> For the complete documentation index, see [llms.txt](https://help.paxton.ai/help/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://help.paxton.ai/help/other-topics/security-and-compliance.md). # Security & Compliance Paxton is built to protect the sensitive client data that legal professionals entrust to us. We adhere to leading industry standards and apply enterprise-grade controls across encryption, access management, policies, and our development process. ### **Compliance & Certifications** Paxton rigorously adheres to the following standards, reflecting our commitment to the highest levels of data security, availability, and confidentiality: * **SOC 2** – Independently audited controls for security, availability, and confidentiality. * **ISO 27001** – Internationally recognized standard for information security management. * **HIPAA** – Safeguards for handling protected health information, important for practice areas such as personal injury and medical record review. ### **How We Protect Your Data** **Advanced Data Encryption** Your data is encrypted both **in transit** and **at rest** using industry-standard encryption protocols, helping safeguard your information against unauthorized access. **System Access Controls** Paxton follows the principle of **least access** and conducts **quarterly access reviews**, ensuring that only authorized personnel can reach sensitive data. **Policies & Procedures** We maintain a comprehensive suite of information security policies covering employee conduct, data handling, and operational practices to maintain a secure and trustworthy environment. **Vendor Risk Management** Third-party vendors are evaluated against our security requirements to ensure that data shared with service providers is handled in line with our own standards. **Secure Software Development** Security best practices are embedded throughout our software development life cycle, from design through deployment, so that protections are built into the product rather than added after the fact. ### **A Note on Confidentiality** Communications between you and Paxton are protected by our [Privacy Policy](https://www.paxton.ai/legal/privacy-policy). Please note that, as described in our [Terms of Service](https://www.paxton.ai/legal/terms-of-service), Paxton is not a law firm, and these communications are not protected by attorney-client privilege or as work product. ### **Learn More** For the latest details on our security framework and certifications, visit our [Security & Compliance page](https://www.paxton.ai/platform/security). If your firm has specific security, compliance, or data-handling questions, reach out to us at . --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.paxton.ai/help/other-topics/security-and-compliance.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.