Privacy control, procedures, disclosures
LastPass aims to provide our global user base with the best possible experience. To help ensure sufficient service availability, uptime, and redundancy, we deploy a combination of geographically distributed physical co-location facilities and cloud hosting providers that replicate in near-real-time.
LastPass has implemented and maintains appropriate technical and organizational measures to preserve data confidentiality, integrity, and availability. This includes detailed information regarding LastPass’ zero-knowledge encryption capabilities and other comprehensive security measures.
To provide and operate services, LastPass engages with first and third-party sub-processors.
We will not disclose customer information unless presented with a valid warrant, subpoena, court order, or equivalent legal process. Additionally, LastPass may attempt to narrow requests that it deems excessively broad, request further clarification if the nature of the investigation is ambiguous, or contest the request for other reasons.