Privacy Policy

1. Information We Collect

Firmfy collects information you provide directly when you create an account, configure your law firm's workspace, or communicate with our support team. This includes your name, email address, firm name, billing information, and any data you enter into the platform such as case details, client records, financial information, practice management platform data (tasks and calendar events synced from Clio, GoHighLevel, Practice Panther, and MyCase), employee performance data (scorecards, review assessments), client satisfaction survey responses, and daily check-in content.

We also automatically collect certain technical information when you use our services, including your IP address, browser type, device identifiers, pages visited, and usage patterns. This data helps us understand how our platform is used and allows us to improve the experience for all users.

2. How We Use Your Information

We use the information we collect to provide, maintain, and improve our services. This includes processing transactions, sending service-related communications, providing customer support, and personalizing your experience within the platform.

We may also use your information to send you product updates, marketing communications, and other information that may be of interest to you. You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or adjusting your notification preferences in your account settings.

3. Data Sharing and Disclosure

Firmfy does not sell your personal information to third parties. We may share your information with trusted service providers who assist us in operating our platform, such as cloud hosting providers, payment processors, and analytics services. These providers are contractually obligated to protect your data and may only use it for the purposes we specify.

We may disclose your information if required by law, regulation, or legal process, or if we believe disclosure is necessary to protect the rights, property, or safety of Firmfy, our users, or the public. In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4. Data Security

We take the security of your data seriously. Firmfy employs industry-standard security measures, including 256-bit AES encryption for data at rest, TLS 1.3 for data in transit, role-based access controls, and regular security audits. Our infrastructure is hosted on SOC 2 Type II certified data centers in the United States.

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We encourage you to use strong passwords, enable two-factor authentication, and promptly report any suspected unauthorized access to your account.

5. Your Rights and Choices

Depending on your jurisdiction, you may have the right to access, correct, delete, or export your personal data. You may also have the right to object to or restrict certain processing of your information. To exercise any of these rights, please contact us at privacy@firmfy.com.

If you are a resident of the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR), including the right to data portability and the right to lodge a complaint with a supervisory authority. California residents have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected and the right to request deletion.

6. Cookies and Tracking

Firmfy uses cookies and similar tracking technologies to enhance your experience, analyze usage patterns, and deliver targeted content. Essential cookies are required for the platform to function properly and cannot be disabled. Analytics cookies help us understand how you interact with our services.

You can manage your cookie preferences through your browser settings or through the cookie consent banner displayed when you first visit our website. Please note that disabling certain cookies may affect the functionality of our platform.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal, regulatory, or legitimate business purposes. Backups containing your data are purged on a rolling 90-day cycle.

8. Children's Privacy

Firmfy is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information promptly. If you believe a child has provided us with their data, please contact us at privacy@firmfy.com.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this policy periodically. Continued use of our services after changes are posted constitutes acceptance of the revised policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at privacy@firmfy.com. We will respond to your inquiry within 30 days.