We keep nothing. That is the product.
Strata is built so that, by design, there is nothing to subpoena. Your discovery is encrypted on upload, processed attorney-only, and erased the moment you download.
The five rules the system will not break.
Erased on download.
Every copy — the discovery you uploaded, the output you generated, and the working record — is permanently erased the instant you download. No residual files, no orphan indexes.
Encrypted end to end.
TLS 1.2/1.3 in transit and AES-256 at rest, scoped per matter. Strong access controls, least privilege, multi-factor authentication throughout.
Never trained on.
A contractual ban on training — ours or any provider's — on your case data. No opt-in, no bespoke-model backdoor. Your data is never used to improve a model.
Attorney-only access.
Licensed-attorney gating. Engineering and operations staff cannot read matter content. Every access is logged and attributable.
Built for privilege.
Structured to preserve attorney–client privilege and work product. Nothing is filed, sent, or shared until the supervising attorney says so.
What we keep — and what we don't.
| Data | Retained? | How long | Why |
|---|---|---|---|
| Discovery you upload | No | Erased on download | Processing only |
| Output you generate | No | Erased on download | Yours to keep; we don't |
| Matter content (the file itself) | Never | — | Zero retention by design |
| Account credentials | Yes | Until you close your account | Access & authentication |
| Billing records | Yes | As required by law / tax | Legal compliance |
| Security & audit logs | Metadata only | Rolling retention | Security & abuse prevention |
Matter content — the privileged file itself — is the one row marked never. That is the entire point.
Security architecture.
- Encryption. TLS 1.2/1.3 in transit; AES-256 at rest; keys scoped to the matter, not shared across customers.
- Access model. Role-based access, least privilege, multi-factor authentication. No engineering or operations access to matter content — ever.
- Isolation. Each matter is scoped to itself. Case data is never pooled, shared, or cross-referenced across customers.
- Hardened infrastructure. Runs on hardened commercial infrastructure following platform security best practices, with continuous monitoring and a defined incident-response process.
- Vulnerability disclosure. Security researchers can report issues responsibly to strata-legal@proton.me.
Compliance & certifications.
GDPR- and CCPA-aligned data practices. Contractual no-training commitment. Deletion-on-download. Vulnerability-disclosure contact. Encrypted in transit and at rest.
SOC 2 Type II. ISO/IEC 27001. We are pursuing independent attestation and will publish it when earned.
How your data is handled.
Case content is encrypted in transit and at rest, used only to produce your work product, and erased from our systems the moment you download. It is never used to train any model — ours or any processing provider's — under the contractual no-training terms we require of every system that touches it. Matter content is never pooled, shared, or cross-referenced across customers.
For security reasons, we do not publish the specific providers or architecture of our processing pipeline on a public page. The current sub-processor list is disclosed to engaged customers under NDA through our Data Processing Addendum.
Law enforcement & privilege.
By design, there is nothing to subpoena. We do not retain your discovery or output after download, and we hold no matter content that could be subject to a third-party request. Where we receive lawful legal process directed at account or billing records, we comply with the law and notify you wherever permitted. The privileged work product never resides with us long enough to be at risk.
Attorney–client confidentiality.
Strata is built to preserve attorney–client privilege and attorney work product. Its output is draft analytical material — not attorney work product until it is reviewed, adopted, and exercised over by the supervising attorney. Strata is a tool for licensed attorneys; it does not investigate, supply facts, or exercise legal judgment, and it is not legal advice. The attorney is responsible for all inputs and for verifying all output before any use. Strata makes no representation about any particular bar or ethics rule; the attorney's professional obligations are theirs alone.