WytheBETA

Wythe Intelligence — Privacy Policy (Beta)

Last updated: July 16, 2026

This Privacy Policy describes how Wythe Intelligence LLC("Wythe," "we," "us," or "our") collects, uses, and shares information about you when you access or use the Wythe legal-research platform and any related websites, applications, and APIs (collectively, the "Service").

This Policy is incorporated into and governed by our Terms of Service. Capitalized terms not defined here have the meaning given in the Terms of Service.

1. Scope

This Policy applies to information we collect about beta users and visitors to our Service. It does not apply to information about employees, contractors, or investors, which is handled separately.

The Service is offered to U.S.-based legal professionals as a research aid. It is not directed to children under 13, and we do not knowingly collect personal information from children.

2. Information We Collect

a. Information you provide

  • Account information. When you create an account (or accept an invitation), we collect your email address and any other identifiers you provide (such as your name, firm or organization, and role).
  • Authentication. You sign in with an email address and password, or with an emailed one-time link. Passwords are hashed by our authentication provider (Supabase); we never see or store your password in plaintext. Sign-up and password-reset requests are protected by a bot challenge and rate limits.
  • Queries and inputs. In ordinary use we do notstore the text of your searches, the filter values you apply, or which documents you open. We record only privacy-preserving usage metadata (described under “Information collected automatically” below). We capture the specific text of a search or the identity of a document onlywhen something goes wrong and you explicitly choose to send us the details (see “Diagnostics and error reports”).
  • Matter content (Wythe AI). If you use the Wythe AI workbench, we store the content you choose to put in a matter — uploaded files, converted text, your prompts and instructions, and the drafts and notes the Service produces for you. Matter content is stored in access-controlled systems, is visible only to your organization, and is processed as described in Section 4. We never use matter content to train models, and our AI providers are not permitted to either.
  • Feedback. Bug reports, suggestions, and other communications you send to us, whether by email or through our in-product Report a bug form. When you submit the in-product form, we also record the page or document you were viewing, your account email, and your browser and device information, so that we can reproduce and fix the issue.
  • Diagnostics and error reports.If a search or a document fails to load, we may ask whether to send a diagnostic report. Only if you choose to send it — either for that one report, or by opting in to send a category of errors automatically — do we transmit the content needed to reproduce the problem, such as the failing search terms or the document involved. You can change or withdraw the “always send” choice at any time from the “Diagnostic sharing” control in the app header.
  • Billing information. If we collect fees, we (or our payment processor) may collect billing contact details and payment method information. We do not store full payment-card numbers on our own servers.

b. Information collected automatically

  • Usage data. Privacy-preserving, content-free metadata about how the Service is used — for example, that a search ran, how long it took, how many results it returned, which advanced-search operator and filter types were used (never their values), and which features you used. This metadata never includes your search terms, your filter values, or the identities of the documents you view. We use it to measure performance, diagnose issues, and prioritize work.
  • Device and log data. IP address, browser type, operating system, referring URL, timestamps, and similar technical information that is recorded by our hosting and edge providers as part of normal operation.
  • Cookies and similar technologies. We use strictly necessary cookies and local storage to keep you signed in (via Supabase authentication) and to remember basic preferences. We do not use third-party advertising cookies, pixels, or cross-site tracking. We do not run third-party analytics such as Google Analytics, Mixpanel, or similar.

c. Information from third parties

  • Service providers. We may receive limited information about you from the third parties that operate our infrastructure (for example, delivery status from our email provider).

3. How We Use Information

We use information for the following purposes:

  • Operating the Service. Authenticating you, maintaining your account, delivering search results, displaying documents, and otherwise providing the Service.
  • Improving the Service. Diagnosing bugs, measuring performance, improving search relevance and OCR quality, identifying which features are useful, and prioritizing roadmap work.
  • Communications. Sending sign-in and account emails, product updates and announcements, and responses to your support requests.
  • Security and abuse prevention. Detecting, investigating, and preventing fraudulent, unauthorized, or illegal activity, and enforcing our Terms of Service.
  • Legal compliance. Complying with applicable laws, regulations, subpoenas, and lawful government requests, and protecting our rights and the rights of others.

We do notsell your personal information, and we do not "share" your personal information for cross-context behavioral advertising.

4. AI and Machine-Learning Processing

Public corpus processing. We use third-party language-model and embedding providers — Anthropic, Mistral, Google, and Voyage — to process public FEC source documents into searchable text, citations, and embeddings. This processing operates on public-record material, not on your matter content.

