Privacy Policy
Your privacy and the confidentiality of your client information is our highest priority. This policy explains how we collect, use, and protect your data in compliance with California law and State Bar regulations.
Privacy At A Glance
Key principles that guide our data practices
We never sell your personal information or client data to third parties.
Your data is protected with TLS/SSL encryption, bcrypt password hashing, and Azure enterprise security.
Full compliance with California Consumer Privacy Act and State Bar ethical requirements.
Access, export, correct, or delete your information at any time through your account settings.
Table of Contents
This Privacy Policy describes how MindHYVE.ai™ ("we," "us," "our," or "Company") collects, uses, discloses, and protects information through the JustineAI PI platform (the "Platform" or "Service"). JustineAI PI is an AI-powered legal practice management platform designed specifically for California personal injury, workers' compensation, and medical-legal attorneys.
This Privacy Policy applies to all users of the Platform, including law firm administrators, attorneys, paralegals, and other authorized legal professionals.
California-Specific Notice
As a platform designed for California legal professionals handling sensitive client information, we implement enhanced privacy protections in compliance with the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), and California State Bar ethical rules regarding attorney-client privilege and confidentiality.
Effective Date: October 24, 2025
Last Updated: October 24, 2025
Version: 1.0
We use the information we collect for the following purposes:
Core Platform Services
- Create, maintain, and authenticate user accounts
- Manage case files, track deadlines, and maintain case workflows
- Store and organize documents securely
- Enable collaboration among firm team members
AI-Powered Features
- Generate California-compliant legal documents
- Analyze medical records and case data
- Provide case assessments and settlement valuations
- Process conversational AI intake
Important: AI processing is performed by MindHYVE.ai's Ava-Legal™ models within our Azure environment. Customer data is not used for model training per MindHYVE.ai's internal policy.
Analytics and Performance
- Track attorney productivity metrics and billable hours
- Monitor system performance and identify technical issues
- Maintain comprehensive audit logs for compliance
We implement comprehensive security measures to protect your information against unauthorized access, alteration, disclosure, or destruction.
Encryption
- • TLS/SSL encryption for all data transmission
- • bcrypt password hashing (10 salt rounds)
- • Encrypted OAuth tokens
- • Azure encryption at rest
Access Control
- • JWT authentication (7-day expiration)
- • Role-based access control (RBAC)
- • Multi-tenant data isolation
- • Failed login monitoring
Infrastructure
- • Microsoft Azure enterprise security
- • Automated scaling and monitoring
- • API rate limiting
- • CORS security configuration
Monitoring
- • Comprehensive audit logs
- • Real-time error logging
- • Security event tracking
- • Automated alerts
Data Breach Notification: In the event of a breach, we will notify affected users via email within 72 hours of discovery and notify the California Attorney General if required by Cal. Civ. Code § 1798.82.
We retain your information for as long as necessary to provide Platform services and fulfill the purposes described in this Privacy Policy.
Active Account Data
Retained indefinitely while your account is active. Audit logs retained for minimum 7 years for compliance.
Deleted Account Data
Upon account deletion request, we will delete or anonymize your personal information within 90 days.
- Backup systems: up to 180 days
- Legal obligations may require longer retention
Specific Data Types
California residents have specific rights regarding their personal information under CCPA/CPRA:
Right to Know
Request categories and specific pieces of personal information we have collected about you, sources, purposes, and third parties with whom we share.
Right to Delete
Request deletion of your personal information, subject to certain exceptions for legal compliance and security.
Right to Correct
Request correction of inaccurate personal information in your account.
Right to Non-Discrimination
We will not discriminate against you for exercising your CCPA rights (e.g., deny service, charge different prices).
How to Exercise Your Rights
To exercise your California privacy rights, you may:
- • Email us at: privacy@justineai.com
- • Log in to Settings → Privacy & Data (when implemented)
- • Response timing: We will respond within 45 days (extendable to 90 days if needed)
JustineAI PI is designed for use by attorneys and legal professionals. We recognize the critical importance of attorney-client privilege, attorney work product protection, and ethical duties of confidentiality.
Our Role
MindHYVE.ai™ acts as a technology service provider to law firms. We do not practice law, provide legal advice, represent clients, or have attorney-client relationships. We do not waive or compromise attorney-client privilege.
Your Ethical Responsibilities
- • Ensure your use complies with California State Bar rules
- • Obtain appropriate client consent to use cloud-based technology
- • Maintain confidentiality of client information
- • Supervise AI-generated content and exercise independent judgment
- • Do not delegate professional legal judgment to AI systems
- • Disclose AI use to clients and courts as required
California Rule 1.6 Compliance
Our security measures are designed to assist attorneys in fulfilling their ethical duty to protect client confidential information:
- • Industry-standard encryption
- • Multi-factor authentication capability
- • Role-based access controls
- • Comprehensive audit logging
- • Data isolation between law firms
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Contact Methods
Privacy Inquiries
privacy@justineai.comSecurity Issues
security@justineai.comGeneral Support
support@justineai.comMailing Address
MindHYVE.ai™
Attn: Privacy Officer - JustineAI PI
[Physical address to be inserted]
Response Time: We strive to respond to all privacy inquiries within 10 business days.
Policy Updates
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. For material changes, we will provide prominent notice (e.g., email notification or in-app alert) at least 30 days before changes take effect.