Privacy Policy

Last Updated: January 2025

1. Introduction

LexAI Solutions ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our document automation services. We operate in compliance with the General Data Protection Regulation (GDPR) and Estonian data protection laws.

By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you provide to us, including:

  • Name and contact information (email address, phone number)
  • Company or firm name and address
  • Professional credentials and affiliations
  • Billing and payment information
  • Any information you provide when contacting us or using our services

2.2 Documents and Content

When you use our document automation services, we process:

  • Documents you upload for processing (NDAs, contracts, etc.)
  • Document content, clauses, and metadata
  • Analysis results and generated suggestions

2.3 Technical Information

We automatically collect certain technical information, including:

  • IP address and device information
  • Browser type and version
  • Usage data and analytics
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our document automation services
  • Communication: To respond to your inquiries, provide customer support, and send important service updates
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Security: To detect, prevent, and address security issues and fraudulent activity
  • Business Operations: To manage our business operations and improve our services
  • Analytics: To analyze usage patterns and improve user experience

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for us to process your data
  • Contract Performance: To perform our contractual obligations to you
  • Legal Obligation: To comply with our legal obligations
  • Legitimate Interests: For our legitimate business interests, such as improving our services and preventing fraud

5. Data Storage and Security

We implement appropriate technical and organizational measures to protect your personal information:

  • All data is stored exclusively within the European Union
  • Encryption in transit and at rest
  • Access controls and authentication mechanisms
  • Regular security audits and assessments
  • Employee training on data protection

Despite our security measures, no method of transmission over the Internet or electronic storage is 100% secure.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Document data is retained according to your service agreement and may be deleted upon request.

7. Your Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Request transfer of your data to another service
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, please contact us at privacy@lexaisolutions.com.

8. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist in operating our services (all located within the EU)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)
  • With Your Consent: When you have given explicit consent

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and assist in marketing efforts. You can control cookies through your browser settings, though this may affect service functionality.

10. International Data Transfers

All your personal data is processed and stored exclusively within the European Union. We do not transfer your data outside the EU without appropriate safeguards and your explicit consent.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

LexAI Solutions
Email: privacy@lexaisolutions.com
Address: Tallinn, Estonia
Data Protection Officer: dpo@lexaisolutions.com

You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) if you believe we have not addressed your concerns.