Legal

Privacy Policy.

Last updated: 19 March 2026 · LexCrypta Global

LexCrypta was built on a single architectural commitment: we do not store your clients' financial data. Bank statements uploaded to LexCrypta are processed in memory and permanently deleted upon report generation. This is not a policy — it is how the system is built.

1. Who We Are

LexCrypta Global ("LexCrypta", "we", "us", "our") is a financial intelligence platform providing bank statement analysis services to legal, accounting, mortgage, and property professionals. Our registered place of business is Michigan, USA. We operate globally.

For privacy enquiries, contact us at: theteam@lexcryptaglobal.com

2. What Information We Collect

We collect information in the following circumstances:

Contact enquiries — When you contact us via our website form, we collect your name, firm name, email address, and the content of your message. This information is used solely to respond to your enquiry.
Intelligence Briefing subscriptions — When you subscribe to our briefing, we collect your name and email address for the purpose of sending you the briefing.
Verify interest registrations — When you register interest in our Verify product, we collect your name, firm, email, and practice area to follow up on your enquiry.
Scan usage — When you use our scan service, we collect a matter reference (if provided). We do not collect or retain the bank statements you upload beyond the processing session.

3. Bank Statement Data — Our Core Commitment

When you upload bank statements to LexCrypta for analysis:

Files are transmitted via encrypted connection and processed entirely in memory
No bank statement data is written to any database or disk at any point
All uploaded data is permanently and automatically deleted from memory upon report generation
We do not retain, analyse, or use uploaded bank statement data for any purpose beyond producing your requested report
We do not share bank statement data with any third party

This is an architectural commitment, not merely a policy statement. The system is designed so that retention is not possible.

4. How We Use Your Information

We use the information we collect to:

Respond to your enquiries and provide the services you have requested
Send you the Intelligence Briefing if you have subscribed
Follow up on Verify or enterprise interest registrations
Improve our platform and services
Comply with our legal obligations

We do not sell, rent, or share your personal information with third parties for marketing purposes. We do not use your information for automated decision-making.

5. Legal Basis for Processing (GDPR)

Where the General Data Protection Regulation (GDPR) applies, we process your personal data on the following legal bases:

Legitimate interests — responding to enquiries, providing requested services
Consent — Intelligence Briefing subscription (you may unsubscribe at any time)
Contract performance — delivering scan reports and platform services
Legal obligation — where required by applicable law

6. Data Retention

We retain contact enquiry and subscription data for as long as necessary to fulfil the purpose for which it was collected, and in accordance with applicable legal requirements.

Bank statement data uploaded for scanning is deleted immediately upon report generation. We do not retain any copy of uploaded files or their contents.

You may request deletion of your contact or subscription data at any time by emailing theteam@lexcryptaglobal.com.

7. Security

We implement appropriate technical and organisational measures to protect your information against unauthorised access, disclosure, alteration, or destruction. Our scan infrastructure processes all data in memory with no persistent storage, providing the highest level of data protection available for this type of service.

All data transmissions are encrypted via TLS. Our backend infrastructure is hosted on Railway with industry-standard security controls.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

The right to access the personal data we hold about you
The right to correct inaccurate personal data
The right to request deletion of your personal data
The right to restrict or object to processing
The right to data portability
The right to withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, contact us at theteam@lexcryptaglobal.com. We will respond within 30 days.

9. Cookies

Our main website uses minimal cookies necessary for the operation of the site. We do not use tracking or advertising cookies. We do not use third-party analytics that collect personally identifiable information.

10. Third-Party Services

Our platform uses the following third-party infrastructure:

Netlify — website hosting (USA)
Railway — backend scan processing (USA)
Supabase — detection library database (USA)

Each of these providers operates under their own privacy policies and security controls. No client bank statement data is transmitted to or stored by any of these providers — scan processing occurs in memory only.

11. International Transfers

LexCrypta operates globally. Our infrastructure is primarily based in the United States. Where we transfer personal data internationally, we ensure appropriate safeguards are in place in accordance with applicable data protection law.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The date at the top of this page indicates when it was last updated. Continued use of our services after any update constitutes acceptance of the revised policy.

13. Contact Us

For any privacy-related questions, requests, or concerns, please contact us at:

Email: theteam@lexcryptaglobal.com
LexCrypta Global · Michigan, USA · Global practice