Wythe AI matter content. When you run a Wythe AI skill or chat, the matter content involved (your prompt, relevant matter files, and instructions) is sent to Anthropic for drafting and research, and uploaded scanned documents may be sent to Mistral for OCR conversion. These calls are made under commercial API terms: the providers do not use your content to train their models, and content is retained only transiently to fulfill your request. We are pursuing formal zero-data-retention terms with our AI providers. Matter content is never shared with advertising or analytics services.

Optional web and case-law search. Web and case-law search is off by default. If you turn it on for a matter or chat, the model composes search queries from your conversation and sends them to Anthropic's web-search tool (results provided by Brave Search, an Anthropic subprocessor) and to CourtListener(the Free Law Project's public case-law database). Your uploaded documents are never sent to these search services — only the model-composed queries, which may reflect the substance of what you are researching. That is why the feature is opt-in.

5. How We Share Information

We share information only as described below.

a. Service providers (processors)

We share information with vendors who process data on our behalf under appropriate confidentiality and data-protection terms, including:

  • Supabase — database, authentication, and row-level security.
  • Vercel — frontend hosting and edge delivery.
  • DigitalOcean Spaces — storage of PDFs, uploaded matter files, and processed assets.
  • Cloudflare — DNS and edge protection.
  • Anthropic and Mistral — language-model and OCR APIs used for Wythe AI matter processing and for public-corpus processing (see Section 4).
  • Google and Voyage — additional model and embedding APIs used only for public-corpus processing (never matter content).
  • Brave Search (via Anthropic) and CourtListener — receive model-composed search queries only when you enable optional web or case-law search (see Section 4).
  • Email delivery provider — sign-in links, account emails, and support communications.
  • Stripe — payment processing and subscription billing. Full payment-card numbers are handled by Stripe and are not stored on our servers.

We do not authorize these providers to use your personal information for their own marketing purposes.

b. Legal and safety

We may disclose information if we believe in good faith that disclosure is required by law, legal process, or a lawful government request, or is necessary to protect the rights, property, or safety of Wythe, our users, or others.

c. Business transfers

If Wythe is involved in a merger, acquisition, financing, reorganization, or sale of assets, your information may be transferred as part of that transaction, subject to standard confidentiality terms.

d. With your consent

We may share information for any other purpose disclosed to you and with your consent.

6. Data Retention

We retain account information for as long as your account is active, and for a reasonable period afterward to comply with legal obligations, resolve disputes, and enforce our agreements. Usage logs and request logs are retained for a shorter period sufficient for security, debugging, and performance work — typically not longer than 24 months. We may keep aggregated, de-identified data indefinitely.

Matter content deletion.When you delete a Wythe AI matter, it is marked for deletion immediately, becomes inaccessible in the product, and is permanently deleted from our production systems — files, converted text, drafts, notes, and run records — after a 7-day grace window. Residual copies may persist in our database provider's encrypted backups for up to 35 days after deletion before rolling off; backups are not accessible through the product and are used only for disaster recovery.

You may ask us to delete your account at any time using the contact details in Section 11. We will delete your account and its associated content within 30 days of a verified request, except where we are required to retain specific records to meet a legal obligation.

7. Security

We use commercially reasonable administrative, technical, and physical safeguards designed to protect information from unauthorized access, loss, misuse, or alteration. These include encryption in transit (HTTPS), encryption at rest where supported by our providers, role-based access controls, hashed-password and one-time-link authentication, and row-level security in our database.

No system is perfectly secure. You are responsible for keeping your account credentials confidential and for notifying us promptly of any suspected unauthorized access.

8. Your Rights and Choices

Depending on where you reside, you may have rights with respect to your personal information. For example, residents of certain U.S. states (such as California, Colorado, Connecticut, Virginia, and others) may have rights to access, correct, delete, or obtain a copy of personal information we hold about them, and to opt out of certain processing.

To exercise these rights, contact us at info@wytheintelligence.com. We will respond consistent with applicable law. We will not discriminate against you for exercising any of these rights.

You can also:

  • Stop submitting queries or documents to the Service at any time.
  • Ask us to close your account.
  • Unsubscribe from non-essential email by replying to the email or using any unsubscribe mechanism we provide. Service-related emails (such as sign-in links and security notices) are not optional while you have an active account.

9. International Users

The Service is operated from and intended for use within the United States. If you access the Service from outside the United States, you understand that your information will be transferred to and processed in the United States (and possibly in other jurisdictions where our service providers operate). U.S. data-protection laws may differ from those in your country of residence.

10. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will use reasonable efforts to notify you (for example, by email or in-product notice) before the changes take effect. The "Last updated" date at the top reflects the most recent revision.

11. Contact

Questions, requests, or complaints about this Policy or your information? Email info@wytheintelligence.com.

Wythe Intelligence LLC
(Maryland, United States)