Privacy notice
Notice at collection. This is product scaffolding — final wording is counsel-owned.
What we collect
Questions you ask the assistant; if you request a consultation, the contact details and matter information you provide.
How it’s used
To answer general questions, run a conflict pre-screen, route a consultation request, and maintain a compliance audit log.
How long we keep it
- Consultation requests (advertising communications): at least one year, as California law requires.
- Privacy-request records: at least 24 months.
- Compliance audit log: kept as hashes only — no readable personal data — and never deleted.
- Confidential intake: encrypted, and permanently destroyed (crypto-shredded) when you ask us to delete it.
Sub-processors
OpenAI (model inference) and Railway (hosting). Confidential disclosures are quarantined and never used to train shared models. See our sub-processor register for the full list, purposes, and locations.
Your choices
We detect and honor the Global Privacy Control signal. See Your privacy choices to exercise CCPA rights.