LegalDraft

Privacy Policy

Last Updated: March 6, 2026

The Short Version

Your document data stays in your browser. We do not see, store, or transmit the personal information you enter into our document builder. Some features (such as analytics and hosting) may involve minimal server-side processing, but your document content is never part of that. Read the full policy below for details.

Table of Contents

1. Overview

This Privacy Policy describes how LegalDraft ("we," "us," or "our") collects, uses, and protects information when you use our website and document-building tools (collectively, the "Service"). We are committed to transparency and to safeguarding your privacy.

Effective Date: March 6, 2026. Last Updated: March 6, 2026.

2. Information We Collect

A) Information You Provide Directly

At this time, LegalDraft does not require user accounts, so we do not collect names, email addresses, or other identifying information through registration. If we introduce accounts in the future, we may collect:

  • Account information: Name and email address for account creation and communication.
  • Billing information: If paid features are introduced, payment data will be processed by a PCI-compliant third-party payment processor. We will not store full payment card details on our servers.
  • E-signature data: If you use our e-signature feature, your signature image, signing timestamp, and IP address are generated and stored client-side on your device. This data is not transmitted to our servers.

B) Information Collected Automatically

  • Analytics data: Page views, document types accessed, general geographic region (country/state level), and device/browser type. This data is aggregated and does not personally identify you.
  • Log data: IP addresses, timestamps, referring URLs, and pages visited. This is standard web-server data used for security and debugging.
  • Cookies: We use functional cookies only. See Section 6 for full details.

C) Information We Do NOT Collect

  • Personal details entered in the document builder: Names, addresses, financial information, or any other data you type into our forms is processed entirely in your browser. We never see, transmit, or store your document content.
  • We do not sell personal information to any third party, for any purpose, ever.

3. How We Use Information

We use the limited information we collect for the following purposes:

  • Analytics: To improve the Service, understand usage patterns, identify popular document types, and fix bugs.
  • Log data: For security monitoring, fraud prevention, and debugging technical issues.
  • Cookies: To enable core website functionality and remember your preferences.
  • Contact information: To respond to inquiries you send us directly.

We do NOT use your information for:

  • Building targeted advertising profiles
  • Selling data to data brokers
  • Cross-site behavioral tracking

4. Client-Side Processing

Our document builder is a client-side application. All processing happens in your browser:

  • All form data is processed in your browser using JavaScript.
  • PDF and Word document generation occurs locally on your device.
  • No document content is transmitted to our servers or any third party.
  • Saved progress uses your browser's IndexedDB storage, which resides on your device only.
  • E-signature rendering and capture happen entirely client-side.

5. Browser Storage (IndexedDB / LocalStorage)

If you use the "Save Progress" feature, your document data is stored in your browser's IndexedDB or LocalStorage. Important points about this data:

  • It remains on your device only.
  • It is not accessible to LegalDraft or any third party.
  • It is not synced across devices or browsers.
  • You can clear it at any time through your browser's settings (e.g., "Clear Site Data" or "Clear Browsing Data").
  • We are not responsible for data loss resulting from clearing browser storage, device failure, or any other cause.

6. Cookies & Tracking

Essential Cookies

These cookies are necessary for the website to function and cannot be disabled. They handle session management, security (CSRF protection), and user preferences.

Analytics Cookies

We use a privacy-focused analytics provider to collect aggregated, anonymized usage data. You may opt out of analytics cookies at any time via our cookie consent mechanism.

What We Do Not Use

  • No advertising or retargeting cookies.
  • No cross-site tracking pixels or beacons.

Cookie Consent

When you first visit our site, you will be presented with a cookie consent mechanism that allows you to accept or decline non-essential cookies.

