Compliance & Security
LVX-01 is engineered for deployment in regulated environments. The following compliance and security capabilities are available across all deployment models.
Designed to Article 25 (Data Protection by Design and by Default) requirements. All personal data handling is configurable, minimised, and documented. Data residency is operator-controlled.
Architecture and operational procedures are aligned with NIS2 Directive requirements for operators of essential services. Incident reporting and supply chain security controls are implemented.
Information security management framework based on ISO 27001 principles. Risk assessment, access control, and incident management procedures are documented and auditable.
All data processing and storage occurs within EU jurisdiction by default. No third-country transfers without explicit configuration. Air-gapped deployments available for sensitive environments.
AES-256 encryption for all data at rest. TLS 1.3 for all data in transit. Cryptographic signing on all software update packages. Certificate-based mutual authentication between nodes.
Full system functionality available without any external network connectivity. Updates delivered as signed offline packages. Suitable for classified and critical national infrastructure deployments.