ENTERPRISE
Nexus Legal Enterprise is ready.
Every enterprise capability is already built and activatable on demand. There are no integrations pending development when the first contract lands. Below — what is live today, what activates per client, what is in formal certification.
CAPABILITY MATRIX
What is on the table at signature.
Three states only. Active — in production today. Ready — built and activates the moment the client signs. In progress — controls implemented, formal certification on schedule.
| SAML 2.0 SSO | ready to activate | Okta · Azure AD · Google Workspace · OneLogin · Ping · any SAML 2.0 IdP |
| IP allowlist per API key | active | per API key, per organization |
| Row-Level Security | active | row-level isolation per firm |
| RBAC roles | active | author · reviewer · approver · admin |
| Append-only audit log | active | append-only · 3-year retention |
| SOC 2 Type II controls | implemented · cert in progress | controls CC1-CC9 implemented · observation Q3-Q4 2026 · report expected Q1 2027 |
| CCPA compliance | active | California Consumer Privacy Act rights live |
| GDPR + RoPA | active | GDPR + LOPDGDD + RoPA Art. 30 |
| Evidence packet (under NDA) | ready to activate | vendor register · risk register · policies · audit logs (under NDA) |
| Pre-signed DPA | ready to activate | pre-signed · 14 sections · 8 documented sub-processors |
| SLA with credit-back | active | 99.5 % Standard / 99.9 % Enterprise · automatic credit-back |
| End-to-end white-label | active | end-to-end for distributor partners |
SECURITY POSTURE
Controls equivalent to regulated financial and healthcare environments.
Zero Retention by default. PII Gatekeeper anonymises identifiers before any upstream LLM call. AES-256 at rest, TLS 1.3 in transit, AES-256-GCM row-level for outputs. All client data infrastructure stays in the EU (Railway europe-west4 + Supabase eu-west-2). Incident response time on active breach: under 1 hour. Customer notification under 24 h. Authority notification under 72 h (GDPR Art. 33).
Need the evidence packet?
Enterprise customers can request the full control evidence pack — vendor register, risk register, policies, audit log samples — under NDA. The package is ready today; it does not wait for the SOC 2 report.
Request the evidence packet → security@nexusquantum.legalTalk to enterprise.
Tell us your firm size, the jurisdictions you need active, your IdP and your DMS. We come back with the activation timeline and the contract documents (DPA, SLA, security review packet) on the same call.