Built for modern brokers
The operating system was missing.
LumireCRM is the back office for brokers and prop firms — KYC, money movement, marketing, IB networks, audit, and a public API. Multi-tenant, event-driven, and honest about every number on this page.
Self-serve signup · Approved within business hours
Settlements
TODAY $184,210
KYC auto-review
92.4%
AI approved
Withdrawals · pending
>$1,000 requires a second approver. Every decision lands in the audit log.
Every system the desk needs. None of the duct tape.
One graphite back office replacing the CRM, the payment spreadsheets, the KYC vendor tab, and the ad-platform dashboards your team juggles today.
01
Money movement
Deposits and withdrawals on real state machines. Sanctions screen on every payout, FX-normalised reconciliation, invoices, statements, CSV export.
02
KYC that just works
Hosted verification portal with self-hosted AI review and auto-approve. A manual state machine when you want hands on. Lists refreshed nightly.
03
NEWMarketing & ads engine
Meta lead ads land with attribution intact. CAPI and Google Data Manager push every funnel stage back. Spend sync prices your CPL and cost-per-FTD.
04
IB & affiliates
Multi-tier IB trees with CPA, RevShare and hybrid plans. Automated commission close, referral rewards, public leaderboards with dual-control prizes.
05
Risk & compliance
Sanctions screening across KYC and payouts — OFAC, EU, UK, UN. Dual-control on money and prizes. Tenant isolation enforced at the database row.
06
Automation & workflows
A drip engine on a 30-second cron: sequences, idempotent enrollment, email, SMS and WhatsApp through real adapters. Event-driven workflows take the rest.
07
Audit everything
Every state change writes an audit entry — money, KYC decisions, key rotations, admin actions. Immutable, queryable, tenant-scoped.
08
Public API
Sixty modules behind scoped keys — Argon2id-hashed, per-key rate limits, IP allowlists, an event catalog, and SDKs in four languages.
Crypto-native. No processor in the middle.
LumireCRM mints a deposit address per trader, watches the chain itself, credits the ledger idempotently, and tells your trading backend over an HMAC-signed webhook — then sweeps to treasury behind OTP. Fully automated, end to end.
- USDT on BSC · BASE · TRC20
- Idempotent credit — never double-booked
- Dual-control withdrawals over $1,000
- FX-normalised reconciliation + statements
- MINTPer-trader deposit address — USDT on BSC, BASE or TRC20
- SCANSelf-hosted chain scanners watch every block — no third party
- CONFIRMConfirmation threshold met on-chain — 12 / 12
- CREDITIdempotent ledger credit — the same tx can never book twice
- NOTIFYHMAC-signed webhook delivered to your trading backend
- SWEEPFunds swept to treasury behind OTP-protected admin control
- lead.created2,418→ CAPI · Lead
- lead.converted1,533→ CAPI · stage
- kyc.approved1,189→ CAPI · stage
- deposit.settled604→ CAPI · Purchase
From ad click to funded account — attributed.
Meta lead ads land in the CRM with click and UTM attribution intact. Every funnel event flows back to Meta CAPI and Google Data Manager with deduplicated event IDs — and nightly spend sync turns it into a CPL and cost-per-FTD you can defend.
- Meta lead webhook + backfill
- Custom audiences from segments
- S2S postbacks — Voluum · Keitaro · Binom
- Drip sequences — email · SMS · WhatsApp
A real API, not an export button.
Push leads from your landing pages, read deposits and withdrawals, enroll traders into drip sequences. Scoped keys with default-deny enforcement, per-key rate limits, IP allowlists — and webhooks that carry timestamped HMAC signatures.
- 7 key scopes · default-deny
- Per-key rate limits + IP allowlists
- Event catalog — 19 domain events
- SDKs — TypeScript · Go · PHP · Python
$ curl -X POST $LUMIRE_API/v1/api/leads \
-H 'X-API-Key: lum_live_............' \
-H 'Content-Type: application/json' \
-d '{ "email": "trader@northdesk.eu", "source": "meta_ads" }'
HTTP/1.1 201 Created
{ "id": "ld_91hd72", "status": "new" }
→ lead.created → webhooks · meta capi · drip enrollNumbers from the codebase, not the deck.
API modules
One NestJS back office
Domain events
Webhooks · workflows · CAPI
API-key scopes
Default-deny enforcement
SDK languages
TypeScript · Go · PHP · Python
Get started
Give the desk its operating system.
Create an account in minutes — our team approves new tenants within business hours. Your data stays yours: isolation is enforced at the database row.
Multi-tenant · Audit-logged · API-first