Back to Home

Security

Enterprise-grade security built for legal professionals

ISO 27001

Certified Information Security Management

SOC 2 Type II

Independently audited controls

AES-256 Encryption

Military-grade data protection

Data Encryption

At Rest: All documents, databases, and backups encrypted with AES-256 encryption.

In Transit: TLS 1.3 for all data transfers between client and server.

Key Management: Hardware Security Modules (HSMs) for cryptographic key storage.

Access Control

  • Multi-Factor Authentication (MFA): Required for all user accounts
  • Role-Based Access Control (RBAC): Granular permissions by role
  • Single Sign-On (SSO): Enterprise integration with SAML 2.0
  • Session Management: Automatic timeout and secure token handling

Infrastructure Security

EU Data Centers: All data stored exclusively in ISO-certified EU facilities in Ireland and Germany.

Network Isolation: Virtual Private Clouds (VPCs) with firewalls and intrusion detection systems.

DDoS Protection: Multi-layered defense against distributed denial-of-service attacks.

Regular Backups: Automated daily backups with 30-day retention and geo-redundancy.

Monitoring & Auditing

  • 24/7 Security Monitoring: Real-time threat detection and response
  • Comprehensive Audit Logs: Every data access and modification tracked
  • Vulnerability Scanning: Weekly automated scans and quarterly penetration tests
  • Incident Response: Documented procedures with 1-hour response SLA

Compliance Certifications

ISO 27001:2013

Information Security Management System certified

SOC 2 Type II

Annual third-party audits for security, availability, and confidentiality

GDPR Compliant

Full compliance with EU data protection regulations

Penetration Tested

Quarterly third-party security assessments

Enterprise Private Deployments

For firms requiring maximum control, we offer fully isolated private deployments with:

  • Dedicated infrastructure in your preferred EU region
  • Custom data retention and deletion policies
  • On-premise deployment options available
  • Bring-your-own-key (BYOK) encryption

Report a Security Issue

We take security seriously. If you discover a vulnerability, please report it responsibly:

Email: security@affidavitdraft.com

We commit to acknowledging reports within 24 hours and providing resolution timelines based on severity.

We respect your privacy

We use essential cookies to ensure our website functions properly and analytics cookies to understand how you interact with our site. All data is processed in accordance with GDPR regulations and stored within the EU. You can manage your preferences at any time. Learn more