Adjurn Data Protection - GDPR Legal App for Lawyers

UK GDPR commitments

Adjurn is a UK-based legal app and we hold UK GDPR compliance to the standard expected by SRA-regulated practitioners. We are registered with the Information Commissioner's Office (ICO) as a data controller.

Data Processing Agreement (DPA)

For chambers, law firms, and Premium customers acting as data controllers in respect of client matter data, we provide a standard Data Processing Agreement on request via dpa@adjurn.app.

Encryption & hosting

• All data encrypted at rest using AES-256.
• All connections protected by TLS 1.3.
• Primary hosting region: London, UK (AWS eu-west-2).
• Backups stored in EU regions only — no US transfers.

Sub-processors

We use a small number of vetted sub-processors: Stripe (payments), AWS (hosting), and Postmark (transactional email). The full and current list is available on request.

Breach notification

In the unlikely event of a personal data breach, we will notify the ICO within 72 hours and affected users without undue delay, in line with Article 33 UK GDPR.

Your rights

You can exercise any of your rights under UK GDPR — including access, rectification, erasure, restriction, portability, and objection — by emailing privacy@adjurn.app.

Solicitor-specific considerations

Adjurn is designed with the SRA Code of Conduct in mind. Client confidentiality is preserved by default; we never read, mine, or train AI models on the contents of your matter data.