Security is our Foundation
Built for defence and government sectors. We exceed industry standards for data protection and privacy.
Data Sovereignty
All data processed on UK/EU servers (AWS London/Frankfurt). Strict geographic fencing for sensitive public sector bids. No US data processing.
Zero-Retention Policy
We do not use client data to train our models. Data is deleted automatically after session expiry. Your intellectual property remains yours.
End-to-End Encryption
AES-256 encryption at rest and TLS 1.3 in transit. Bank-grade security protocols for all file transmission and storage.
How We Handle Your Data
What We Store
- Account details (email, name, company)
- Analysis results and metadata
- Billing records (via Stripe — we never see card numbers)
- Documents (encrypted, user-controlled retention)
What We Never Do
- ✕ Train AI on your documents
- ✕ Share data with third parties for marketing
- ✕ Process data outside the UK/EU
- ✕ Retain documents after account deletion
Security FAQ
Certifications & Compliance
Sub-Processors
| Provider | Purpose | Location | Data Handled |
|---|---|---|---|
| AWS (Amazon Web Services) | Cloud infrastructure & document storage | London / Frankfurt (EU) | Encrypted documents, user metadata |
| Stripe | Payment processing | EU (Dublin) | Payment details only — no document access |
| OpenAI / Google AI | AI analysis engine | EU endpoints | Document text (not stored, zero-retention API) |
| Google AlloyDB (PostgreSQL) | Application database | GCP London | User accounts, analysis metadata |
| Resend | Transactional email | EU | Email addresses, notification content |
Trusted by teams handling sensitive tenders
Featured on leading bid industry platforms
“Lucius AI is a risk engine for government tenders — it helps teams audit bids for safety and flag compliance gaps before submission.”
— Bid Solutions, Bid Software Comparison Platform
Have security questions? security@ailucius.com