Frequently Asked Questions

Lexkeep is hosted in secure EU-based cloud infrastructure by default, with EU data residency for customer content unless otherwise agreed under an Enterprise arrangement.

Lexkeep is designed to support GDPR compliance through EU hosting, encryption, access controls, audit trails, and a Data Processing Addendum (DPA). Your firm remains responsible for configuring the service and using it in a GDPR-compliant way.

Yes. Lexkeep provides a DPA for business customers to meet GDPR Article 28 requirements where Lexkeep acts as a processor of customer personal data.

By default, Lexkeep stores customer content in EU-based infrastructure. Some service providers (e.g., support or billing tools) may process limited data; details are described in Lexkeep’s DPA and sub-processor list.

Lexkeep supports strong access controls and can enforce security measures such as MFA and role-based permissions. Enterprise customers can request additional controls depending on plan and configuration.

Blockchain timestamping anchors a file fingerprint on a public blockchain to provide tamper-evident proof of integrity and timing. An eIDAS Qualified Electronic Time Stamp is issued by a Qualified Trust Service Provider (QTSP) and may be required for specific regulated workflows.

Use eIDAS qualified timestamps when a matter, regulator, or counterparty requires a QTSP-issued timestamp under eIDAS, or when you want a formal qualified trust service alongside cryptographic integrity controls.

Yes. Lexkeep can anchor cryptographic hashes on Ethereum and also support eIDAS Qualified Electronic Time Stamps as an optional add-on via API integration with a QTSP.

Yes. You can collaborate within cohorts and control permissions by role. For sensitive matters, optional end-to-end encryption (E2EE) can be used to ensure only authorised recipients can decrypt content.

Yes. Lexkeep supports controlled sharing workflows, including secure links for external recipients where appropriate, with auditability and permission controls.

Lexkeep supports defensible recordkeeping through structured matter workspaces, audit trails, integrity verification, retention controls, and exportable evidence records.

Yes. With E2EE enabled, files are encrypted on the user’s device before upload, and Lexkeep cannot access the plaintext contents.

Only files encrypted with end‑to‑end encryption (E2EE) are affected. If the user changes their password while they still know the current (old) password: existing E2EE files remain accessible (the encryption can be re-unlocked/re-wrapped during the change). If the user loses the previous password and must reset without it: previously encrypted E2EE files may become permanently inaccessible, because Lexkeep cannot decrypt them without the original password-derived key. Non‑E2EE files: remain accessible after a password reset.

Yes. Lexkeep supports storing and verifying large media files. Any alteration to a recording changes its hash, making tampering detectable.

No. Lexkeep stores files in encrypted cloud storage. Only cryptographic fingerprints (hashes) are anchored on-chain for integrity and timing proof.