Secure & private AI API

Secure AI API — Data Flow, Privacy & API Key Safety

Understand what passes through LumeAPI before sending production data — prompts go to upstream model providers, Usage logs store metadata, and you control API key placement.

We do not claim “100% private.” Read Privacy Policy and Terms. Do not send regulated sensitive data without legal review.

  • API key auth
  • Usage metadata
  • Privacy policy
  • Self-serve billing

Supported models (same security boundary)

Official reference vs LumeAPI catalog rates. Pricing unit: per 1M input / output tokens. Last updated: July 2026. Source: provider list price.

ModelOfficial (in / out)LumeAPI (in / out)Savings
GPT-5.6 Terragpt-5.6-terra$2.50 / $15.00$1.25 / $7.5050% offDetails →
Claude Sonnet 4.6claude-sonnet-4-6$3.00 / $15.00$1.80 / $9.0040% offDetails →
Gemini 3.1 Progemini-3.1-pro-preview$2.00 / $12.00$1.20 / $7.2040% offDetails →
Gemini 3.5 Flashgemini-3.5-flash$1.50 / $9.00$0.90 / $5.4040% offDetails →

Read before you send sensitive data

Prompts transit LumeAPI to upstream inference providers to fulfill the model id you requested. We are not a private on-prem deployment. Review Privacy Policy and Terms with your legal team before processing regulated data.

API keys belong in server-side secrets. Usage logs help billing and debugging; they are not a substitute for your own audit trail if compliance requires it.

If you cannot accept third-party processing, do not route that data through any external AI API—including LumeAPI.

Security review worksheet

List data classes you will send (PII, credentials, customer content). Mark which classes are prohibited from third-party AI APIs per your policy.

Rotate API keys on the same schedule as other production secrets. Revoke keys immediately in Console if a leak is suspected, then audit Usage for anomalous model ids or spend spikes.

Self-serve path: register to first API call

LumeAPI is designed for developers who want to integrate without scheduling demos. Create an account, confirm your email, and open Console to generate an API key. Fund your USD wallet with USDT on supported chains when you are ready for billable traffic—there is no mandatory minimum beyond what your tests require.

Point your OpenAI-compatible client at https://api.lumeapi.site/v1, set Authorization to Bearer your key, and pass a catalog model id in the model field. Run a short curl or SDK script from /docs to verify latency, streaming, and error handling before you attach the key to production services.

Use Usage logs to reconcile per-call cost with finance forecasts. When a model tier is too expensive or quality is insufficient, change model id—not your entire integration. For cross-provider price tables and Research deep dives, follow internal links on this page rather than duplicating migration math here.

Documentation, catalog, and support

Every catalog model has a detail page under /models with official reference pricing, LumeAPI pricing, and links to /docs/models/{id} for parameters and curl examples. Start there when this commercial page points you to a model id you have not called before.

The /docs index lists gateway authentication, Chat Completions, image endpoints, and async video patterns. llms.txt bundles the same information for agent tooling—useful when you want a single URL to paste into Cursor or an internal bot.

Research articles explain why bills grow and how to compare providers; commercial pages like this one explain what LumeAPI offers and how to start. Follow internal links instead of searching for duplicate migration content across pages.

If billing, chain deposits, or integration behavior is unclear, use /contact for support channels. Include your model id, approximate request time, and whether the issue is authentication, balance, or model parameters—that speeds up resolution.

Why LumeAPI

Clear data path

Your prompts transit LumeAPI gateway to upstream inference providers.

Usage metadata

Console logs call metadata for billing — not a substitute for your own audit logs.

API key control

Keys in server-side secrets — never embed in client apps.

Policy links

Privacy Policy and Terms linked from every page footer.

Get started in three steps

  1. Create an API key — register and open Console.
  2. Set the LumeAPI base URLhttps://api.lumeapi.site/v1
  3. Choose a supported model id — from the table above or model catalog.

Migrate in minutes

Three values change: API key, base URL, model id. Everything else stays the same.

Before (unclear data handling)

python
from openai import OpenAI

client = OpenAI(api_key="YOUR_OPENAI_API_KEY")

response = client.chat.completions.create(
    model="claude-sonnet-4-6",
    messages=[{"role": "user", "content": "Hello"}],
)

After (LumeAPI)

python
from openai import OpenAI

client = OpenAI(
    api_key="YOUR_LUMEAPI_KEY",
    base_url="https://api.lumeapi.site/v1",
)

response = client.chat.completions.create(
    model="claude-sonnet-4-6",
    messages=[{"role": "user", "content": "Hello"}],
)

Full step-by-step rollout, streaming checks, and FAQ: Privacy Policy →

Migration & compatibility

What LumeAPI sees

Request payloads required to route inference, authentication, and billing metadata.

What upstream sees

Prompt and completion content needed to run the model you requested.

Prompt/response logging

See Privacy Policy for retention. Do not send secrets you cannot risk exposing.

Not suitable for

Unreviewed PHI, PCI, or classified data — consult legal before any third-party AI API.

Trust & billing

Do you train on my data?

See Privacy Policy for subprocessors and data handling.

Prompt retention?

Documented in Privacy Policy — review before sending sensitive content.

API key leaked?

Revoke in Console immediately and rotate.

Private LLM API?

LumeAPI is a managed gateway to third-party models — not on-prem isolation.

Built for these workloads

Security review

Map data flow before procurement approval.

API key hygiene

Rotate keys, separate staging/production, revoke in Console.

Compliance questionnaires

Start with Privacy Policy, Terms, and this page.

Customer trust

Disclose third-party AI processing in your product privacy notice.

Related guides

FAQ

Is my data 100% private?

No blanket claim. Read Privacy Policy and assess your data classification.

What data is logged?

Usage metadata for billing. See Privacy Policy for details.

GDPR / enterprise?

Contact support with specific compliance questions.

Client-side keys?

Never in public frontends. Server-side or secure backend only.

Production checklist?

See /production-llm-api.

Terms of service?

See /terms.

Review policies, then integrate safely

Secure integration starts at https://api.lumeapi.site/v1. Need help choosing a model? Browse the developer docs or contact support.