Legal

Privacy Policy

Effective 2026-05-03

Legal Tuning LLC ("Legal Tuning," "we," or "us") respects your privacy. This Privacy Policy explains what information we collect about you when you visit https://legaltuning.com, purchase our services, or otherwise interact with us, how we use that information, and the choices you have.

This policy is written to comply with the California Consumer Privacy Act ("CCPA") and the California Privacy Rights Act ("CPRA"), and is structured to be informative for residents of all U.S. states. If you are in the European Economic Area or the United Kingdom, additional rights under the GDPR/UK GDPR may apply; contact privacy@legaltuning.com for details.

1. Information we collect

Information you provide

  • Member intake: shop legal name, principal place of business, phone, email, website, primary state of operation, owner name, owner email, owner phone, and the enrollment tier elected.
  • Inquiries: name, email, shop name, state, the content of the inquiry, and timestamp.
  • Payment information: billing details required to process the transaction. Card numbers and CVVs are processed by our PCI-compliant payment processor (Stripe) and are not stored on our infrastructure.

Information collected through routine operation

  • Server logs: IP address, user agent, referer, timestamp, and the pages requested. Used solely to operate, secure, and improve the service.
  • Cookies: a limited set of strictly necessary cookies is used for session management and security. We do not employ advertising cookies, and we do not employ third-party analytics that profile individual users.

2. Purposes of use

  • To deliver the services purchased, including the preparation and issuance of customized compliance instruments.
  • To issue and verify the member registration number.
  • To publish a public Member Registry entry limited to shop legal name, city and state, area of practice, registration number, enrollment tier, issuance and expiration dates, and current status.
  • To respond to inquiries and provide member support.
  • To send transactional correspondence regarding the purchase, registration, renewal, or account.
  • To detect, investigate, and prevent fraud, abuse, or violations of these Terms.
  • To comply with legal obligations.

3. Practices not engaged in

  • Legal Tuning LLC does not sell personal information.
  • Legal Tuning LLC does not share personal information with advertisers.
  • Legal Tuning LLC does not publish owner email, owner phone, or principal street address (beyond city and state) in the public Member Registry.
  • Legal Tuning LLC does not deploy third-party analytics that fingerprint individual users.

4. How we share information

We share information only with:

  • Service providers that operate our infrastructure under contractual confidentiality and security obligations: Stripe (payments), Vercel (hosting), Supabase (database and authentication), Resend (transactional email), and Cloudflare (DNS and edge security).
  • Legal authorities when required by valid legal process or to protect rights, property, or safety. We will challenge overbroad requests where appropriate.
  • Successors in the event of a merger, acquisition, or asset sale, subject to confidentiality protections at least as protective as those in this policy.

5. Data retention

We retain customer records for the duration of the business relationship plus seven (7) years thereafter for legal, tax, and audit purposes. Documents generated for you remain available in your account for the duration of your active license. Server logs are retained for 90 days unless required for active investigations.

6. Your rights

Depending on your state of residence, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate personal information.
  • Delete your personal information, subject to legal retention requirements.
  • Opt out of any sale or sharing for cross-context behavioral advertising (we do neither).
  • Limit use of sensitive personal information (we collect minimal sensitive data).
  • Non-discrimination for exercising your rights.

To exercise these rights, email privacy@legaltuning.com. We respond within 45 days as required by CCPA/CPRA.

7. Security

We use industry-standard security practices: HTTPS for all traffic; SOC 2 Type 2 certified infrastructure providers; encryption of data at rest and in transit; principle-of-least-privilege access controls; and ongoing monitoring. No system is perfectly secure, and we cannot guarantee absolute security.

8. Children

Our services are not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will delete it.

9. Changes to this policy

We may update this policy. Material changes will be communicated by updating the "Effective" date above and, where appropriate, notifying you directly. Continued use of our services after changes constitutes acceptance.

10. Contact

Privacy questions or rights requests: privacy@legaltuning.com. Mailing address: Legal Tuning LLC, [Legal Entity Address — update before launch].