Data Security

Thousands of lawyers and dozens of bar associations trust Community.lawyer to collect, store, and transfer sensitive data. We protect our platform, and the apps you build on our platform, using modern, industry-standard security practices similar to those used by companies like Dropbox and Google. We also provide you with fine-grained controls over the data processed by the apps you build.

Collecting Data

Any data your app collects is encrypted in transit from the end-user's machine to our servers via Transport Layer Security (TLS).

Storing Data

You data is stored using Amazon Web Services (AWS). AWS infrastructure is designed to meet the requirements of the most security-sensitive organizations in the world. AWS data centers are managed in accordance with leading data security standards, including SOC 1 - 3, PCI DSS Level 1, and ISO 9001 / ISO 27001.

Control Your Data

By default, any data your app collects is stored on our platform so that your users can save their progress and you can view responses to your app. You can disable these features on a per-app basis. If you disable these features, the data your apps collect is encrypted and we do not store it. This means if you want to preserve your data you must send it from your app to an outside database, which can be accomplished via webhooks and other integrations.

Webhook Security

Webhooks allow you to send data from your app to an outside database (or other web apps). Community.lawyer apps can send these requests over Hypertext Transfer Protocol Secure (HTTPS), which means data is encrypted in transfer.