Security Policy
Last Updated: July 10, 2026
Trust online shopping requires isn't automatic — it's earned by actually taking security seriously, not just saying you do. This page walks through the real safeguards we use to protect your information, how we handle a security concern if one comes up, and a few things you can do on your end to stay protected too.
We'll be upfront about something most security pages won't say outright: no website can promise to be 100% unhackable, forever. What we can promise is that we take reasonable, genuine precautions — and that we take it seriously when something needs attention.
1. Our General Approach
Security isn't a one-time setup for us — it's something we keep adjusting as tools, threats, and technology evolve. In practice, that means:
- Protecting the information you give us from unauthorized access
- Keeping checkout and account data encrypted in transit
- Watching for transactions that look unusual or potentially fraudulent
- Limiting who on our team can access customer information, based on actual need
- Reviewing and responding to security concerns as they come up
We'd rather describe this honestly as "reasonable, evolving safeguards" than make a blanket promise of total security nobody could actually back up.
2. Encrypted Connections (HTTPS)
Our site runs on HTTPS, which encrypts the connection between your browser and our website. That covers things like account login, checkout, order tracking, and any contact forms you fill out — the data is scrambled in transit so it can't be easily intercepted.
A quick way to check: look for https:// at the start of our web address, or the small lock icon most browsers display near the address bar. It's a good habit to glance at that before entering any personal information on any site, not just ours.
3. How We Handle Payment Security
Payments run through Shopify's checkout and our payment providers' systems — never through a form we build or host ourselves. That means:
- Payment info travels through an encrypted connection
- Providers apply their own fraud-screening and authentication checks
- Access to payment records on our end is limited to what's actually needed
- We don't intentionally store your full card number or security code in our regular order records
We will never ask you to send a full card number, security code, or password through email, live chat, or a phone call. If a message claiming to be from Lumenvel asks for that, it isn't us — please don't respond with that information, and let us know so we can look into it.
4. If You Have an Account
A few habits go a long way in keeping your account secure:
- Use a password you haven't reused elsewhere
- Don't share your login with anyone
- Avoid logging in over public or unsecured Wi-Fi
- Sign out if you're on a shared or public device
- Take a look at your order history occasionally for anything unfamiliar
Just to say it again clearly: we will never ask for your account password. Not by email, not by phone, not through chat. If someone does, report it to us at customersupport@lumenvel.com and we'll look into it right away.
If you suspect unauthorized access to your account, reach out immediately — we may ask a few identity-confirming questions before making any changes, just to make sure we're actually talking to you.
5. How We Screen for Fraud
Every so often, an order will trigger a closer look on our end — maybe the billing and shipping details don't quite line up, or a payment provider flags something unusual. When that happens, we might:
- Ask you to confirm a few order details
- Reach out using the contact info from your order
- Place the order on a brief hold while we review it
- Decline or cancel a transaction if fraud seems likely
This isn't about assuming the worst — it's a routine part of protecting both legitimate customers and the payment accounts behind their orders. If we ever do reach out for verification, we'll ask for basic confirmation details, never your full card number or a password.
6. Who Can Access Your Information
Access to customer information is limited to people and service providers who genuinely need it to do their job — processing your order, handling a return, providing support, or meeting a legal or accounting requirement. It's not something casually available to anyone on our team who happens to be curious.
Full detail on what we collect and why lives in our Privacy Policy — this page is specifically about how we protect it.
7. The Providers We Work With
Running an online store means relying on a handful of outside providers for specific jobs — hosting, payment processing, fraud detection, shipping, and analytics, to name a few. Each of these only receives the information they actually need to do their part, and each operates under their own security practices and contracts. We choose providers thoughtfully, but we can't personally control every technical system an independent provider runs on their end.
8. Keeping the Site Itself Secure
Behind the scenes, we periodically review our website settings, connected apps, and account permissions to catch anything that looks off. If something needs attention, we may update configurations, revoke unnecessary access, or work directly with Shopify or another provider to resolve it.
We won't publish every technical detail of how we do this — partly because some of that detail, if made public, could actually make our defenses less effective rather than more transparent.
9. If a Security Incident Happens
If we become aware of something that looks like a genuine security incident — unauthorized account access, a compromised system, anything along those lines — here's generally what happens:
- We look into what happened and how far it reaches.
- We take immediate steps to secure the affected account or system.
- We work with the relevant providers (hosting, payment, etc.) if needed.
- We take reasonable steps to prevent it from getting worse.
- If required by law, we notify anyone affected and any relevant authorities.
The specifics depend entirely on what actually happened — we're not going to pretend every incident follows an identical script.
10. Reporting a Security Concern
Noticed something that seems off — a strange login, a suspicious email claiming to be us, anything like that? Let us know:
Email: customersupport@lumenvel.com (subject line: "Security Concern")
Phone: +1 (707) 220-3740
Live Chat: Available on our website
Helpful things to include:
- What happened, as specifically as you can describe it
- Roughly when it occurred
- The page, order, or account involved, if relevant
- A screenshot (with anything sensitive blacked out)
Please don't include full card numbers, passwords, or government ID numbers in your report — we won't need them, and it's safer for you not to send that over email in the first place.
11. Spotting a Phishing Attempt
Scammers occasionally impersonate real retailers to steal information. A message is worth being suspicious of if it:
- Demands urgent payment through gift cards, crypto, or a wire transfer
- Asks for your account password or full card details
- Comes with an unexpected attachment
- Links to a website that isn't actually ours
- Claims you placed an order you don't remember making
We will never ask you to pay outside our normal checkout, and we will never ask for your password. If a message claiming to be Lumenvel does either of those things, it isn't from us — forward it to customersupport@lumenvel.com and we'll take a look.
12. A Few Things You Can Do
Security is a two-way street. Some simple habits that help protect you, no matter which site you're shopping on:
- Keep your browser and devices updated
- Use unique passwords across different sites
- Avoid completing purchases over public Wi-Fi
- Double-check a website's address before entering payment info
- Glance at your bank statement periodically for anything unfamiliar
- Be cautious clicking links in unexpected emails or texts
We can protect our systems on our end — but a strong password and a little healthy skepticism go a long way on yours.
13. Links to Other Sites
Occasionally, our site links out to something external — a carrier's tracking page, a payment provider, a social platform. Once you click through, that site's own security and privacy practices take over, and we can't vouch for what happens there. Worth a quick check of their own policies before entering anything sensitive.
14. A Fair Word on Limitations
This page describes our general approach, not a guarantee that nothing will ever go wrong. We're not disclosing every technical detail of how our systems are configured — some of that needs to stay under wraps precisely so it keeps working. What's written here is meant to give you a genuine, honest sense of how seriously we take this, not a marketing checklist.
15. Updates to This Policy
As our tools, providers, and practices evolve, we'll update this page to reflect that — and revise the date at the top when we do.
Questions or Concerns?
Lumenvel
Business Address :
4016 Grand Ave, Suite A
Chino, CA 91710
United States
Email: customersupport@lumenvel.com
Phone: +1 (707) 220-3740
Live Chat: Available on our website
Support Hours: Monday–Friday, 9:00 AM–5:00 PM Pacific Time (closed Saturday & Sunday)
Response Time: Messages sent outside business hours are answered the next business day, usually within 24 hours.
Suggested Internal Links
- Privacy Policy
- Payment Policy
- Cookie Policy
- Terms of Service
- Contact Us