Security & compliance.

Legal work runs on confidentiality. Here is exactly how Cogveo handles your firm's documents, what we will and won't do with them, and where we stand on certification.

Your data stays yours.

We do not copy your document management system, we do not train on your documents, and every decision Cogveo makes is logged for audit.

Data stays in your firm

Documents are read directly from SharePoint, in place. Cogveo does not copy your document management system or move files outside your firm's Microsoft 365 environment.

Never used for training

Your playbooks, your precedents, your documents — none of it is ever used to train any model, ours or anyone else's. Your firm's data is isolated from every other firm's.

Built on Azure

Hosted on Microsoft Azure. Documents are encrypted both in storage and in transit. Every action — extraction, grade, override, export — is permanently logged.

Security & data compliance
GDPR Compliant
Cyber Essentials Plus (UK) In progress
ISO 27001 In progress
SOC 2 In progress
HIPAA On roadmap
AI governance
ISO/IEC 42001 (AI management) In progress
EU AI Act Aligning
NIST AI RMF Aligning

AI governance is built in, not bolted on: no training on your data, a verbatim-citation trust gate, human review and verify on every output, a full audit trail, and a deterministic no-GenAI mode for restricted matters.

Certifications in progress — we're happy to share our current security posture and roadmap under NDA.

Connects to where your documents already live.

Cogveo reads from your document management system in place — no migration, no copy, permissions respected.

Document management
iManage
NetDocuments
SharePoint
OneDrive
Platform
Microsoft 365
Microsoft Azure

Questions for your InfoSec review?

Talk to us