Your contracts contain your most sensitive business information. We take security seriously with bank-level encryption, SOC 2 Type II certification, and GDPR compliance built into our foundation.
Security isn't an afterthought at Casebookâit's the foundation. Every architectural decision, every feature, and every process is designed with security and compliance first.
Information security management system certification in progress. Expected completion Q3 2026.
.jpg)
For healthcare customers, we offer HIPAA-compliant configurations and sign Business Associate Agreements (BAAs).
Full compliance with EU General Data Protection Regulation. Data processing agreements available. Right to erasure, data portability, and all GDPR requirements met.
Full compliance with California Consumer Privacy Act. Transparent data practices and user rights respected.
Independently audited by third-party assessors. Annual audits verify our security controls for availability, confidentiality, and processing integrity.
Data is stored in AWS data centers in your chosen region (US, EU, or UK). You can select your region during account setup.
Only users you explicitly invite. Casebook employees have no access to your contract content unless you grant support access for troubleshooting.
Absolutely not. Your contract data is never used for AI training or shared with third parties. Our AI models are trained on public legal datasets only.
We have comprehensive incident response procedures. You'd be notified within 72 hours, we'd provide full transparency on what happened, and we'd work with you on any required remediation.
Yes! Enterprise customers can request custom security assessments, vendor questionnaires, and live security reviews with our security team.
Yes. $5M cyber liability insurance policy covering data breach response and liabilities.
See why GCs at TechCorp, FinTech Global, and 1,200+ companies trust Casebook with their most sensitive contracts.
