We’re at Black Hat! Come visit us

Legion is built on trust

At Legion, we’re committed to gradually building your trust in AI by giving you full ownership and granular control over how it’s introduced, used, and scaled—supporting  your SOC like a loyal, dependable teammate.

Visit our trust center
Legion SOC2Legion ISOLegion ISO 42001Legion HIPPA compliant

Our promise

Secure by Design

Legion is built with the highest security standards in mind, to fit seamlessly into even the most regulated environments.

Built by Your Team

Legion learns directly from your analysts’ workflows. It grows up inside your SOC, shaped by your tools, your data, and your ways of working.

Total Transparency

Every insight Legion captures is visible. Every action is explainable. Every step is under your purview.

Regulatory Standards & Compliance

Compliance-Grade, By Design

We know security teams operate under strict compliance requirements, and Legion’s architecture and operational practices are built to support your standards from day one.

Aligned with Industry Standards

Legion proactively aligns with all the frameworks your organization expects.

Legion SOC2Legion ISOLegion ISO 42001Legion HIPPA compliant
Your Environment, Your Control

Your data is yours alone. Legion simplifies your security reviews and eliminates external data dependencies—making compliance faster and safer.


A trusted partner for regulated teams

If your organization requires additional documentation to implement Legion, our team is here to give you everything you need—ensuring a transparent, seamless, and confident deployment process.

Get a Demo

FAQ

How much control do I have over what Legion records?

We think of it as the 3 Ws—When, Where, and What.
You decide exactly when Legion records by starting and stopping it manually. You define where recording happens by setting your browser-level allow list. You control what gets captured through masking rules that redact sensitive data.

Does Legion train models on my business data?

No. We do not train models on your business data by default. You own and control your data which stays strictly separated between organizations.

How does Legion ensure data security?

Legion operates through a browser extension, with you having full control over what data is collected and when. While it learns from browser activity, data collection is transparent, intentional and kept strictly separate between organizations. Security is reinforced by your existing protocols along with Legion’s built-in DLP (Data Loss Prevention) layer to help prevent unintended data exposure.

Which compliance standards does Legion support?

Legion aligns with the most common frameworks in enterprise security and data privacy—including SOC 2, ISO 27001, and HIPAA (where applicable). We maintain complete documentation to support your evaluation, because your standards are our baseline.

Can I see what Legion is doing at all times?

Yes. Every insight Legion captures, every suggestion it offers, and every action it takes is visible, explainable, and reversible.

Who decides what Legion automates?

You do. Legion begins by observing, then supporting, and only takes on autonomous workflows when your team decides it’s ready.

How quickly can we deploy Legion?

Because Legion operates directly in your browser without integrations or APIs, most teams are able to onboard Legion smoothly and begin seeing value within days.

Want to learn more about how we handle your data?

Visit our security portal, privacy note, cookie note.
READY TO SEE HOW LEGION FITS INTO YOUR TEAM?
Get a Demo