What we collect

We collect information you provide directly: firm name, user email address, and case/client data you enter while using Resoproof. We also collect usage data (page views, feature interactions) through Vercel Analytics.

Client data you enter — names, email addresses, and documents — is stored on your behalf in your firm's isolated data partition.

How we use it

To provide and operate the Resoproof service.
To send document request and reminder emails on your behalf.
To generate and maintain the tamper-evident event record.
To communicate with you about your account and the service.

We do not sell your data. We do not use your case data to train machine learning models.

Data storage and security

Data is stored on Supabase infrastructure (AWS). Row-level security isolates each firm's data. Documents are stored in a private bucket and served only via short-lived signed URLs. The event log is append-only and hash-chained; the database rejects updates and deletes.

Third-party services

We use the following third-party services:

Supabase — database, authentication, and file storage.
Resend — transactional email (document requests, reminders).
Vercel — hosting, edge functions, analytics.

Each provider has its own privacy policy and data processing terms.

Your rights

You may request a copy of your data or deletion of your firm's records at any time by contacting us at hello@resoproof.com. We will respond within 30 days.

Contact

Questions about this policy: hello@resoproof.com.