Security

Confidentiality, by architecture.

Disputes work runs on documents a client trusted you with. This page sets out, in plain terms, what happens to those documents inside Kallam: where they live, how they are protected, who can see them, and what never happens to them. Every statement here is an architectural fact your IT and compliance teams can verify.

HOSTINGMicrosoft Azure, in the EU
AI TRAININGNever on your data
ENCRYPTIONAES-256 at rest and in transit
AUTHENTICATIONMulti-factor, every account
The life of your document

What happens to a file from upload to deletion.

UPLOAD

Encrypted in transit

Your file travels to Kallam over TLS 1.2 or above. Nothing moves in the clear.

STORAGE

Encrypted at rest, in the EU

The document is stored encrypted with AES-256, on Microsoft Azure in the EU. It does not leave the European Union.

PROCESSING

Read by the models, kept by no one

Kallam's agents read the document to date, title, classify, and summarise it. Your documents and prompts are never used to train AI models, and nothing sent to the models is retained after processing.

ACCESS

Sealed per matter, opened per person

The document lives inside one matter, an independent dataroom that no other matter can see. Only the users you authorise on that case can open it, behind multi-factor authentication. Agents propose work from it; nothing leaves Kallam until a person on your team approves.

DELETION

Gone when you say so

Your documents are deleted on request. Your data stays yours, including the right to take it away.

In depth

The detail your reviewers will ask about.

DATA PROTECTION

Never used for training
Your documents and prompts are never used to train AI models. Not by Kallam, not by anyone.
Nothing retained at the model layer
What is sent to the models for processing is not kept after the work is done.
Deletion on request
Stored documents are deleted when you ask, completely.

INFRASTRUCTURE

EU data residency
Hosted on Microsoft Azure in the EU. Processing and storage stay inside the European Union.
Encryption as a default
AES-256 at rest and TLS 1.2 and above in transit, for every document on every matter.
No on-premise footprint required
Kallam runs in the browser with no IT integration, so there is nothing to install and nothing new to patch.

ACCESS AND AUTHENTICATION

Matter isolation
Every case is an independent dataroom. No document and no fact crosses between matters.
Case-level permissions
Access is granted per matter, not per firm. Only the users you authorise can see a case.
Multi-factor authentication
Every account requires MFA. A password alone never opens a case file.
Approval before anything leaves
Agents propose, your team approves. No output leaves Kallam without a person signing off.

COMPLIANCE

GDPR
Kallam is GDPR compliant by design, with all processing in the EU.
UK Data Protection Act 2018
Kallam's practices are aligned with the UK DPA 2018.
Direct answers
Your IT and compliance teams' questionnaires are answered by us, directly, not by a portal.
The wall between matters

One firm. Sealed matters.

Kallam gets sharper at your firm's way of working with every task. What it never does is move a client's material between cases. Case facts and documents never cross between matters; the only thing that compounds is your firm's own way of working. Confidentiality is not a setting in Kallam. It is the structure.

Put us in front of your reviewers.

Security review or a questionnaire from IT: we work through them with your firm directly.

Contact us
START ON A REAL MATTER

Try Kallam on one case.

The best way to evaluate Kallam is on a real matter. Upload a live case, watch your agents structure it in hours, and judge the work that comes back. If it earns its place on your team, the value speaks for itself.

Try Kallam Today