Privacy Policy

1. Introduction

Cendrift LLC, operating as Docgic ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered legal document analysis platform.

We understand the sensitive nature of legal documents and the importance of maintaining confidentiality and security in all our data handling practices.

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide directly to us, including:

• Name, email address, and contact information
• Professional information (law firm, bar number, practice areas)
• Account credentials and authentication data
• Billing and payment information
• Communication preferences

2.2 Document Content

When you use our Service, we process:

• Legal documents you upload for analysis
• Text content extracted from documents
• Metadata associated with your documents
• Analysis results and annotations
• Search queries and research requests

2.3 Usage Information

We automatically collect information about how you use our Service:

• Log data (IP address, browser type, access times)
• Device information and operating system
• Feature usage and interaction patterns
• Performance metrics and error reports
• Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

3.1 Provide Services

• Process and analyze your legal documents
• Provide AI-powered insights and recommendations
• Enable document comparison and research features
• Maintain your account and user preferences
• Process payments and manage subscriptions

3.2 Improve Our Service

• Analyze usage patterns to enhance functionality
• Train and improve our AI models (with anonymized data)
• Identify and fix technical issues
• Develop new features and capabilities

3.3 Communication

• Send service-related notifications
• Provide customer support
• Share product updates and legal industry insights
• Respond to your inquiries and requests

4. Data Security and Confidentiality

4.1 Security Measures

We implement industry-standard security measures to protect your data:

• End-to-end encryption for data transmission
• AES-256 encryption for data at rest
• Multi-factor authentication options
• Regular security audits and penetration testing
• SOC 2 Type II compliance
• Role-based access controls

4.2 Legal Professional Privilege

We recognize the importance of attorney-client privilege and work product doctrine. Our processing of your documents is designed to preserve these protections, but you remain responsible for ensuring compliance with applicable professional rules.

4.3 Data Isolation

Each client's data is logically separated and encrypted with unique keys. We do not share document content between different organizations or users without explicit consent.

5. Information Sharing and Disclosure

5.1 No Sale of Personal Data

We do not sell, rent, or trade your personal information or document content to third parties for marketing purposes.

5.2 Service Providers

We may share information with trusted service providers who:

• Help us operate and improve our Service
• Process payments and manage subscriptions
• Provide cloud infrastructure and security services
• Assist with customer support and analytics

All service providers are bound by strict confidentiality agreements.

5.3 Legal Requirements

We may disclose information when required by law or to:

• Comply with legal process or government requests
• Protect our rights, property, or safety
• Prevent fraud or security threats
• Enforce our Terms of Service

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active
• Document Content: Retained according to your preferences or legal requirements
• Usage Logs: Typically retained for 12-24 months
• Billing Records: Retained for 7 years for tax and audit purposes

You can request deletion of your data at any time, subject to legal retention requirements and legitimate business needs.

7. Your Privacy Rights

7.1 Access and Control

You have the right to:

• Access your personal information and document data
• Correct inaccurate or incomplete information
• Delete your account and associated data
• Export your data in a portable format
• Opt out of non-essential communications

7.2 GDPR Rights (EU Users)

If you're in the European Union, you also have the right to:

• Object to processing of your personal data
• Restrict processing in certain circumstances
• Data portability for information you provided
• Lodge a complaint with your local data protection authority

7.3 California Privacy Rights (CCPA)

California residents have additional rights under the CCPA, including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale (though we don't sell data)
• Right to non-discrimination for exercising privacy rights

8. Cookies and Tracking

We use cookies and similar technologies to:

• Remember your preferences and settings
• Authenticate your account and maintain sessions
• Analyze usage patterns and improve performance
• Provide personalized features and recommendations

You can control cookie settings through your browser, but some features may not function properly if cookies are disabled.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for certain countries
• Certification schemes and codes of conduct

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Displaying prominent notices in our Service

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us at:

13. Data Processing Lawful Basis

We process your personal information based on the following lawful bases:

• Contract: To provide our services and fulfill our obligations
• Legitimate Interest: To improve our services and prevent fraud
• Consent: For marketing communications and optional features
• Legal Obligation: To comply with applicable laws and regulations