Last updated: April 29, 2026
Lumobot is a scheduling and lead capture assistant for local businesses. It helps website visitors find information about services, hours, insurance, and pricing — and connects them with your team for appointments. It is designed as a front-desk tool, not a health intake platform.
Lumobot is designed as a privacy-first front-desk assistant — built for general practice questions and lead capture, not for clinical intake, diagnosis, or emergencies. Our chatbot is built to:
The AI is explicitly instructed not to ask for symptoms, diagnoses, or medical history. If a visitor voluntarily shares health details, the bot briefly acknowledges and connects them to your team — it does not record clinical interpretations or attempt triage.
Not a clinical or emergency tool. For urgent symptoms or emergencies, visitors should be directed to call the practice or 911. The bot surfaces this guidance when it detects emergency-language patterns.
HIPAA status. Lumobot is not currently marketed as HIPAA compliant and we do not sign Business Associate Agreements (BAAs). Practices using Lumobot remain responsible for their own HIPAA obligations and should configure the bot accordingly. A future HIPAA-ready deployment with the necessary vendor BAAs is on our roadmap; until then, the front-desk scoping above is how we minimize sensitive-information exposure.
Even though we don't handle PHI, we take security seriously:
Lumobot maintains a comprehensive, immutable audit log that records every access to conversation data, lead exports, transcript emails, login/logout events, settings changes, team member actions (invite / remove / role change), 2FA enrollment + unenrollment, and sign-out-everywhere events. Business owners view their complete audit history from the dashboard under Settings → Audit Log, with date-range filtering (today / last 7d / last 30d / this month / custom) and one-click CSV export for compliance reviews.
Through the chatbot widget, we may collect:
Lumobot integrates with the following trusted providers:
| Provider | Purpose | Certifications |
|---|---|---|
| Supabase | Database & authentication | SOC 2 Type II |
| Anthropic | AI language model | SOC 2 Type II, data not used for training |
| Vercel | Application hosting | SOC 2 Type II |
| Stripe | Payment processing | PCI DSS Level 1 |
| Resend | Email notifications | No visitor data in emails |
| Telnyx | SMS notifications via toll-free or hosted SMS on the customer's existing business number | SOC 2 Type II, HITRUST, no visitor data in SMS |
All customer data is stored in the United States (AWS us-east-1, hosted via Supabase). We do not replicate data outside the US. AI processing through Anthropic's Claude API runs in their US-region infrastructure under their pay-as-you-go Terms of Service — Anthropic does not train models on API customers' content. We never transfer customer data to third-party regions for any reason.
Lumobot honors data-subject rights under both GDPR (EU) and CCPA (California). Each business owner is the data controller for the visitor data captured by their widget; Lumobot is the data processor. To exercise rights:
Lumobot is designed as a privacy-first front-desk assistant — a scheduling and information tool, not a clinical-intake or healthcare-data system. We recommend healthcare practices:
BAAs:Lumobot does not sign Business Associate Agreements at this time. The product is designed to minimize PHI exposure — it captures pre-patient website visitor info (name, phone, what they're asking about), routes clinical questions back to your team, and never touches patient charts, treatment records, billing, or your PMS. Practices using Lumobot remain responsible for their own HIPAA obligations. If your organization has hospital-affiliated or DSO compliance requirements that specifically require a BAA-bound vendor, this product isn't the right fit today — email mike@lumobot.io and we'll let you know when our HIPAA-ready deployment path is available.
Conversation data is retained for the duration of your subscription.
Per-resource exports:Download your leads as CSV from Dashboard → Leads, and your access audit history as CSV from Settings → Audit Log. These cover the practical “give it to my accountant” / “show me who accessed what” workflows.
Self-serve deletion:Delete your account and all associated data at any time from Settings → Account → Danger Zone. After cancellation, residual data is purged within 90 days.
The Lumobot chatbot has hardcoded safety rules that cannot be overridden by conversation or configuration. These protect your business from liability.
| Prohibited Topic | Why |
|---|---|
| Health or medical advice | Only licensed providers can advise |
| Legal advice | Only licensed attorneys can advise |
| Billing dispute opinions | Could expose business to liability |
| Competitor comparisons | Unprofessional and potential defamation |
| Outcome guarantees | False advertising risk |
| Exact pricing commitments | Prices vary by situation |
| Staff opinions | HR and reputation protection |
| Discriminatory treatment | Civil rights compliance |
| Fabricated information | Only discusses verified business data |
| Personal opinions | Facts only — no "I think" or "I recommend" |
| Other visitors' information | Each conversation is private |
When the chatbot encounters a prohibited topic, it acknowledges the question and redirects the visitor to contact your team directly.
The chatbot runs two background quality checks on every response so issues surface to the business owner before they accumulate:
HALLUCINATION_GRADER_ENABLED.For compliance questions, data requests, or to discuss your specific needs: mike@lumobot.io