Security
Confidentiality is the product.
A research tool for lawyers is only usable if it meets the obligations lawyers already carry. Here's how Casefinch handles your data — in plain language.
Your research is never training data
Queries, documents and research trails are yours. They are not used to train or fine-tune models — ours or anyone else's — and are never shared with third parties. Deletion on request, in full.
Data stays in the UK and EU
All customer data is stored and processed within UK and EU jurisdictions, encrypted in transit (TLS 1.2+) and at rest (AES-256).
Access is scoped and logged
Role-based access within your practice; least-privilege access internally, with audit logging. Production data is accessible only to engineers who operationally need it.
Built with professional duties in mind
Casefinch is designed to sit inside a lawyer's confidentiality obligations, not to strain them. We're happy to complete security questionnaires and sign DPAs during onboarding.
The corpus is the public record
Our index is built from published judgments — the public record of the courts. Nothing of yours is mixed into it.
Report a concern
Suspected vulnerability or a security question? Email security@casefinch.com and you'll reach the engineering team directly.