Your clients' information deserves the highest level of protection. ClientShield is built from the ground up with security and compliance at its core.
Track A strips all personally identifiable information before documents leave your environment. Names, SSNs, addresses, DOBs, case numbers, and phone numbers are replaced with reversible tokens.
Tracks B–D run Claude on Amazon Bedrock inside a private VPC. No shared infrastructure, no public API endpoints, no data commingling. Your data stays in your secure AWS environment.
Your documents are never used to train AI models. Amazon Bedrock provides a contractual guarantee that your data is not used for model improvement. Full data isolation.
AES-256 encryption at rest for all stored data. TLS 1.3 in transit. DynamoDB server-side encryption. S3 bucket encryption with customer-managed KMS keys.
Cognito JWT authentication with tenant-scoped claims. DynamoDB partition isolation ensures no cross-tenant data access. Bridge/Pool pattern for compute efficiency with data separation.
Annual third-party audits of our security controls, availability, processing integrity, confidentiality, and privacy. AWS infrastructure is independently SOC 2 certified.
Documents are processed through our Presidio-based PII detection pipeline. All personally identifiable information is replaced with reversible tokens before you export. You can then safely use the anonymized document with any external AI tool. No sensitive data ever leaves your control.
Documents are sent directly to Claude on Amazon Bedrock through a private VPC endpoint. There is no public internet traversal. Bedrock processes your request and returns results within the same secure environment. No anonymization is required because the AI itself runs in your private cloud.
Legal research queries to CourtListener contain no client PII — they are general legal questions about case law, statutes, and citations. Research results are combined with your documents only within your secure environment.
We're happy to discuss our security architecture in detail. Reach out to our security team.
Contact Security Team