Adding LunaDefend to your Web Application in minutes

Getting started with LunaSec is easier than most other security tools.

A piggy bank with a safe next to it

How do you add LunaDefend to your system?

LunaSec works wherever data enters or exits your web application.  You just need to add LunaSec's modules to your website and tell them what data to protect. For most applications, this takes only a few minutes.

A woman standing next to a safe, looking happy

When should you use LunaDefend?

Under new regulations, all "Publicly Identifiable Information" (or PII for short) must be protected by security features like access controls, logs for all access, and encryption. If you manage sensitive data that are protected under privacy regulations like GDPR, HIPAA, SOC2, CCPA, or PCI-DSS, LunaSec is an all-in-one solution for your compliance and security.

What information is required to be protected under privacy regulations?

Any data that may be used to identify an individual is under the scope of regulations like GDPR.

Examples of Protected Data:

  • Email Address,
  • First and Last name,
  • Phone Number,
  • Mailing Address (or Billing),
  • Race and Gender,
  • Political Opinions,
  • IP Address,
  • Photos where an individual is identifiable,
  • Location information,
  • Advertising identifiers (including cookies).

How does LunaDefend help with data compliance?

For most applications a breach only requires a developer to make a single mistake or forget to update a critical package (which is what happened with Equifax).

LunaSec prevents a single security problem from becoming a data leak by adding a layer of encryption to your data. This encryption process -- known as Tokenization -- helps protect your application from accidental data leaks due to individual security errors.

Once data has been converted into Tokens, your software is no longer under compliance regulations because it no longer manages sensitive data. That means that your database, your servers, your website, and everything in between is now secure and compliant, without an expensive audit.

Once LunaSec is in place and protecting your data, your website will look and function exactly the same for your users. Under the hood, LunaSec will be encrypting your data and storing it separately in a secure database (called the "Vault"). Your application will only have access to non-sensitive values known as Tokens.

A happy productive woman at her desk

How long does adding LunaDefend take?

Probably less time than the meeting to discuss it. For most applications, it takes only a few minutes to tell LunaSec about what data to protect. You won’t need to re-write your software from scratch, or otherwise make major changes. Tokens will simply take the place of your secret data. Our modules seamlessly plug-in to the web's most popular tools.

Whereas most security tools that involve encryption are complicated, LunaSec is designed to be simple. You don't have to memorize any extra passwords or deal with managing complicated encryption keys with LunaSec. We've designed it to work seamlessly with your existing websites with only a few small changes.

Why should you trust LunaDefend with your data?

The features that LunaSec uses to protect your data aren't new. They've been used by big tech companies for years. Now, we've brought them into one easy-to-use solution that can be used by anyone.

This isn't our first time dealing with massive amounts of sensitive data. Our team has experience managing secret data at companies like Uber, Snapchat, and Capital One. Since then, we've worked alongside the teams at 50+ companies to help them achieve their security and compliance goals.

How does LunaDefend work with your data?

LunaSec protects data by encrypting data before it's is passed to your application. Your software only ever deal with non-sensitive Tokens, while your users only see data normal and decrypted.

All encryption and management of sensitive data is done by LunaSec, and your application receives only a unique identifier that can be used to retrieve the data later. Handling of the real data happens in complete isolation, end-to-end.

This entire process is seamless for your application because LunaSec actually exists entirely within your application. If you have a Sign Up form where you collect information or a User Profile page where you show a user their name and email, then you simply tell LunaSec which values to protect and it begins working immediately.

Two people programming a website

How do Tokens work?

Tokens are random looking numbers that are meaningless, random-looking numbers. Tokens can be leaked, shared, and otherwise treated as non-sensitive values by your application and developers. They are not protected under regulations like GDPR.

For most applications, it takes only a few minutes to tell LunaDefend about what data to protect. You won’t need to re-write your software from scratch, or otherwise make major changes, because Tokens look just like any other data.

Once data has been converted into using Tokens everywhere, your software is no longer within scope of compliance regulations because it no longer manages sensitive data. That means that your database, your servers, your website, and everything in between is now secure and compliant.

For a more technical deep dive into the encryption process used to protect Tokens, please see our Developer Documentation.

Get started with LunaSec today

If you're a not a Software Developer, then we'd recommend get in touch with us in order to use LunaSec. We offer Premium paid support to make onboarding a breeze and to ensure that your security requirements are met.

We also offer LunaDefend as an Open Source product that you can use, for free, right now via our GitHub repository. For technical information and in-depth guides, please see our Developer Documentation.

A rocket launches towards a moon into space

Request a Demo

Use the form below to request a demo and see how LunaSec can put your dependency security on autopilot.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.