OpusLawOpusLaw
OpusLaw

Legal — OpusLaw

Privacy Policy

How we collect, use, and protect your information.

Last updated: March 12, 2026

1. Information We Collect

1.1 Information You Provide

  • Legal questions and queries you submit
  • Chat messages and conversation history
  • Documents you upload for analysis
  • Account information if you create an account
  • Feedback and support communications

1.2 Automatically Collected

  • Usage patterns and interaction data
  • Device information and browser type
  • IP address and general location
  • Session duration and feature usage
  • Error logs and performance metrics

2. How We Use Your Information

  • Provide legal information through Carta AI
  • Improve our services and develop new features
  • Maintain conversation history for context
  • Analyze usage patterns to enhance user experience
  • Comply with legal obligations and prevent misuse
  • Communicate with you about service updates

3. AI Processing and Third-Party Services

OpusLaw is powered by Driftrail, our primary LLM provider. We also use Google AI and OpenAI services.

3.1 Driftrail (Primary LLM Provider)

  • Powers all core AI responses and legal analysis
  • Your queries are processed by Driftrail's AI models
  • Driftrail's Privacy Policy and Terms of Service apply
  • We do not share personally identifiable information beyond what is necessary to process your request

3.2 Google AI Services (Gemini)

  • Text queries processed by Google Gemini models
  • Google's AI Terms of Service apply
  • Used for generating legal information and document templates

3.3 OpenAI Services (Whisper)

  • Voice recordings processed by OpenAI Whisper for transcription
  • OpenAI's Terms of Use and Privacy Policy apply
  • Voice transcription is only available on desktop/laptop devices

4. Data Storage and Security

  • Conversations stored securely with enterprise-grade encryption in transit and at rest
  • Access restricted to authorized personnel only
  • Regular security audits of our infrastructure
  • Data backed up securely per our retention policy
  • Your data is never used to train AI models

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share information only in these limited circumstances:

  • With your explicit consent
  • To comply with legal obligations or court orders
  • To protect our rights, property, or safety
  • In connection with a business transfer or merger
  • With service providers who assist in our operations (under strict confidentiality)

6. Your Rights and Choices

Access

Request a copy of your personal data

Correction

Update or correct inaccurate information

Deletion

Request deletion of your data

Portability

Receive your data in machine-readable format

Objection

Object to certain processing activities

Restriction

Request limitation of processing

7. International Data Transfers

Your information may be processed in countries other than your own. We ensure appropriate safeguards including:

  • Standard contractual clauses approved by relevant authorities
  • Adequacy decisions by data protection authorities
  • Other legally recognized transfer mechanisms

8. Data Retention

  • Conversation history retained for service improvement and context
  • Account information retained while your account is active
  • Usage analytics retained in aggregated form for business purposes
  • Legal compliance data retained as required by applicable laws
  • You may request deletion of your data at any time

9. Cookies and Tracking

  • Essential cookies for site functionality
  • Analytics cookies to understand usage patterns
  • You can control cookie preferences in your browser
  • Some features may not work properly without cookies

10. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the “Last Updated” date. Your continued use of our service after changes constitutes acceptance of the updated policy.

12. Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: support@driftrail.com

Subject: Privacy Policy Inquiry

Compliance

This privacy policy is designed to comply with GDPR, CCPA, and other major privacy regulations. Specific legal requirements may vary by jurisdiction.