Luisa Crawford
Mar 20, 2026 15:32
Harvey reveals its knowledge safety framework together with BYOK encryption and ephemeral processing because the $5B authorized AI platform expands globally.
Harvey, the authorized AI platform valued at $5 billion, revealed an in depth breakdown of its buyer knowledge structure on March 20, revealing the safety infrastructure that is helped it win over risk-averse authorized departments at main firms.
The disclosure comes as Harvey aggressively expands its footprint—a Singapore workplace opens in June, becoming a member of current Asia-Pacific operations in Sydney and Bengaluru. With over 1,000 clients throughout 60+ international locations, the corporate is clearly betting that transparency about knowledge dealing with will speed up enterprise adoption.
The Technical Framework
Harvey’s strategy facilities on what it calls “zero knowledge entry”—buyer inputs, outputs, and uploaded paperwork stay sealed off from Harvey’s personal engineers and operations employees. The corporate says role-based entry controls and community segmentation implement this separation architecturally, not simply by way of coverage.
The extra fascinating element for enterprise consumers: Deliver Your Personal Key (BYOK) assist. Clients can handle their very own encryption keys for saved knowledge, with the flexibility to rotate or revoke entry at any time. Revocation instantly renders knowledge inaccessible to all programs, together with Harvey’s personal infrastructure.
All knowledge strikes by way of TLS 1.2+ encrypted channels, with AES-256 encryption at relaxation. Paperwork are decrypted solely in reminiscence throughout processing, then destroyed after customer-defined retention durations expire.
Ephemeral Processing Mannequin
Harvey’s fashions work with non permanent context home windows—knowledge assembled solely all through a particular request. As soon as the AI generates its response, mannequin companions instantly delete that knowledge. No context persists between periods or will get shared throughout workspaces except customers explicitly allow it by way of scoped mechanisms.
This ephemeral strategy addresses a key concern for authorized groups: the danger of privileged data contaminating different customers’ outputs or being retained for mannequin coaching.
Why This Issues Now
Harvey is not publishing this for enjoyable. The corporate simply introduced an in-house buyer advisory board that includes authorized heads from HSBC, Bridgewater, and NBCUniversal—precisely the form of establishments that demand exhaustive safety documentation earlier than deploying AI instruments close to delicate knowledge.
The timing additionally coincides with a Field integration introduced March 18, connecting Harvey’s workflow instruments to document-centric enterprise programs the place safety questions multiply.
For competing authorized AI distributors, Harvey’s transparency play units a benchmark. Enterprise authorized departments now have an in depth framework to check towards when evaluating options. Those that cannot match this degree of architectural disclosure could discover themselves explaining why not.
Picture supply: Shutterstock