EU-Sovereign Legal AI: Per-Firm Siloed Servers, Frankfurt Hosting, and Why That Matters for IP
August 10, 2026 · 4 min read · LeadLex Editorial
The most sensitive data inside an IP firm is rarely the matter that has just been filed. It is the matter that has not.
A draft application that has not yet been submitted is the firm's client at their most vulnerable: technology, strategy, claim direction and jurisdictional intent, all set down on paper, all months from publication. Once that information is captured anywhere — a CRM record, an email summary, an AI-drafted brief — its handling becomes the firm's responsibility.
For European IP firms, that responsibility is also a regulatory one. The GDPR's Article 28 processor obligations, the data residency expectations clients increasingly write into engagement terms, and the specific scrutiny IP work attracts from in-house counsel all converge on the same question: where does this data live, who can reach it, and what happens to it after the conversation ends.
LeadLex was designed inside that constraint from day one.
Per-firm siloed servers
Every firm running on LeadLex runs on its own dedicated infrastructure. There are no shared servers. There is no co-mingling of data between firms. A query a partner runs in Teams is answered by a Lexi instance that has only ever seen that firm's data, on infrastructure that does not also serve someone else's records.
This is the single largest architectural decision separating LeadLex from generalist legal AI products built on multi-tenant clouds. In a multi-tenant architecture, the boundary between firms is enforced in software, by access controls layered on top of shared infrastructure. In a siloed architecture, the boundary is enforced at the infrastructure level — a different problem to attack, and a much harder one to compromise.
For firms whose work touches privileged communications and pre-publication strategy, the difference is not a feature comparison. It is the kind of question outside counsel get asked the first time an engagement letter is signed.
Hosted in Frankfurt
Infrastructure runs in Frankfurt, Germany. Data does not leave the European Economic Area at any point in the LeadLex processing chain.
For European IP firms, this resolves the longest conversation in any AI adoption review: residency. A product whose data crosses the Atlantic — even briefly, even for inference — opens questions about US discovery exposure, third-country transfer adequacy and Schrems-style ongoing risk. LeadLex's deployment closes those questions by not creating them.
GDPR by architecture
GDPR compliance inside LeadLex is structural, not a policy overlay. Lawful basis is documented per processing purpose. Data subject rights — access, rectification, erasure — flow from the per-firm architecture. A signed Data Processing Agreement is part of every engagement, not an optional addendum.
The phrase that gets used inside the team is "GDPR-compliant by architecture rather than by policy." The distinction matters: a policy-level claim is only as strong as the operational discipline behind it. An architectural claim survives audit by inspection.
No model training, no data retention
No customer data — no record, no email, no voice note, no transcript — is ever used to train any AI model. No data is retained by any AI provider after a query is processed. The model sees the data it needs to answer the question, the answer returns to the partner, and the data does not persist anywhere outside the firm's siloed environment.
For IP firms specifically, the implication is direct: pre-publication patent strategy, confidential client briefings and unfiled trademark intent do not become inputs to anyone else's model, ever. The conditions that have made many firms cautious about using consumer AI tools for any matter-adjacent work — even general drafting — do not apply to LeadLex.
What this means for an IP partner
A partner inside an IP firm running on LeadLex does not need to make a separate calculation about which questions are safe to ask the assistant. The architecture has already answered it. The Frankfurt-hosted, single-tenant, GDPR-by-architecture deployment is what makes the question of "can I use this on a sensitive matter" disappear before it is asked.
That disappearance is what makes the adoption stick. The firms that have moved from skeptical to confident in the first month are the firms whose security teams looked at the architecture once, signed off, and stopped having the conversation.
For European IP work, that is the precondition for using the system at all.
Related: How AI assistants reach firm data securely through MCP. Choosing a legal CRM in 2026 — the data permissioning criterion.