FAQs
What data encryption standards do you use?
The CaseMine platform secures user data through 256-bit encryption, encryption at rest and in transit, and ISO-certified security frameworks, ensuring confidentiality and integrity of legal research data.
Are you GDPR compliant?
Yes. We ensure full compliance with the General Data Protection Regulation (GDPR). In accordance with Article 27 of the General Data Protection Regulation (GDPR), we have appointed Euverify Ltd to act as our representative for individuals located in both the European Union (EU) and the United Kingdom (UK).
What cloud infrastructure do you use?
CaseMine operates as a cloud-hosted SaaS platform with third-party infrastructure providers like AWS, enabling scalable storage and AI-driven legal research accessible through the web.
Who has access to our data?
- Your data and any data belonging to your clients is never shared with or accessible to other customers.
- It is also not accessible to our engineers under normal circumstances. In rare cases where troubleshooting requires direct system access, temporary access may be granted by the CTO, but only after receiving your explicit written consent.
Does CaseMine use my data to train AI models?
No. Your data is not used to train or fine-tune CaseMine's AI models. Data processed in your workspace is not stored beyond what's needed to serve your session, and no data crosses organizational boundaries between customers.
CaseMine adheres to existing data permissions and policies, and its responses to you, are based only on data that you personally can access.
Where is our data stored and processed?
Your data is stored on CaseMine's private cloud hosted on AWS.
What security certifications does CaseMine hold?
Do you conduct penetration testing on a regular basis?
Yes. We conduct third-party penetration tests annually.
Are your environments segregated, and is customer data ever used outside of production?
We maintain fully isolated environments for development, staging, and production. Customer data is never used in testing or staging.
How are encryption keys managed?
CaseMine manages encryption keys through restricted access controls and industry-standard encryption infrastructure, backed by a cloud key-management system and secure cryptographic storage, while minimizing key exposure through temporary data processing.
Are AMICUS responses always accurate?
Like any generative AI system, AMICUS responses may not always be 100% accurate. While we continuously improve the quality of responses by grounding them in verified legal information, users should still apply their professional judgment and review the output before relying on it.
What data do we collect?
We may collect personal information such as your name, email address, username, password, and contact details when you create an account. We also collect usage data (such as activity on the platform), technical information (such as IP address and browser type), limited billing information for paid services, and documents or content that you upload to the platform to the extent to provide you the requisite services.
How do we use your data?
Your information is used to create and manage your account, communicate service-related updates, process payments., and comply with legal obligations.