DefamationLock®
Privacy Policy
Last updated: June 29, 2026
This Privacy Policy explains what personal information DefamationLock® ('DLOCK', 'we', 'us') collects, how we use it, who we share it with, and the choices you have. It applies to our website, AI agents, NDA ON DEMAND™, the Professional Services Network, and all related Services.
1. Information We Collect
You provide directly
- Account & identity: name, email, phone, mailing address, date of birth (where required for verification), DLOCK Code™.
- Assessment responses, situation descriptions, and content you upload as evidence.
- Documents you send through NDA ON DEMAND™, including signer information.
- Payment details (processed by PCI-compliant processors — we do not store full card numbers).
- Provider profile, licensing, and verification documents (Providers only).
Collected automatically
- Device, browser, IP address, language, and approximate location.
- Usage data: pages visited, features used, session timestamps, referral URLs.
- Cookies and similar technologies (see our Cookie Policy).
- AI Agent interactions: text and voice inputs, transcripts, and audio responses.
From third parties
- Monitoring sources, public records, search engines, and social platforms (for reputation monitoring).
- Identity-verification, fraud-prevention, and background-check providers (for Members and Providers).
- Payment processors and analytics providers.
2. How We Use Information
- Deliver, operate, and improve the Services, including AI agent responses and case matching.
- Detect, monitor, and report content related to your reputation.
- Generate, sign, store, and verify NDA ON DEMAND™ documents with their DLOCK Code™.
- Match Members with Providers and route leads.
- Process payments and manage subscriptions, renewals, and refunds.
- Prevent fraud, abuse, and security incidents, and enforce our Terms.
- Communicate with you — service notices, alerts, and (with consent) marketing.
- Comply with legal obligations, including responding to lawful requests.
3. Legal Bases (EEA / UK)
Where the GDPR applies, we process personal data based on: performance of a contract (delivering Services you request), legitimate interests (security, product improvement, fraud prevention), consent (marketing, certain cookies, voice AI), and legal obligation.
4. Sharing
We do not sell your personal information. We share it only with:
- Service providers acting on our behalf (hosting, payments, email, analytics, AI inference, identity verification) under contracts requiring confidentiality and security.
- Independent Providers you choose to engage — only the information needed to deliver the requested service.
- Legal & safety: when required by law, subpoena, or to protect rights, property, or safety.
- Business transfers: in connection with a merger, acquisition, or asset sale, with notice where required.
5. AI & Voice Processing
Voice inputs and chat messages submitted to the AI Agent are transmitted to third-party AI providers (e.g., Lovable AI Gateway and its upstream model providers) solely to generate a response. We do not knowingly use your personal AI inputs to train foundation models.
6. Data Retention
We retain personal data for as long as your account is active and as needed to provide the Services, comply with law, resolve disputes, and enforce agreements. NDA ON DEMAND™ documents and DLOCK Code™ vault entries are retained for the period stated in your plan. You may request deletion subject to legal-retention requirements.
7. Security
We use administrative, technical, and physical safeguards — encryption in transit, encryption at rest for sensitive vault data, access controls, audit logs, and least-privilege role design. No system is 100% secure; you are responsible for safeguarding your account credentials.
8. Your Rights
Depending on where you live, you may have rights to access, correct, delete, port, or restrict processing of your personal data, and to object to certain uses or withdraw consent. California residents (CCPA/CPRA), EEA/UK residents (GDPR), and residents of other privacy jurisdictions can exercise these rights through the Request Center (routes to support@defamationlock.com). We will not discriminate against you for exercising your rights.
9. Children
The Services are not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided data, contact us and we will delete it.
10. International Transfers
We may process and store information in the United States and other countries. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers.
11. Changes
We will post updates to this Privacy Policy with a new "Last updated" date and notify you of material changes.
12. Contact
DefamationLock, Inc., Privacy Office — submit through the Request Center (support@defamationlock.com).