Security
Last updated:
June 17, 2026
Built for sensitive legal work
Legal teams handle some of the most confidential information in an organisation. Legal Connection is designed to protect that information through secure cloud infrastructure, customer-specific data separation, encryption and strict access controls.
SOC 2 Type II certified
Hosted securely on AWS
A separate database for every customer
Encryption in transit and at rest
Customer data is never used to train public AI models
We can support your organisation’s security review, including vendor questionnaires, data protection assessments and discussions with your legal, privacy, procurement and information security teams.
Legal Connection is SOC 2 Type II certified, demonstrating that our security controls have been independently assessed over time.
The platform is hosted on secure Amazon Web Services infrastructure. Files and customer data are stored within our controlled AWS environment, supported by robust technical and organisational security measures.
Security you can trust
Customer data segmentation
Every Legal Connection customer has their own dedicated database.
This provides a strong layer of separation between customer environments and reduces the risk of information being exposed across organisations. Customer data is not simply separated by account permissions within one shared database.
This architecture is particularly important for legal teams handling confidential contracts, internal investigations, commercially sensitive communications and personal information.
Securely hosting on AWS
Legal Connection’s files and platform data are hosted on Amazon Web Services.
AWS provides the secure and resilient cloud infrastructure on which Legal Connection operates. We combine this infrastructure with our own application-level security controls, access restrictions, monitoring and customer-specific database architecture.
This allows us to provide a secure and scalable environment for sensitive legal documents, communications and workflows.
Encryption in transit and at rest
egal Connection encrypts customer information both while it is being transmitted and while it is stored.
Encryption in transit
Information sent between users, Legal Connection and our approved service providers is encrypted in transit. This helps prevent data from being intercepted while documents, messages and other information are being uploaded, accessed or processed.
Encryption at rest
Customer files and data are also encrypted at rest within our cloud environment. This helps protect stored information, including contracts, legal requests, policies, attachments and communications.
Together, encryption in transit and at rest helps protect customer information throughout its lifecycle within Legal Connection.
Your data remains your data
Your organisation retains ownership of the information stored and processed through Legal Connection.
We do not use customer contracts, legal requests, policies, communications or other customer information to train public or shared AI models.
Data is processed only to provide the services and AI functionality your organisation has chosen to use. Where approved technology providers are required to perform a particular function, we apply appropriate contractual, technical and organisational safeguards.
Controlled access to sensitive information
Legal Connection uses role-based permissions to control who can access particular information and functionality.
Organisations can manage access across legal teams, business users, administrators and external participants. Users only receive access to the matters, documents and information they are authorised to view.
This allows legal teams to collaborate across the business without giving every user unrestricted access to the legal department’s information.
Secure document handling
Legal Connection brings legal requests, documents, communications, approvals and contract workflows into one controlled environment.
Contracts, policies, attachments and legal communications can be managed securely within customer workspaces, rather than being spread across disconnected email threads, shared drives, spreadsheets and unapproved AI tools.
Files remain hosted within Legal Connection’s secure AWS environment and are protected through encryption, permissions and customer-specific data separation.
Responsible AI for legal teams
Legal Connection uses AI to help answer internal legal questions, review contracts, extract information and support legal workflows.
These features are designed around the sensitivity of legal data. Customer information is only processed where necessary to provide the requested functionality and is not used to train public or shared AI models.
Legal teams remain in control. AI-generated answers, reviews and suggested changes can be checked, approved or amended before they are relied upon.
Designed for privacy and compliance
Legal Connection helps organisations maintain appropriate control over personal, confidential and commercially sensitive information.
Our security and compliance programme includes:
- SOC 2 Type II certification
- Secure AWS cloud infrastructure
- A separate database for each customer
- Encryption in transit and at rest
- Role-based access controls
- Restricted permissions
- Secure authentication
- Controlled handling of documents and communications
- Responsible use of AI and customer data
- Ongoing monitoring and security reviews
We can also support security questionnaires, vendor due diligence, data protection assessments and reviews relating to requirements such as SOC 2, HIPAA and data processing obligations.
Speak directly with our team
Every organisation approaches security, privacy and compliance differently. Our team understands the requirements of in-house legal departments and can talk through your data, security and governance needs in detail.


