Last updated: July 3, 2026
If you are evaluating Ghosts for a law firm or any organization that handles confidential material, this page answers the questions your vendor-diligence checklist asks: who can see your content, what happens to it, and how you verify what we say.
Nobody, by default. No Ghosts employee reviews your prompts, briefs, or drafts in the ordinary operation of the Service. There is no cross-tenant access: every workspace is isolated with per-tenant row-level security enforced in the database itself, not just in application code. If you ask support for help that requires looking at your content, access happens only with your permission, and it is logged.
Your content is never used to train AI models. That is our own policy, and it is also a contractual commitment from our AI providers: their commercial terms bar training on customer content.
"Anthropic may not train models on Customer Content," per the Anthropic Commercial Terms of Service.
Our embeddings provider's API terms likewise exclude customer data from training by default. The guarantee holds end to end, not just at our layer.
On the Law Firms plan, you set per-status retention windows from 24 hours to 1 year. When a window expires, the content is hard-deleted, including every revision, by an automated shredder that runs hourly. The audit log records only counts, never content. Deleted data is gone from production immediately and from encrypted backups within 30 days as those backups expire. One disclosed exception: if a law or court order requires us to retain specific data, we isolate it from further processing and delete it when the obligation ends.
Every legal-tier draft gets doubled fact-checking plus a claims scrub that blocks fabricated citations before a draft reaches you. The approval workflow means a human at your firm reviews every piece and holds editorial responsibility for what gets published. Nothing goes out on autopilot.
Everything on this page is backed by documents you can put in your vendor file: our Data Processing Addendum (applies automatically to paid workspaces), the public subprocessor list with 30 days' notice of changes, our Privacy Policy, and our Terms of Use.
Security questions, diligence questionnaires, or reports: [email protected].
SOC 2 certification is on our roadmap; we will publish the report here when it is complete.