How we keep your firm's data safe.

Plain English instead of compliance bingo. Here's what's true today.

Single tenant per firm.

Your firm gets its own subdomain and its own isolated data scope. We never query across firms. Database-level tenant filtering is enforced on every read and write, not just at the application layer.

Encryption.

Documents and database are encrypted at rest. All connections use TLS 1.2 or better. Two-factor authentication is available for every user and required for admins by default.

Audit log.

Every soft-delete, restore, login, document download, and permission change writes a row to the audit log with user, IP, and timestamp. Org admins can search it.

Roles that match your firm.

Admin, manager, viewer, finance admin. Client portal users come in admin, member, or finance flavors. The bookkeeper sees billing without ever seeing matters.

AI runs on hardware we control.

Our legal-tuned model runs on our own GPU cluster. Your matters never go to OpenAI, Anthropic, or any third party. Nothing about your work is used to train any model.

You see what we see.

No back-door admin access on top of your tenant. Support requests are scoped to specific record IDs and logged. We can't read your matters even if we wanted to.

Compliance posture.

We're a young company. We're not going to claim certifications we haven't earned. Here's where we are today and where we're going:

  • Hosted in US data centers we operate.
  • Daily encrypted backups, 30-day retention, point-in-time restore.
  • Active SOC 2 Type 1 work (target completion within 12 months).
  • Bar-association trust accounting requirements addressed in product.

Question we haven't answered? Ask us.