Causio
FeaturesPricingUse CasesIntegrationsBlogContact
Causio

AI-powered case management built for European law firms. GDPR-native from day one.

Made in Europe 🇪🇺
LinkedInTwitter

Product

  • Features
  • Pricing
  • Integrations
  • Security
  • Changelog

Use Cases

  • Civil Litigation
  • Family Law
  • Criminal Defense
  • Corporate Law
  • Immigration Law

Resources

  • Blog
  • Help Center
  • API Docs
  • Status

Legal

  • Privacy Policy
  • Terms of Service
  • DPA

Company

  • About
  • Contact
  • Careers
  • Referral Program

© 2026 Causio. All rights reserved.

|||
PrivacyTermsDPA

Privacy Policy

Last updated: March 2026

1. Introduction

Causio (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered legal case management platform. We are fully compliant with the General Data Protection Regulation (GDPR) and other applicable European data protection laws.

2. Data We Collect

We collect the following categories of personal data:

  • Account Information: Name, email address, organization name, role, and authentication credentials (managed via Clerk).
  • Case Data: Case details, documents, evidence, notes, and communications uploaded or created within the platform.
  • Voice Data: Audio recordings from AI intake interviews, processed via OpenAI Whisper API for transcription.
  • Usage Data: Feature usage, AI credit consumption, session logs, and platform interaction analytics.
  • Payment Data: Billing information processed securely via Stripe. We do not store credit card numbers.

3. How We Use Your Data

  • To provide and maintain the Causio platform and its features.
  • To process AI analysis, voice transcription, and evidence scoring.
  • To manage your account, subscriptions, and billing.
  • To send transactional notifications (case updates, credit alerts).
  • To improve our platform through anonymized usage analytics.
  • To comply with legal obligations and enforce our terms of service.

4. Data Processing & AI

Your case data is processed by AI models (Anthropic Claude API) solely for the purpose of providing AI-powered features such as intake analysis, evidence scoring, and case chat. We do not use your data to train AI models. All AI processing is subject to our data processing agreements with sub-processors.

5. Data Storage & Security

Data is stored on servers within the European Union. We implement field-level encryption for sensitive data, use AWS KMS for key management, and maintain comprehensive audit trails. Access is controlled through role-based permissions with organization-level data isolation.

6. Your Rights (GDPR)

Under the GDPR, you have the following rights:

  • Access: Request a copy of all personal data we hold about you.
  • Rectification: Request correction of inaccurate personal data.
  • Erasure:Request deletion of your personal data (“right to be forgotten”).
  • Portability: Request your data in a structured, machine-readable format.
  • Restriction: Request limitation of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Case data is retained according to legal requirements applicable to your jurisdiction. You may request deletion at any time via Settings or by contacting us.

8. Sub-Processors

We use the following sub-processors: Convex (database), Clerk (authentication), Stripe (payments), Anthropic (AI processing), OpenAI (voice transcription and embeddings), Composio (integrations), and Resend (email notifications). Each sub-processor is bound by data processing agreements ensuring GDPR compliance.

9. Contact

For privacy-related inquiries, data access requests, or to exercise your GDPR rights, contact our Data Protection Officer at privacy@causio.eu.