LexOS Logo
Home About Us The Ecosystem Support Center Events Journal Contact Client Portal
Get Started Law Firm Login

Privacy Policy &
Data Sovereignty

Last Updated: February 2026

At Fouchix Nexus Limited ("Fouchix Nexus", "we", "us"), we recognize that for elite law firms, data privacy is not merely a regulatory requirement; it is the bedrock of attorney-client privilege. This policy outlines our uncompromising approach to safeguarding your data within the LexOS environment.

01 Data Controller vs. Data Processor

Under the Nigerian Data Protection Regulation (NDPR) 2019 and the Nigeria Data Protection Act (NDPA) 2023, your Law Firm acts as the Data Controller for all client information, case files, and documents uploaded to LexOS.

Fouchix Nexus acts strictly as the Data Processor. We provide the infrastructure (LexOS). We do not mine, sell, analyze, or independently utilize the contents of your Iron Vault or Pulse Workspaces for any commercial purpose.

02 Attorney-Client Privilege & Security Architecture

To protect the sanctity of your legal practice, LexOS employs defense-in-depth security methodologies:

  • Encryption at Rest & Transit: All sensitive case data and documents uploaded to the system are secured using strict AES-256 encryption. Connections to our servers are enforced via TLS 1.3.
  • Tenant Isolation: LexOS utilizes rigorous multi-tenant logical partitioning. Data belonging to one firm is mathematically invisible and inaccessible to any other firm on the network.
  • Zero-Knowledge Principles: Fouchix Nexus engineering and support staff cannot arbitrarily open, read, or download the confidential legal documents you store within your case files. Access to your tenant environment by our deployment team is strictly audited and requires explicit authorization.

03 Information We Collect

To operate the LexOS service effectively, we collect the following limited operational data:

  • Account & Billing Metadata: Firm name, principal partner details, corporate email addresses, and payment history required to maintain your active subscription.
  • System Telemetry & Audit Logs: IP addresses, login timestamps, and system activity logs. This is necessary to power your firm's internal audit trails and to monitor the security and uptime of our infrastructure.

04 Third-Party Sub-Processors

LexOS utilizes enterprise-grade sub-processors to deliver our services. We ensure all partners comply with strict data protection standards:

  • Cloud Infrastructure: AWS / DigitalOcean (for sovereign data hosting and encrypted storage).
  • Financial Gateways: Paystack / Stripe (for processing subscription payments and client invoices). Note: Fouchix Nexus does not store your raw credit card data.

05 Data Retention & The Iron Vault

When cases are marked as closed, they are transferred to the Iron Vault. These records become immutable to prevent accidental tampering or deletion by unauthorized staff.

If a Law Firm terminates its LexOS subscription, we provide a 30-day grace period during which the Managing Partner may export a Master Backup of all case files. Following this period, all tenant data is permanently and irrecoverably purged from our servers in compliance with NDPR data minimization principles.

For inquiries regarding data protection, to report a security vulnerability, or to contact our Data Protection Officer (DPO), please email legal@fouchix.com.