Privacy Policy

LegAiDNC ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your data when you use our platform, including the APS Summary, Medical Record Summary, Patent Intelligence, and Marketing AI applications.

By using our services, you agree to the collection and use of information as described in this policy.

Information you provide:

• Account information (name, email, phone number)
• Documents and data uploaded for processing (APS records, medical records, patent filings)
• Marketing content, campaign data, and contact lists
• Communication preferences and support inquiries

Information collected automatically:

• Device information, browser type, IP address
• Login timestamps and session data
• Usage patterns and feature interaction analytics

• Service delivery: Processing documents, generating summaries, executing marketing campaigns
• AI processing: Powering AI features — your data is processed in isolated environments and never used for model training
• Account management: Authentication, authorization, and user preference management
• Communication: Sending verification emails, service notifications, and support responses
• Security: Detecting threats, preventing fraud, maintaining audit logs
• Improvement: Analyzing aggregate usage patterns to improve our services (anonymized data only)

We implement industry-leading security measures to protect your data:

• Encryption: AES-256 encryption at rest; TLS 1.3 for all data in transit
• Access control: Role-based access control (RBAC) with granular permissions
• Infrastructure: Secure cloud hosting with network isolation and firewalls
• Monitoring: 24/7 security monitoring with automated breach detection
• Compliance: HIPAA, ISO 27001, and GDPR certified

We do not sell your personal data. We share data only in these circumstances:

• Service providers: Trusted partners who assist with hosting, email delivery (AWS SES), and analytics — all bound by strict data processing agreements
• Legal compliance: When required by law, court order, or regulatory authority
• Business transfers: In the event of a merger or acquisition, with advance notice to affected users
• With your consent: When you explicitly authorize sharing for a specific purpose

We retain your data only as long as necessary for the purposes described in this policy:

• Account data: Retained while your account is active, deleted within 30 days of account closure
• Processed documents: Retained per your configured retention policy; default 90 days
• Audit logs: Retained for 1 year for compliance purposes
• Marketing data: Retained until campaign completion plus 6 months

Depending on your jurisdiction, you have the right to:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data ("right to be forgotten")
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to data processing for specific purposes
• Withdraw consent: Withdraw previously given consent at any time

To exercise any of these rights, contact us at info@legaidnc.com.

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: info@legaidnc.com
Website: legaidnc.com/contact