What Data Is Processed
When you initiate a contract review, the text content of your active Word document is transmitted to a third-party AI provider for analysis. This transmission occurs only when you explicitly click "Review" — no data is sent automatically or in the background.
The document text passes through our proxy server to the AI provider, and the AI provider's response is returned to your browser. The proxy server does not log, store, or retain any document content.
Third-Party AI Providers
Depending on configuration, document text may be sent to one of the following providers. Only one provider is used per review.
We do not control how these providers process data once transmitted — please review their respective privacy policies.
Analytics & Error Tracking
We use PostHog for product analytics to understand how features are used. Analytics data is collected without cookies and does not include contract text, clause content, or document data. Analytics data is hosted in the United States.
We use Sentry for error tracking to identify and fix software bugs. Error reports are automatically scrubbed to remove any contract text before transmission. Error tracking data is hosted in the United States.
Neither service has access to your document content. No cookies are used by these services, so no cookie consent banner is required.
Data We Store
Legal Redliner does not store your document content on our servers. Document text is processed transiently — it passes through our proxy server to the AI provider and the response is returned to your browser. No document content is logged or persisted on our servers.
Anonymized analytics events (feature usage, no document content) are sent to PostHog, and error reports (automatically scrubbed of contract text) are sent to Sentry, as described in the Analytics & Error Tracking section above.
Local Storage
Playbook customizations, review sessions, and preferences are stored locally in your
browser's localStorage and never leave your device. This data is accessible
only to you and can be cleared at any time through your browser settings.
Data Security
We implement commercially reasonable measures to protect your data in transit:
- Encryption in transit. All network traffic uses HTTPS/TLS encryption.
- Server-side key management. AI provider API keys are stored in Google Cloud Secret Manager and injected server-side — they are never exposed to the browser.
- Content Security Policy. The add-in's Content Security Policy restricts network requests to same-origin only, preventing data exfiltration to unauthorized endpoints.
- No document storage. We do not persist your document content on our servers. Analytics and error data sent to third-party services contain no contract text.
Cookies & Tracking
Legal Redliner does not use cookies or advertising trackers. Our product analytics (PostHog) and error tracking (Sentry) operate without cookies and do not collect advertising data, device fingerprints, or behavioral profiles. See the Analytics & Error Tracking section above for details.
Children's Privacy
Legal Redliner is a professional tool intended for use by legal professionals and is not directed at children under the age of 13. We do not knowingly collect or process data from children.
Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted at this URL with an updated "Last Updated" date. We encourage you to review this page periodically.
Contact
If you have questions about this Privacy Policy or how your data is handled, please reach out:
Brothers Void Technologies L.L.C.
Email: support@bvt.net
Web: Support Page