Privacy Policy

Effective date: May 11, 2026 · Last updated: May 11, 2026

Introduction

SwiftLaw, Inc. ("we", "us", "our") operates the SwiftLaw platform, including the marketing site at tryswiftlaw.com and the SwiftLaw Conductor application at app.tryswiftlaw.com — an AI-powered legal document automation service for fund formation. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

Information We Collect

Account Information

When you create an account, we collect information provided by our identity provider (Clerk), including:

  • Name and email address
  • Profile information (organization, role)
  • Authentication credentials (managed by Clerk)

Document & Legal Data

In the course of using SwiftLaw Conductor, you may upload or generate:

  • Legal documents (LPAs, subscription agreements, term sheets)
  • Fund structure and entity information
  • Key terms, questionnaire responses, and deal data
  • Document edits, redlines, and tracked changes

Usage Data

  • Audit logs of document access, downloads, exports, and edits
  • Feature usage and interaction data
  • Error reports and performance metrics (via Sentry)

Information Your Browser Sends

When you visit our web sites, our servers automatically record information your browser sends, such as your IP address, browser type, language preference, referring site, and the date and time of each visit. We use this information for analytics, debugging, and abuse prevention.

How We Use Your Information

  • Service delivery: To provide AI-powered document drafting, editing, and collaboration features
  • AI processing: Document content is sent to Anthropic's Claude API for AI-assisted drafting and analysis. Anthropic does not use your data to train their models under our commercial agreement.
  • Security & compliance: To maintain audit trails, detect unauthorized access, and meet regulatory obligations
  • Product improvement: To diagnose errors, fix bugs, and improve platform reliability
  • Communication: To send transactional emails related to your account and document activity

Data Storage & Protection

  • All data is stored in PostgreSQL databases with encrypted connections (SSL required)
  • Sensitive fields are encrypted at rest using AES-256-GCM
  • File downloads are served via HMAC-signed URLs with 15-minute expiry
  • The platform is hosted on Vercel (SOC 2 Type II certified)
  • No secrets or credentials are stored in source code; all sensitive configuration is managed via environment variables

Data Retention

  • Account data: Retained for the duration of your account. Deleted upon account closure, subject to legal holds.
  • Documents & deal data: Retained for the duration of your account and any applicable legal retention period.
  • Audit logs: Retained for 365 days, then automatically purged.
  • Soft-deleted records: Permanently purged after a 30-day grace period.
  • Share link tokens: Expire after 30 days.

Cookies & Tracking

SwiftLaw uses essential cookies for authentication and session management (provided by Clerk). We may also use small files (cookies and similar technologies) to remember your preferences and to compile aggregate data on platform usage so we can improve our services.

We do not use advertising cookies or third-party tracking pixels. Error monitoring via Sentry collects anonymized performance data. You can configure your browser to refuse cookies, but some features of the platform may not function properly without them.

Third-Party Services

We use the following third-party services to operate the platform. Each has its own privacy policy, which we encourage you to review:

  • Clerk — Authentication and user management (SOC 2 Type II certified)
  • Anthropic (Claude) — AI document processing. Data is processed under our commercial agreement and is not used for model training.
  • Vercel — Hosting and deployment (SOC 2 Type II certified)
  • Sentry — Error monitoring and performance tracking
  • Stripe — Payment processing. We do not store credit card numbers; all payment data is handled by Stripe.
  • Resend — Transactional email delivery
  • CloudConvert — Document format conversion

Data Sharing & Disclosure

We do not sell your personal information. We may share your data only in the following circumstances:

  • Service providers: With the third-party services listed above, solely to operate the platform
  • Legal obligations: When required by law, subpoena, or valid legal process
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with prior notice
  • With your consent: When you explicitly authorize sharing (e.g., share links for client questionnaires)

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to or restrict certain processing

To exercise these rights, contact us at karan@tryswiftlaw.com. We will respond within 30 days.

Choice & Opt-Out

We will typically send you transactional messages that relate to your account, security, or document activity (for example, authentication confirmations, share-link notifications, or security alerts). You cannot opt out of these communications while your account is active, as they are essential to the service.

We may also send promotional communications, such as product announcements, newsletters, or feature updates. You can opt out of these at any time by following the unsubscribe link in any promotional email or by contacting us at saketh@tryswiftlaw.com.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or an in-app notification, and the "Last updated" date above will reflect the most recent revision. Continued use of the platform after changes constitutes acceptance of the updated policy.

Contact

For privacy-related inquiries, contact us at karan@tryswiftlaw.com or saketh@tryswiftlaw.com.