Skip to main content

Security & Privacy

LexHub is built on EU-only infrastructure, strict access controls, and full GDPR compliance — so your documents and client data stay protected at every stage.

Security & Privacy

LexHub is designed for legal professionals who handle sensitive client information. Every layer of the platform — from where your data is stored to how AI processes it — is built to protect that information and give you full control over it.

EU-only data hosting

All data is stored and processed exclusively within the European Union. Nothing ever leaves EU borders. This ensures compliance with local data residency requirements and gives your organisation confidence that your data is subject to European law.

No training on your data

Your documents are never used to train AI models. LexHub processes your content solely to deliver results to you — and nothing else.

End-to-end encryption

Data is encrypted in transit using TLS 1.3 and at rest using AES-256. Your documents and communications are protected at every stage of processing and storage.

Secure authentication

LexHub supports two-factor authentication (2FA) and SSO integration, providing industry-standard identity verification for every account.

Role-based access control

Workspace administrators can define exactly who can view, edit, or manage documents and projects. Sensitive work is only accessible to the people who are supposed to see it. See [Settings & Administration] for more on managing user roles.

Audit logging

Every action in LexHub is logged — who accessed what, when, and from where. This gives your organisation full accountability and traceability across all legal work.

Compliance & certifications

LexHub meets European standards for data protection and AI governance:

  • GDPR — Fully compliant. Data processing agreements (DPAs) are available for all customers.

  • EU AI Act — Compliant. LexHub is designed to meet requirements for transparency, accountability, and human oversight in AI-assisted workflows.

  • ISO 27001 — In progress.

  • SOC 2 Type II — Planned.

Data processing agreements

If your organisation requires a formal DPA, you can request one via [email protected] or find it at lexhub.app/dpa.

What happens to your data if you cancel?

Your data remains yours. If you cancel your subscription, your documents and work are not retained by LexHub beyond the period required to close your account.

Related Articles
FAQ
Getting started with Reviews
Glossary
Welcome to LexHub
Did this answer your question?