01
Triage
Fast recognition of goal and risks.
Service areas
Services
We help technology companies and startups structure contracts, data, IP and AI. We start with triage and finish with concrete wording and implementation decisions.
IT and SaaS contractsIP and trademarksGDPR and InfoSecAI and AI Act
We usually start with:
client contractproduct rightsdata and vendorsAI in the team
CHOOSE AREA
What are you working on?
The simplest way in is through the immediate issue. These are the four starting points we see most often.
Legal support that works in real delivery conditions
We do not prepare documents that sit unused. We identify risk, set priorities and draft wording teams can use immediately.
02
Recommendations
Priorities and action options.
03
Delivery
Documents, negotiations and implementation.
Pillar 01
IT and SaaS contracts
We help structure and negotiate contracts that secure scope, liability, rights to deliverables, payments and change management.
Scope
- SaaS, implementation, maintenance and support agreements,
- SLA, support, maintenance and change requests,
- subcontractors, vendors, client-provider relationships,
- liability, caps, contractual penalties and acceptance,
- DPA and GDPR clauses in IT contracts.
Typical deliverables
- agreement or amendment draft,
- comments to the other side’s contract,
- risk and negotiation recommendation table,
- ready-to-use clauses,
- support during negotiations.
When to involve us
- before signing a larger client agreement,
- when the contract does not match how delivery actually works,
- when a dispute appears around scope, acceptance, SLA or payment,
- when a startup or software house scales sales and needs contract standards.
Pillar 02
IP, copyright and trademarks
We organise rights to code, design, content, documentation and brand, so it is clear what belongs to the company, what is licensed and what can be commercialised safely.
Scope
- copyright transfer and licensing,
- rights to code, UX, UI, documentation, graphics and content,
- agreements with creators, developers and subcontractors,
- open-source hygiene and component usage rules,
- trademarks, brand protection strategy and registrations.
Typical deliverables
- IP agreements and copyright clauses,
- audit of key IP risks,
- checklists for cooperation with creators and contractors,
- support with trademark filing,
- recommendations for brand protection.
When to involve us
- before cooperation with a freelancer, software house or creator,
- before an investment round or due diligence,
- when the product combines several code, design and content sources,
- when the brand starts to gain value and needs protection.
Pillar 03
GDPR and InfoSec
We connect data protection with real technology workflows, so documentation matches processes, tools and risks.
Scope
- mapping processing activities and data roles,
- DPA, subcontractors, vendors and data transfers,
- policies, procedures, authorisations and registers,
- incidents and data breach handling,
- DPO support, audits and organisational recommendations,
- practical security areas, for example M365, MFA, encryption and access.
Typical deliverables
- record of processing and data map,
- data processing agreements and privacy notices,
- procedures for breaches, retention, authorisations and access,
- compliance audit report,
- remediation action plan.
When to involve us
- when the number of clients, vendors and integrations grows,
- before launching a new product, app or process,
- after an incident or suspected data breach,
- when an enterprise or public client asks about compliance and security.
Pillar 04
AI, AI Act and automation
We help teams implement AI so people know which tools can be used, what data may be entered and where regulatory obligations start.
Scope
- classification of roles and risks under the AI Act,
- rules for AI tool usage across the organisation,
- AI policies for employees and product teams,
- risk assessment, DPIA and process documentation,
- automation, chatbots, generative models and AI integrations,
- support in client and partner communication.
Typical deliverables
- AI usage policy,
- AI risk checklist for the team,
- AI use-case map and obligation classification,
- recommendations for contracts and terms,
- quality control and human oversight procedures.
When to involve us
- when the company starts using AI in daily work,
- when AI enters product, customer support or decision workflows,
- when personal, confidential or client data is involved,
- when clients ask about AI governance, security and responsibility.
Cooperation
Ways of working
We match the cooperation model to company stage and project pace. Sometimes a quick triage and contract comment is enough. Sometimes ongoing support or compliance implementation is the better fit.
Ad hoc
Fast support for a specific contract, risk, negotiation or decision.
Best for: Good when the topic is urgent and clearly scoped.
Hourly package
Flexible support for teams that need regular consultations, documents and reviews.
Best for: Good for startups, software houses and SaaS teams in growth stage.
Ongoing support
Continuous legal support, topic prioritisation and regular work with your team.
Best for: Good when legal should stay close to product, sales and operations.
DPO and compliance
Support in data protection, procedures, audits, incidents and compliance implementation.
Best for: Good for organisations with larger data scale, regulated sectors and public entities.
What you should have after working with us
After the work is done, you should know what the risk is, what can be signed and what the team needs to implement.
01 Clear risk and priority assessment
02 Ready-to-use wording for documents or clauses
03 Recommendations written in business language
04 Support in negotiations and communication
05 Materials the team can implement
06 A next-step plan if the matter needs stages
FAQ
Do you work only with IT companies? ›
Our strongest specialisation is technology, data, contracts and digital business. We also support organisations that are not classic IT companies, but use technology, process data or implement digital solutions.
Can we start with contract review only? ›
Yes. A quick contract review with risks and negotiation recommendations is often the best starting point. Then we decide whether the topic needs further support.
Do you support negotiations? ›
Yes. We can prepare comments, proposed changes, negotiation arguments and join calls with the other side.
Do you prepare GDPR documentation from scratch? ›
Yes, but we start from real processes. First we map what data is processed, by whom, in which tools and on which legal basis. Only then do we prepare documentation.
Can we order only an AI policy? ›
Yes. We can prepare a simple AI policy for the team, or a wider package with use-case mapping, risks, procedures and recommendations for contracts.
Have a contract, product or process to structure?
Start with a free 30-minute consultation. We identify goal, risks and the simplest safe path, then we propose a practical support scope.
Book a free consultationIf the link does not open your email app, write directly to kontakt@lis.legal or copy the address.