Sapphire Legal AI aligns with the General Data Protection Regulation (GDPR) for customers located in the European Union.

Lawful Basis: We process personal data based on consent, contract necessity, or legitimate interests.
Data Subject Rights: Access, rectification, erasure, restriction, portability, and objection.
Data Minimization: We collect only what is necessary to deliver and improve the Service.
Security: Encryption, role‑based access, audit logs, and private deployment options.
Data Residency: EU hosting options available to support local residency requirements.
Subprocessors: We use GDPR‑compliant vendors under written agreements and conduct due diligence.

To submit a GDPR request, contact our Data Protection Officer: dpo@sapphirelegal.ai

GDPR Compliance