Security and Data Trust
At Lawful Good, we understand that maintaining your trust is critical. As attorneys, you handle sensitive client information every day, and you need to be confident that any software you use protects that information with the same care you would. We take this responsibility seriously and are committed to protecting your data and maintaining attorney-client privilege.
Attorney-client Privilege is Fundamental
We understand that attorney-client privilege is fundamental to the practice of law. That's why we've built our platform with security and privacy at its core. Your data is encrypted using the same standards trusted by banks and government agencies, and we've designed our system so that your data is protected by default.
We don't look at your data: We do not use your data to train AI models, we do not share it with other users, and we do not review your documents in the normal course of business. Your data is encrypted and logically isolated to your account.
Rare exceptions: As with any reputable cloud service, there may be rare situations where we are legally required to access and decrypt specific data in response to a valid court order or other lawful process. Outside of those circumstances, we treat your workspace as private to you and your firm.
Read more about how we protect your privacy in our Privacy Policy.
Responsible Use of AI
We use AI to assist you, not to replace your legal judgment. Our AI tools generate drafts and suggestions that require your professional review and approval before use.
How we protect you:
- You're always in control: You remain the final reviewer of all AI-generated content. AI outputs are drafts that require your legal judgment and approval.
- Your data is never used for training: We do not allow AI model providers to train on your prompts, documents, or outputs. Your client information stays private.
We currently use Google Vertex AI exclusively because of their industry-leading privacy and security controls. If we add other AI models in the future, they will only be integrated if they meet our strict privacy and security requirements, including a commitment not to train on your data.
Your Data is Encrypted
We protect your sensitive information using industry-standard encryption. Every piece of your data is encrypted before it's stored, using AES-256-GCM—the same encryption standard trusted by banks and government agencies. This means your data is protected even if someone were to gain unauthorized access to our systems.
What gets encrypted:
- All documents you upload to the service
- All documents you create or generate using the service
- All prompts you enter into the service
- All responses from the AI models
- Any other data you enter into the service
Unique encryption keys for each user: Each user account has its own unique encryption key that is automatically derived from your account information and system components. We don't store these keys as separate files—they're mathematically generated when needed for encryption and decryption operations. This ensures your data is completely isolated from other users' data. Your encrypted data cannot be read by simply browsing our databases or file systems; it requires the specific decryption process using your account information.
Additionally, all data is encrypted in transit using Transport Layer Security (TLS), the same technology that protects your online banking. We also ensure that no unencrypted sensitive data is ever logged or stored.
Privacy and Terms of Service
For complete details about how we handle your data and the terms governing your use of our service, please review our:
Security Contact
If you have security concerns or need to report a potential vulnerability, we're here to help:
- Security inquiries and responsible disclosure: security@lawfulgood.us
- General support: support@lawfulgood.us