Privacy, data use, and member rights

Account and registration details, organization information, member-submitted anonymized case data, activity logs, password reset requests, and essential browser state such as theme preference and authenticated session cookies.

We process personal data to review memberships, secure the dashboard, operate protected legal intelligence features, maintain audit trails, prevent abuse, and respond to security or compliance events.

Data is stored in the Legal Dashboard Supabase project, Supabase Auth, private Supabase Storage buckets, and the hosted Railway application environment required to operate the dashboard. Authorized ADN administrators and system operators process the data for membership review, support, and security monitoring.

ADN relies on legitimate interests for platform security and fraud prevention, contract or pre-contract steps for membership evaluation and access management, and consent for the privacy and cookie notices accepted during registration.

Users in the EU and UK may request access, correction, deletion, portability, and objection to certain types of processing. Requests are handled through ADN administration or legal counsel before public launch.

California users may request to know what data is collected, request correction or deletion, and ask about the categories of information disclosed. ADN does not sell or share personal information for cross-context behavioral advertising in the current production workflow.

The current MVP does not send member content to AI providers or marketing platforms, and no advertising or behavioral tracking tools are enabled in the application itself. If future product work adds AI processing or third-party APIs that receive user content, the notice and consent text should be updated before launch.

Data is retained only as long as necessary for member operations, legal review, audit logging, and security monitoring. Sensitive actions are protected through authentication, signed session cookies, validation, request throttling, and access controls.

Members can request deletion or export from the account page using the privacy action buttons. The ADN team then records, reviews, and processes the request according to the operational workflow and any final counsel guidance before production launch. Correction and export requests are handled through the same privacy channel.

Data rights and privacy requests should be routed through ADN administration or legal counsel before production launch. The current MVP includes the notice and consent flow, but final legal text should be reviewed by counsel before public deployment.