Swiss privacy company Proton has launched Lumo 2.0, a major upgrade to its zero-access encrypted AI assistant, as concerns mount over the security risks posed by mainstream AI tools in the enterprise.
Unlike most AI assistants, which log user conversations and may use them to train future models, Lumo is built so that not even Proton can read what users type into it. The company argues this addresses a growing blind spot in enterprise security: employees feeding confidential data, code, and documents into AI tools that retain and process that information on infrastructure subject to foreign legal jurisdiction.
With Lumo 2.0, Proton has significantly upgraded the assistant’s underlying models. Lumo 2.0 Max scores 240% higher than its predecessor on the Artificial Analysis Intelligence Index, a third-party benchmark of AI reasoning capability, while maintaining the same encryption architecture. New capabilities include advanced reasoning, image recognition and generation, web search with source citations, and user-controlled memory, all of which Proton says remain protected by end-to-end, zero-access encryption.
The release also expands Lumo for Business, which Proton says is already used by thousands of organisations. The business tier adds admin-controlled access management, letting IT and security teams govern who in their organisation can use the assistant and how, while keeping company data off US-jurisdiction infrastructure.
- Zero-access encryption: conversations, files, memories, and projects are encrypted such that Proton itself cannot access them
- No training on user data, and no logging of conversations server-side
- European infrastructure, placing data outside the reach of US Executive Orders and American data-collection requests
- Admin-controlled access management for business deployments
- Open-source codebase, allowing independent security verification
“Lumo 2.0 has been re-engineered from the ground up and the introduction of thinking mode gives it powerful new capabilities,” said Andy Yen, Founder and CEO at Proton. “Lumo 2.0 demonstrates that users no longer need to choose between powerful AI capabilities and meaningful privacy protections.”
The launch comes amid a broader industry debate about data governance in AI tools, as enterprises grapple with shadow IT risks from employees using consumer AI products to handle sensitive company information. Proton positions Lumo’s architecture as a direct answer to that risk category.
Lumo 2.0 is now available with free, Plus, and Professional tiers. More information is available here.
