Lexa AI

Privacy Policy

How we handle your data and your clients' data on Lexa AI.

Last updated:

1. Who we are

Lexa AI is a cloud platform built for law firms across Egypt and the Gulf. We provide tools for managing cases, hearings, invoicing, and clients, plus integrations with Egypt's e-invoicing system (ETA) and the Ministry of Justice portals.

2. Data we collect

We collect the data you put into the platform to operate the service, plus a limited set of operational data needed for security and reliability.

  • Account data: name, email, phone, firm name, role.
  • Firm and case data: clients, case numbers, hearings, uploaded documents.
  • Billing data: invoice addresses, tax IDs, ETA registration numbers when applicable.
  • Technical data: IP address, browser, sign-in times, security logs.

3. How we use data

  • To run the platform and deliver the service to your firm.
  • To keep a tamper-evident audit log of every change and access.
  • To improve the product and build new features (in aggregate, non-identifying form).
  • To send service notifications and necessary security alerts.
  • To comply with our legal obligations and lawful requests from authorities.

4. Where your data lives

Customer data for the MENA region is stored in Google Cloud's me-central1 (Doha) region to keep infrastructure close and meet data residency expectations. Backups are encrypted and access-restricted.

5. Sharing with third parties

We do not sell your data. We share specific data only with service providers needed to run the platform (e.g., Google Cloud for infrastructure, ETA for invoice submission once enabled), under strict data processing agreements.

6. Cookies

We use essential cookies for sign-in and language preferences, and a small set of analytics cookies for performance. We do not use ad-tracking cookies.

7. Your rights

At any time you can request a copy of your data, correct it, or delete it (subject to our legal record-keeping obligations). To exercise any of these rights, write to privacy@lexaai.co.

8. Security

We apply encryption in transit (TLS 1.3) and at rest, role-based access control, and tamper-evident audit logs. Only Owner and Admin accounts can manage members and sensitive settings.

9. Updates to this policy

We may update this policy from time to time. We will notify you in-app of any material change, and the last updated date at the top of this page will reflect it.

For privacy questions, write to privacy@lexaai.co.