← Home

Privacy Policy

Last updated: March 2026 · Terms · Support

1. Introduction

LegalAI ("we," "our," or "us") operates the LegalAI AI Legal Assistant platform, including web and mobile applications. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

By accessing or using LegalAI, you agree to this Privacy Policy. If you do not agree with the terms of this policy, please do not access or use our services.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

  • Account information: name, email address, and authentication credentials when you create an account or sign in via Google OAuth.
  • Documents and content: legal documents, contracts, and other files you upload for analysis.
  • Queries and interactions: questions you ask our AI assistant and the resulting conversations.
  • Payment information: credit purchase and transaction history (payment processing is handled by third-party providers).

2.2 Automatically Collected Information

When you use our services, we automatically collect:

  • Usage data: pages visited, features used, timestamps, click patterns, and session duration.
  • Device information: device type, operating system, browser type, screen resolution, and unique device identifiers.
  • Log data: IP address, access times, referring URLs, and error logs.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our AI legal assistant services.
  • To process your documents and queries through our AI engine (powered by Anthropic's Claude AI) and deliver responses.
  • To manage your account, credits, and subscription.
  • To communicate with you about updates, security alerts, and support.
  • To detect, prevent, and address technical issues, fraud, and abuse.
  • To comply with legal obligations.

4. AI Data Processing

Your documents and queries are processed using Anthropic's Claude AI. When you submit content for analysis:

  • Your content is sent to Anthropic's API for processing and is subject to Anthropic's Privacy Policy.
  • Anthropic does not use API inputs or outputs to train their models.
  • We do not store the raw AI processing data beyond what is necessary to display your results and maintain conversation history.

5. Data Storage and Security

Your data is stored in PostgreSQL databases hosted by Neon. We implement industry-standard security measures including:

  • Encryption of data in transit using TLS/SSL.
  • Encryption of sensitive data at rest.
  • Regular security audits and vulnerability assessments.
  • Access controls and authentication mechanisms.
  • Secure environment variable management for API keys and secrets.

While we strive to protect your personal information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Essential cookies: authentication sessions and security tokens required for the service to function.
  • Analytics cookies: to understand how users interact with our platform and improve the experience.

You can control cookie preferences through your browser settings. Disabling essential cookies may affect your ability to use the service.

7. Third-Party Services

We use the following third-party services that may collect or process your data:

  • Anthropic (Claude AI): AI processing of documents and queries.
  • Google OAuth: authentication and sign-in services.
  • Vercel: web application hosting and serverless functions.
  • Neon: PostgreSQL database hosting.

Each of these providers has their own privacy policies governing the use of your information. We encourage you to review their respective policies.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Under GDPR (European Economic Area)

  • Right of access: request a copy of the personal data we hold about you.
  • Right to rectification: request correction of inaccurate personal data.
  • Right to erasure: request deletion of your personal data.
  • Right to data portability: request export of your data in a machine-readable format.
  • Right to restrict processing: request limitation of how we process your data.
  • Right to object: object to processing of your personal data.

Under CCPA (California)

  • Right to know: request information about the categories and specific pieces of personal data we have collected.
  • Right to delete: request deletion of your personal information.
  • Right to opt-out: opt out of the sale of your personal information. We do not sell your personal information.
  • Right to non-discrimination: we will not discriminate against you for exercising your privacy rights.

To exercise any of these rights, please contact us at privacy@legalai.app. We will respond to your request within 30 days.

9. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you services. You may request deletion of your account and associated data at any time. We may retain certain information as required by law or for legitimate business purposes such as fraud prevention and legal compliance.

10. Children's Privacy

LegalAI is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal data from a child under 13, we will take steps to delete that information promptly. If you believe we may have collected information from a child under 13, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable law.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the service after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: