data is encrypted both in transit (using HTTPS/TLS) and at rest. Your content is protected from unauthorized access at every stage of storage and transmission.

Secure AWS S3 Storage

All media files are stored in Amazon S3, one of the most secure and reliable cloud storage services. Access is controlled through signed URLs that expire after a set time, ensuring only authorized users can view content.

JWT Authentication

We use JSON Web Tokens (JWT) for secure authentication, with automatic refresh token rotation. Multi-device support includes device tracking for enhanced security monitoring.

Role-Based Access Control

Group members have different permission levels. Admins can manage groups, categories, and members, while regular users can upload and interact with content. Content ownership ensures users can only edit or delete their own uploads.

Privacy First

Content is only visible to members of the group where it's shared. We don't track your activity, show ads, or sell your data. You are the customer, not the product.

Additional Security Measures

  • Regular Security Audits

    Ongoing monitoring and security assessments to identify and address vulnerabilities.

  • API Security

    Protected API endpoints with API key authentication for webhook integrations.

  • Database Security

    PostgreSQL database with encryption at rest and strict access controls.

  • Email Verification

    Required email verification for new accounts to prevent spam and abuse.

Have Security Questions?

If you have concerns or questions about our security practices, please don't hesitate to contact us.

Contact Support