Data we process
CaseSharp processes account details such as name, email, authentication state and preferences; product activity such as saved authorities, searches, notes, briefs, packets, annotations, documents and workspace membership; billing state needed to manage subscriptions, invoices, plan tier and grace periods; and security or audit events needed to prevent abuse, debug reliability and verify grounded outputs.
Research and AI data
CaseSharp may process prompts, selected authority text and user-provided documents to provide research answers, summaries and work product. Where audit contracts require minimisation, query text is hashed and only necessary metadata is retained.
Some research and AI processing may be handled by an AI-processing partner in the United States. CaseSharp limits that processing to the prompt, selected authority text, uploaded document text or generated work product needed to provide the requested feature. CaseSharp does not use that partner as a system of record for customer files.
Storage and access
Customer data is stored in Australian application data stores where the product controls storage location. Access is restricted by row-level security, workspace role checks and server-only admin paths.
Data incidents
CaseSharp maintains an incident-response process for suspected unauthorised access, disclosure or loss of customer information. If an incident may be an eligible data breach under the Notifiable Data Breaches scheme, CaseSharp will assess it as quickly as practicable and within the statutory assessment period, then notify affected customers and the OAIC as soon as practicable where notification is required.
User controls
Users can export account data, manage billing, change preferences and request deletion from account settings. Deletion keeps records that are required for fraud prevention, billing, legal compliance or security audit.
Sharing
Share links expose only the selected resource and expire or deny access according to their token policy. Anonymous share views must not expose the authenticated owner identity.
Contact
Privacy questions should be directed to the CaseSharp support channel listed in the product footer.