Privacy Policy

Case Chronology is committed to protecting the privacy and security of information processed through our platform.

1. Overview

This Privacy Policy describes how Case Chronology ("Company," "we," "our," or "us") collects, uses, stores, and protects information when you use our platform and services ("Services").

2. Scope and Roles

Case Chronology operates as a service provider (data processor) for customer data. Customers control the data they upload and manage within the platform. We process such data solely on behalf of customers and in accordance with their instructions.

3. Information We Collect

Customer Data: Customers may upload or input data into the platform, including case-related information, documents, and contact data. Case Chronology does not control the content of this data and processes it only to provide the Services.

Account Information: We collect limited information such as name, email address, account credentials, and billing-related details necessary to manage user accounts.

Technical and Usage Data: We may collect information such as IP address, device type, browser type, and system usage logs to operate, secure, and improve the Services.

4. How We Use Information

We use collected information to provide, operate, and maintain the Services; authenticate users; ensure system security; respond to support requests; and comply with legal obligations.

We do not sell personal data or use customer data for advertising or marketing purposes.

5. Data Sharing and Disclosure

We do not share personal data with third parties except as necessary to provide the Services, comply with legal obligations, or follow customer instructions.

This includes the use of trusted service providers such as Amazon Web Services (AWS) and Google Workspace, which are subject to appropriate contractual, security, and compliance safeguards.

6. Data Security

We implement administrative, technical, and organizational safeguards to protect data, including encryption in transit and at rest, access controls based on least privilege, multi-factor authentication, and monitoring of system activity.

While we take reasonable measures to protect data, no system can be guaranteed to be completely secure.

7. Data Retention and Deletion

Case Chronology retains data only for as long as necessary to provide the Services and fulfill contractual, legal, and operational obligations.

Customer Data: Customer data is retained for the duration of the customer’s use of the Services and is deleted or made inaccessible upon customer request or termination of the service, in accordance with contractual terms.

Operational and Security Data: System logs and operational data are retained for a limited period (typically up to 12 months) to support security monitoring, troubleshooting, and compliance requirements.

Backups: Backup data is retained for a limited rolling period and is automatically overwritten or deleted in accordance with internal retention schedules.

Deletion Practices: Data is securely deleted or anonymized when no longer required, using industry-standard methods to prevent unauthorized recovery. Deletion is performed in accordance with internal procedures and may occur within a reasonable period following request or termination. Residual data may persist in backups for a limited period but is not actively processed and is deleted in the normal course of backup rotation.

8. Customer Control and Data Subject Rights

Customers can access, modify, or delete their data directly through the platform or by contacting support. Case Chronology supports customers in fulfilling applicable data protection obligations where required.

If Case Chronology receives a data subject request directly, it will be reviewed and, where applicable, forwarded to the relevant customer or handled in accordance with applicable legal obligations.

9. Cookies and Analytics

We use limited cookies and similar technologies to maintain sessions and improve performance. We may use analytics tools to understand system usage; these tools collect aggregated, non-identifying information.

10. Third-Party Services

Our Services rely on third-party providers such as Amazon Web Services (AWS) and Google Workspace. These providers process data in accordance with their own privacy policies and applicable security and compliance standards.

11. Children’s Privacy

The Services are not intended for use by individuals under the age of 13, and we do not knowingly collect personal information from children.

12. International Data Transfers

Data may be processed in jurisdictions where our service providers operate. Appropriate safeguards are implemented to protect data during such transfers.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted within the Services or on our website.

14. Contact Information

If you have any questions regarding this Privacy Policy, please contact us at support@casechronology.com.