Cookie Reference

NamePurposeDurationType
_ld_sessionSession management & CSRF protectionSessionEssential
_ld_prefsUser preferences (theme, cookie consent)1 yearEssential
_ld_analyticsAnonymized usage analytics26 monthsAnalytics

7. Third-Party Services

We rely on a limited number of third-party services to operate the Service. Each receives only the minimum data necessary:

  • Hosting & CDN — Vercel: Serves our website and assets. Vercel processes standard request data (IP address, request headers). See Vercel Privacy Policy.
  • Analytics — Privacy-focused analytics provider: Receives aggregated, anonymized page-view and usage data. Does not receive document content or personally identifiable information.
  • Payment Processor (future): If paid features are introduced, a PCI-compliant payment processor will handle billing data. This section will be updated with the specific provider and a link to their privacy policy at that time.

8. Advertising

LegalDraft does not currently display advertising on the platform. If advertising is introduced in the future, this section will be updated with details about the ad networks used, the data they collect, and instructions for opting out.

9. Data Security

We take reasonable measures to protect the limited data we handle:

  • All connections to our website are encrypted via HTTPS/TLS.
  • We use secure, professionally managed hosting infrastructure.
  • Personal document data is not stored on our servers, which eliminates the largest category of risk.

No method of transmission over the internet or method of electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. We are not liable for unauthorized access resulting from your own actions, such as using the Service on a shared or compromised device.

10. Data Retention

  • Document content: Not retained by us. Exists only client-side on your device.
  • Analytics data: Retained for up to 26 months, then automatically deleted.
  • Server logs: Retained for 90 days, then automatically purged.
  • Contact inquiries: Retained for 12 months after the last communication, then deleted.
  • Account data (if accounts are added in the future): Retained until you delete your account, plus a 30-day grace period for recovery, after which it is permanently deleted.

11. Your Rights

A) All Users

Regardless of where you are located, you have the right to:

  • Know what information we collect and how it is used.
  • Request deletion of any personal data we hold about you.
  • Opt out of analytics cookies via our cookie consent mechanism.
  • Contact us at any time with questions about your privacy.

B) California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and the California Privacy Rights Act:

  • Right to Know: You may request the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of personal information we hold.
  • Right to Opt Out of Sale: We do not sell your personal information. There is nothing to opt out of.
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

Categories of information collected: Identifiers (IP address), internet activity information (pages visited, browser type), and geolocation data (country/state level).

To submit a request, email support@logicfusion.net. We will verify your identity before processing any request.

C) European Users (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the following applies:

  • Legal Basis: We process analytics data under legitimate interest (improving the Service). We process non-essential cookies based on your consent.
  • Your Rights: You have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data.
  • Consent: You may withdraw consent for non-essential cookies at any time via our cookie consent mechanism.
  • Supervisory Authority: You have the right to lodge a complaint with your local data protection supervisory authority.
  • Data Controller: LegalDraft is the data controller for the purposes of the GDPR.

D) Other US State Privacy Laws

Residents of Virginia (VCDPA), Colorado (CPA), and Connecticut (CTDPA) have similar rights to access, delete, and opt out of data processing. To exercise these rights, contact us at support@logicfusion.net.

12. Children's Privacy

Our Service is not directed to individuals under the age of 18. Legal documents generally require legal capacity, which minors do not possess. We do not knowingly collect personal information from anyone under 18.

If we discover that we have inadvertently collected information from a child under 18, we will promptly delete it. Parents or guardians who believe their child has provided information to us may contact us at support@logicfusion.net to request deletion.

13. International Data Transfers

LegalDraft is operated in the United States. If you access the Service from outside the United States, please be aware that your information (such as IP address and log data) may be transferred to, stored, and processed in the United States. By using the Service, you consent to this transfer. United States data protection laws may differ from those in your jurisdiction.

14. Do Not Track Signals

Our Service does not currently respond to "Do Not Track" (DNT) browser signals. This is because we do not engage in cross-site tracking of our users. Our analytics are limited to aggregated, anonymized usage data on our own site.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will highlight them prominently on the Service (for example, via a banner notification). Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

Previous versions of this Privacy Policy are available upon request. Contact us at support@logicfusion.net to obtain a prior version.

16. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: support@logicfusion.net