Privacy Policy & Terms of Use

Effective Date: January 24, 2026

1. Introduction

Welcome to Dockase ("we," "our," or "us"). We are committed to protecting the privacy and security of your data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our legal practice management software and AI services ("Amicus 1.0").

By using Dockase, you agree to the collection and use of information in accordance with this policy. We adhere strictly to the Nigeria Data Protection Act (NDPA) 2023, maintain compliance with the General Data Protection Regulation (GDPR), and follow international security standards including ISO 27001 and soc 2 Type 2.

2. Data Collection & Usage

We collect the following types of information to provide our services:

  • Personal Information: Name, email address, phone number, and professional credentials required for account creation.
  • Client Data: Case files, evidence documents, and legal briefs uploaded by you ("Client Data"). You retain full ownership of all Client Data.
  • Usage Data: Information on how the service is accessed and used, including device information and access logs, for security auditing.

3. AI Processing (Amicus 1.0)

How Amicus 1.0 handles your data:

  • Ephemeral Processing: Data sent to our AI models (Amicus 1.0) is processed for the sole purpose of generating your request (e.g., drafting a document, researching case law).
  • No Training: We adhere to a strict Zero-Retention Policy for AI processing. Your confidential client data is NOT used to train our AI models.
  • Encryption: All data transmitted to AI endpoints is encrypted in transit using TLS 1.3.

4. Data Security & Compliance

We implement defense-in-depth security measures to protect your data:

SOC 2 Type 2

Our infrastructure aligns with SOC 2 Type 2 criteria for Security, Availability, and Confidentiality.

ISO 27001

We follow ISO 27001 information security management standards.

HIPAA

Relevant health data is handled in compliance with HIPAA privacy and security rules.

PCI-DSS

Payment processing is handled by PCI-DSS compliant providers (Paystack/Stripe). We do not store card details.

5. Your Rights

Under the NDPA and GDPR, you have the right to:

  • Access your personal data.
  • Rectify inaccurate data.
  • Request deletion of your data ("Right to be Forgotten").
  • Restrict processing of your data.
  • Data portability.

To exercise these rights, please contact our Data Protection Officer at privacy@dockase.com.

Disclaimer: Dockase provides software for legal professionals. We are not a law firm and do not provide legal advice. The content generated by Amicus 1.0 is for assistance purposes and should be reviewed by a qualified attorney.