Trust Center
Everything procurement, security, and legal teams need to evaluate Contract-as-Code in one place — how we protect data, where it lives, who processes it, and the terms that govern the service.
Security
Encryption, data residency, access control, and how AI never receives employee data.
Privacy Policy
What we collect, how we use it, retention periods, and your data rights.
Sub-processors
Every third-party processor, the data it accesses, and its location.
Terms of Service
The terms governing use of the platform, including the “not legal advice” limitation.
Our security commitments at a glance
- AI never sees employee data — only collective agreement clause text is processed; identifiers are SHA-256 hashed first.
- Encryption everywhere — TLS 1.2+ in transit, AES-256 at rest.
- Regional data residency — your data stays in Canada.
- Human-in-the-loop — no rule is active, and no finding is acted on, without a human decision.
- Auditable by design — every rule approval and validation run is logged.
Procurement and vendor risk
Custom DPAs, security questionnaires, and data-residency arrangements are available for enterprise and public sector customers. Contact us to start a vendor-risk review or request our security documentation.