Trust & Security Center

Documentation for the questions serious legal teams will ask before they trust a platform.

CaseProof is built for legal professionals who need clarity on security, AI handling, vendor posture, and review controls. This center keeps those answers public and specific.

Last updated: March 31, 2026

Review Security OverviewDPA & GDPR Details

Hosted in the United States

Case data is hosted through Supabase on AWS us-east-1, with vendor and region details documented in our trust materials.

Encrypted in transit and at rest

TLS protects traffic, while storage and database layers rely on AES-256-backed infrastructure controls.

Attorney-review workflow preserved

Generated chronologies, gap findings, and document drafts are positioned as reviewable work product rather than unsupervised legal output.

Vendor posture disclosed

Security certifications, subprocessors, and AI handling details are published so firms are not guessing how the service operates.

Explore The Documentation

Start with the topic your firm needs to review.

These pages are written to be useful during procurement, client questions, security review, and internal diligence.

Security

Security Overview

Infrastructure, encryption, DDoS protection, and how we keep your data safe at every layer.

Privacy

Privacy Overview

What data we collect, how we use it, and our commitments around third-party sharing.

AI Handling

AI Data Handling

Which AI models we use, what data is sent to them, and how outputs are generated and stored.

Lifecycle

Data Retention & Deletion

How long we keep your data, backup schedules, and how to request deletion.

Security

Encryption

Encryption standards in transit and at rest for all data, files, and credentials.

Vendors

Subprocessors

A complete list of vendors we rely on to deliver CaseProof, with their location and compliance certifications.

Access

Access Controls

Authentication, row-level security, session management, and how we prevent unauthorized data access.

Operations

Incident Response

How we detect, triage, and communicate security incidents, and how to report a vulnerability.

Legal

DPA & GDPR

Data Processing Agreements, GDPR roles, CCPA commitments, and how to submit data subject requests.

Quick Access

Need a specific diligence artifact?

Use these shortcuts for vendor review, privacy review, or contractual diligence.

Security, privacy, or DPA questions can be sent to info@thewaldrepcompany.com.

Subprocessors

Review the vendor list, locations, and referenced security posture.

DPA & GDPR

Understand processor terms, privacy rights handling, and request workflow.

Privacy Policy

See the full public privacy policy that maps to the trust materials.