Privacy Policy

Last Updated: January 18, 2026
Effective Date: January 18, 2026

1. Introduction

UnfairLaw ("we," "us," or "our") is committed to protecting your privacy and the confidentiality of your information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our evidence intelligence platform and related services (collectively, the "Services").

This Privacy Policy applies to all users of our Services, including visitors to our website, registered account holders, and customers who submit documents for processing. By accessing or using our Services, you consent to the practices described in this Privacy Policy.

If you do not agree with this Privacy Policy, you may not access or use our Services.

2. Information We Collect

We collect several categories of information to provide, maintain, and improve our Services. The information we collect falls into three main categories: information you provide directly, information collected automatically, and information from third-party sources.

2.1 Information You Provide Directly

Account Information: When you create an account, we collect your name, email address, organization name (if applicable), and authentication credentials. If you register using third-party authentication providers (Google, Microsoft, Apple), we receive basic profile information from those providers.

Payment Information: When you purchase credits or subscribe to a plan, we collect billing information including your name, billing address, and payment method details. Payment processing is handled by third-party payment processors who collect and store your payment card information.

Customer Content: You upload and submit documents, files, and other materials to our Services for processing. Customer Content may include legal documents, medical records, discovery materials, correspondence, and other evidence. We process this content solely to provide our Services to you.

2.2 Information Collected Automatically

Usage Data: We automatically collect information about how you interact with our Services, including pages viewed, features used, documents processed, search queries, clicks, and navigation paths.

Device Information: We collect information about the devices you use to access our Services, including device type, operating system, browser type and version, screen resolution, IP address, and unique device identifiers.

Cookies and Tracking Technologies: We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing activities and preferences. You can control cookie settings through your browser, but disabling cookies may limit your ability to use certain features.

3. How We Use Your Information

We use the information we collect for the following purposes, consistent with applicable law and the consent you provide:

3.1 Providing and Improving Services

Service Delivery: We process Customer Content to provide our core Services, including OCR processing, timeline reconstruction, contradiction detection, entity extraction, and document analysis.

Platform Operation: We use your account information and usage data to operate, maintain, and secure our platform, including authenticating users, processing payments, preventing fraud, and enforcing our Terms of Service.

Service Improvement: We analyze aggregated, anonymized usage data to identify trends, measure feature effectiveness, optimize performance, and develop new capabilities.

3.2 Communications

Service Communications: We send you transactional emails related to your account, including account creation confirmations, password resets, payment receipts, credit balance notifications, and service updates.

Marketing Communications: With your consent, we may send you promotional emails about new features, product updates, blog posts, and special offers. You can opt out of marketing communications at any time.

3.3 Legal and Security Purposes

Legal Compliance: We may use and disclose your information to comply with applicable laws, regulations, legal processes, or governmental requests.

Security and Fraud Prevention: We use your information to detect, investigate, and prevent fraudulent transactions, unauthorized access, security breaches, and other illegal activities.

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We share your information only in the limited circumstances described below:

4.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including cloud infrastructure providers, payment processors, analytics providers, email service providers, and customer support tools. These service providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information.

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, including complying with subpoenas, court orders, or legal processes. We will make reasonable efforts to notify you of such disclosures unless prohibited by law.

4.3 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for research, analytics, marketing, or other purposes.

5. Data Security

We implement comprehensive technical, administrative, and physical security measures designed to protect your information from unauthorized access, disclosure, alteration, and destruction. Our security practices include:

5.1 Technical Safeguards

• Encryption: We encrypt data in transit using Transport Layer Security (TLS) 1.2 or higher. Data at rest is encrypted using AES-256 encryption.
• Access Controls: We implement role-based access controls to ensure that only authorized personnel can access your information.
• Authentication: We require strong authentication mechanisms, including multi-factor authentication for administrative access.
• Network Security: We employ firewalls, intrusion detection systems, and network segmentation to protect our infrastructure.

5.2 Limitations

While we implement robust security measures, no system is completely secure. We cannot guarantee that unauthorized access, hacking, data loss, or other breaches will never occur. You acknowledge and accept this inherent risk when using our Services.

6. Data Retention

We retain your information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary depending on the type of information:

6.1 Account Information

We retain your account information for as long as your account remains active. If you close your account, we will delete or anonymize your account information within ninety (90) days, except as required by law.

6.2 Customer Content

We retain Customer Content (documents you upload) for as long as you choose to store it on our platform. You may delete Customer Content at any time through your account dashboard. Upon deletion, we remove Customer Content from our active systems within thirty (30) days and from backup systems within ninety (90) days.

6.3 Usage and Log Data

We retain usage data and log files for up to two (2) years for security monitoring, troubleshooting, and service improvement purposes. After this period, we delete or anonymize this data.

7. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information. We respect these rights and provide mechanisms to exercise them:

7.1 Access and Portability

You have the right to access the personal information we hold about you. You can view and download most of your information through your account dashboard. If you need additional information, contact us at [email protected].

7.2 Correction

You have the right to correct inaccurate or incomplete personal information. You can update most information directly through your account settings.

7.3 Deletion

You have the right to request deletion of your personal information, subject to certain exceptions (such as information we must retain for legal compliance). You can delete your account and associated data through your account settings or by contacting us at [email protected].

7.4 Opt-Out of Marketing

You can opt out of receiving marketing communications by clicking the unsubscribe link in any promotional email or updating your communication preferences in your account settings.

8. International Data Transfers

UnfairLaw is based in the United States. If you access our Services from outside the United States, your information will be transferred to, stored in, and processed in the United States and other countries where our service providers operate. By using our Services, you consent to the transfer of your information to the United States and other countries.

9. Children's Privacy

Our Services are not directed to individuals under the age of eighteen (18), and we do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected], and we will delete such information from our systems.

10. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

10.1 Right to Know

You have the right to request that we disclose the categories of personal information we collected about you, the sources from which we collected it, the business purpose for collecting it, and the categories of third parties with whom we share it.

10.2 Right to Delete

You have the right to request deletion of personal information we collected from you, subject to certain exceptions.

10.3 Right to Opt-Out of Sale

We do not sell personal information as defined by the CCPA. If our practices change, we will update this Privacy Policy and provide an opt-out mechanism.

10.4 Exercising CCPA Rights

To exercise your CCPA rights, contact us at [email protected]. We will verify your identity before processing your request and respond within forty-five (45) days.

11. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

11.1 Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: Processing is necessary to perform our contract with you (providing Services)
• Legitimate Interests: Processing is necessary for our legitimate business interests (improving Services, security, fraud prevention)
• Legal Compliance: Processing is necessary to comply with legal obligations
• Consent: You have provided explicit consent for specific processing activities

11.2 Data Protection Officer

You may contact our Data Protection Officer at [email protected] with questions about our data protection practices.

11.3 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority in your country if you believe we have violated your data protection rights.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will update the "Last Updated" date at the top of this Privacy Policy and notify you via email or through a prominent notice on our platform.

Your continued use of our Services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

UnfairLaw Privacy Team
Email: [email protected]
Legal Inquiries: [email protected]
General Support: [email protected]
Website: https://unfairlaw.com

We will respond to your inquiry within thirty (30) days.