Introduction

LexiDraft AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you use our legal document generation service.

This Privacy Policy applies to all users of our website, mobile application, and services (collectively, the "Service"). By using our Service, you agree to the collection and use of information in accordance with this policy.

Table of Contents

Information We Collect

Personal Information You Provide

When you use LexiDraft AI, we may collect:

  • Account Information: Email address (if applicable)
  • Document Data: Information you input to generate legal documents
  • Business Information: Company name, industry, location, and other business details
  • Contact Information: Phone number, address (if provided)
  • Usage Data: Document preferences, custom settings

Automatically Collected Information

We automatically collect certain technical information:

  • Device Information: Device type, operating system, unique device identifiers
  • Usage Information: Pages viewed, time spent, features used
  • Log Data: IP address, browser type, access times, referring URLs
  • Cookie Data: Session cookies, preference cookies
  • Analytics Data: How users interact with our Service

Information from Third Parties

We may receive information about you from:

  • Payment Processors: Payment information for premium features
  • Cloud Storage Providers: Document storage and backup
  • Analytics Services: User behavior analysis
  • Legal Services: Third-party legal databases for template updates

How We Use Your Information

We use your information for the following purposes:

Service Provision

  • Document Generation: To create customized legal documents based on your inputs
  • Personalization: To improve user experience and provide relevant content
  • Account Management: To manage your account and preferences
  • Support Services: To provide customer support and technical assistance

Communication

  • Transactional Emails: Confirmations, receipts, service updates
  • Marketing Communications: New features, promotions, legal updates (with consent)
  • Support Responses: Customer service communications

Analytics and Improvement

  • Service Analytics: To understand usage patterns and improve our Service
  • Performance Monitoring: To ensure optimal performance and reliability
  • Security: To detect and prevent fraudulent activities
  • Research: To develop new features and improve existing ones

Legal Compliance

  • Regulatory Compliance: To comply with applicable laws and regulations
  • Legal Obligations: To fulfill contractual and legal requirements
  • Dispute Resolution: To resolve disputes and protect our rights

Data Retention

We retain your information only as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Document Data: Until you delete your account or as required by law
  • Account Information: Until account closure or 2 years of inactivity
  • Analytics Data: Typically 13-25 months in aggregated form
  • Legal Requirements: As required by applicable law (e.g., tax records, litigation)

Information Sharing and Disclosure

We do not sell, trade, or transfer your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We may share information with third-party service providers who perform services on our behalf:

  • Cloud Hosting: For secure data storage and backup
  • Payment Processing: To process transactions and prevent fraud
  • Email Services: To send transactional and communications
  • Analytics: To understand user behavior and improve our Service
  • Legal Updates: To access legal databases for template accuracy

Legal Requirements

We may disclose your information if required by law:

  • Legal Process: In response to subpoenas, court orders, or legal investigations
  • Government Requests: To comply with applicable laws and regulations
  • Public Safety: To protect our users, the public, or our business
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

Data Security

We implement appropriate technical and organizational measures to protect your information:

Technical Security

  • Encryption: SSL/TLS encryption for data in transit
  • Secure Storage: Encrypted databases and cloud storage
  • Access Controls: Role-based access and authentication
  • Regular Monitoring: Security audits and vulnerability scanning
  • Data Minimization: Collect only necessary information

Organizational Security

  • Employee Training: Privacy and security awareness programs
  • Confidentiality Agreements: Staff confidentiality obligations
  • Access Limitations: Need-to-know basis for data access
  • Incident Response: Procedures for data breach notifications

European Union Privacy Rights (GDPR)

If you are located in the European Union, you have enhanced rights under the General Data Protection Regulation (GDPR):

Rights Under GDPR

  • Right to Access: Obtain copies of your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restriction: Limit processing of your personal data
  • Right to Data Portability: Transfer data to another service provider
  • Right to Object: Object to automated individual decision-making
  • Right to Withdraw Consent: Withdraw consent at any time
⬆ Back to Top