Privacy Policy

Adjudica Intake by Glass Box Solutions, Inc. · Effective February 2026

We're a legal tech company. We know you read privacy policies differently when client data is involved. So we wrote this one for attorneys, not for lawyers.

1. What We Never Do

We want to lead with what we don't do, because that's what matters most to you:

✗We never read, store, or retain the content of your legal documents beyond what's needed to classify and summarize them. Once classification is done, the extracted text is deleted from our systems.
✗We never see your clients' names, Social Security numbers, medical diagnoses, treatment details, or any other Protected Health Information (PHI).
✗We never sell, rent, trade, or share your data with third parties for their commercial purposes. Not ever. Not to anyone.
✗We never use your data to train shared AI models without your explicit opt-in consent.
✗We never retain document files beyond 90 days after session completion.
✗We never store full IP addresses beyond 48 hours (masked to city-level after that).

2. What We Collect

Minimal. Specific. Disclosed.

Account information

Your name, email address, and firm name. Required to create and manage your account.

Document type labels

When you upload a document, we record what type it is (e.g., "Medical / QME Report"). We do not record the document's content, your client's name, or any case facts.

Correction choices

When you correct our AI (e.g., "this is a Treating Physician Report, not a QME"), we record: what the AI classified it as, what you corrected it to, and a structural text sample (up to 500 characters of non-PHI text like document headers and form field labels — never clinical narrative or identifying information). This is how your AI gets personalized to your practice.

Usage events

Page views, feature usage, and session counts. No document content. Used to improve the product. Can be opted out in Privacy Settings.

Payment records

Credit purchases processed by Stripe. We never see or store full payment card numbers.

Device type, login timestamp, and IP address (masked to city after 48 hours). Used for security and your Login History tab.

3. How We Use Your Data

Making your AI smarter. Your correction patterns train a personalized classification model for your firm. This never leaves your firm's context.
Improving Adjudica for everyone (only with your opt-in). Anonymized, aggregated patterns — never firm-identifiable — may contribute to Adjudica's shared classification model. You can opt out at any time in Settings.
Account management. Creating sessions, tracking credits, sending receipts and security alerts.
Security and fraud prevention. Detecting unauthorized access and protecting your account.

4. Your Rights (CCPA/CPRA)

California residents have the right to:

Download your data — one click in Account → My Data
Delete your correction history — resets AI personalization
Delete your account — 30-day grace period
Opt out of aggregate contribution — toggle in Account → Privacy
Know what we have — see Transparency Center

Contact: privacy@adjudica.ai

5. How We Protect Your Data

AES-256-GCM encryption at rest for all sensitive data
TLS 1.3 in transit for all communications
Google Cloud infrastructure (SOC2-certified, us-central1 data residency)
HIPAA-compliant AI processing under Business Associate Agreement (BAA)
Audit logging of all system and user actions
90-day accessible audit log, 2-year cold storage retention

6. Contact

Glass Box Solutions, Inc.
Privacy inquiries: privacy@adjudica.ai
General: hello@adjudica.ai

@Developed & Documented by Glass Box Solutions, Inc. using human ingenuity and modern technology