Privacy at Closeout
Your firm's data stays yours.
Your firm's data and your clients' settlement information stay yours. Here's exactly how we handle them.
Last updated: April 29, 2026
You own your data.
Every record you create in Closeout is yours. Export it any time. Delete it any time.
No selling, no sharing.
We never sell, rent, or share your firm's data with advertisers or marketers. Period.
Tenant isolation.
Each firm's data is scoped behind a firmId boundary, enforced in the database itself, not just the application.
Data
What we collect.
Account information
Your name, work email, role, and the firm you belong to. Used to authenticate you and route audit-log entries.
Case and lien data
The closeouts, liens, settlements, and disbursements you create. The core of the product, stored with strict tenant scoping.
Documents
Files you upload (payoff letters, EOBs, settlement statements). Stored in encrypted S3 buckets. AI extraction reads document text to populate fields you confirm before saving.
Audit logs
Every mutation in the system writes a log entry: who, what, when, from which IP. Required by ABA Rule 1.15 and your state bar. Retained for compliance.
Operational data
Login timestamps, device and browser, IP for security monitoring. Standard cookies and local-storage tokens for keeping you logged in.
Boundaries
What we don't do.
- We don't sell, rent, or share your data with advertisers, data brokers, or marketers.
- We don't train third-party or public AI models on your client data.
- We don't access your firm's IOLTA or trust account. Closeout never connects to your trust banking.
- We don't share your firm's specific case data with other firms. Cross-firm learning happens only on de-identified, aggregated data — never on identifiable case records.
Aggregated data
How the platform learns.
Closeout's intelligence gets sharper with every case the platform handles. Here's how we learn from the work without compromising the firms or clients behind it.
Aggregated insights for the whole platform. Closeout may use de-identified and aggregated data drawn from how firms across the platform work to improve our products and develop insights about how settlements actually move. Plan language patterns, carrier response rates, average reduction outcomes, and similar. The goal is a sharper system for every firm.
Stripped of identifiers, by construction. All such data is stripped of personally identifiable information before it's used. Aggregated insights cannot be traced back to any individual, client, case, or law firm. Other firms will never see your records, your clients, or any indication that your firm contributed.
Never sold. Never shared. Closeout does not sell identifiable client or case data. We don't share identifiable case records with other firms, advertisers, data brokers, or any third party. Your firm's specific records, your clients' identities, and the contents of your documents stay scoped to your firm.
Vendors
Sub-processors.
Closeout uses a small set of vetted infrastructure providers. Each is bound by a Data Processing Agreement and may process customer data only as needed to deliver the service.
| Provider | Purpose | Region |
|---|---|---|
| AWS | Hosting, database, file storage | us-east-1 |
| Anthropic | Document AI extraction (zero-retention) | US |
| SES | Transactional email (password reset, etc.) | US |
Rights
What you can ask us to do.
You can request access to, correction of, export of, or deletion of any data your firm has stored in Closeout. Email privacy@usecloseout.com and we'll respond within 30 days.
Audit-log entries can't be deleted — they're retained as required for ABA Rule 1.15 compliance. They're scoped to your firm and never shared with third parties.
Questions about privacy?
Email privacy@usecloseout.com or use the contact form.