Security & Privacy
Enterprise-Grade Security for Your Legal Data
Your contracts are private, encrypted, and never used to train AI models.
01
Data Privacy
- Your data is never used to train AI models.
- Each API call is stateless — the AI has no memory between sessions.
- Your contracts are never visible to other customers.
- Powered by Anthropic's enterprise API with a strict no-training data policy.
02
Encryption & Infrastructure
- All data encrypted at rest using AES-256.
- All data encrypted in transit using TLS 1.3.
- SOC 2 Type II certified infrastructure.
- US-based data centers.
- Automated backups with point-in-time recovery.
03
Access Controls
- Your contracts are only visible to your company.
- Row-level security enforced at the database level.
- Every action logged with a full audit trail.
- No Anthropic employee or Corporate Counsel AI employee can read your contracts without your permission.
04
Security features by plan
Every plan ships with strong defaults. Higher tiers unlock the compliance artifacts regulated industries require.
| Feature | Starter$299 | Professional$599 | Enterprise$1,500+ |
|---|---|---|---|
| Standard encryption | ✓ | ✓ | ✓ |
| No AI training policy | ✓ | ✓ | ✓ |
| Data isolation | ✓ | ✓ | ✓ |
| Data Processing Agreement | — | ✓ | ✓ |
| Audit logs | — | ✓ | ✓ |
| Data retention controls | — | ✓ | ✓ |
| Data export & deletion | — | ✓ | ✓ |
| HIPAA Business Associate Agreement | — | — | ✓ |
| SOC 2 report on request | — | — | ✓ |
| Dedicated infrastructure | — | — | ✓ |
| Single Sign-On (SSO) | — | — | ✓ |
| Custom data retention | — | — | ✓ |
| SLA guarantee | — | — | ✓ |
05 — Regulated Industries
Built for compliance-sensitive teams
Healthcare, financial services, government contractors, and law firms have enhanced compliance needs. Our Enterprise plan includes HIPAA Business Associate Agreements, SOC 2 reports, and dedicated infrastructure options.
Contact us for Enterprise06
Frequently asked questions
- Is my data used to train the AI?
- No. We use Anthropic's API which has a strict no-training policy. Your data is never used to improve or train any AI model.
- Can other customers see my contracts?
- No. Your contracts are stored in an isolated partition with row-level security. It is technically impossible for another customer to access your data.
- Where is my data stored?
- All data is stored in US-based data centers. We do not transfer data outside the United States.
- What happens to my data if I cancel?
- Your data remains available for 30 days after cancellation. You can export all your contracts at any time. After 30 days, all data is permanently deleted.
- Do you offer a HIPAA Business Associate Agreement?
- Yes, for Enterprise customers. Contact us at security@gcounselai.com to request a BAA.
Questions about security? We’ll respond within 24 hours.
Contact Security TeamA Data Processing Agreement is available on request for Professional and Enterprise customers.