Trust centre
Security built for legal practice.
AWS Sydney
ap-southeast-2 — sole hosting region
ISO 42001
AI management system standard — targeted
ISO 27001
Information security management — targeted
0
Third-party AI providers with data retention
AI governance
AI governance is different.
Most security frameworks were written before large language models existed. LegalScout targets ISO/IEC 42001:2023 — the AI management system standard — alongside the traditional ISO 27001 information security framework. AI inference runs on AWS Bedrock within the Sydney region. Your documents and conversations are never transmitted to third-party AI providers with data retention policies.
- AWS Bedrock — AI inference via managed AWS service, no external API keys
- No training on your data — client content is never used to fine-tune models
- Structured audit logs — every AI query and admin action in tamper-evident JSON
- ISO 42001 alignment — AI governance controls mapped to the international standard
Three pillars
Three pillars of trust.
Compliance is not a checklist at LegalScout. It is a design constraint that shapes every architecture decision.
- 1
Australian Cloud Hosting
All data — documents, conversations, firm knowledge — is stored and processed exclusively within AWS Sydney (ap-southeast-2). Nothing crosses a border.
- 2
Privacy Act Compliance
LegalScout is aligned to the Privacy Act 1988 (Cth) and the thirteen Australian Privacy Principles. Your clients' data is handled as the Act intends.
- 3
Enterprise Security
AES-256 encryption at rest, TLS 1.2+ in transit, MFA-enforced access via Auth0, role-based permissions, and structured audit logging on every action.
Ready to level the playing field?
See LegalScout on your own contracts in a 20-minute live walkthrough. No pressure. No procurement deck.
Australian owned · Hosted in AWS Sydney · 24/7 support