Security

Built to go beyond IT review

ContractsAI operates within enterprise-grade security controls, supporting procurement diligence, compliance review, and internal governance processes.
Data Ownership & Model Use
Your contracts remain fully under your control. ContractsAI operates within your data boundaries - not outside them.
Customer data is never used to train public or shared models
No cross-customer data commingling
Data is isolated to your organization
You retain ownership and access governance
Infrastructure & Encryption
Security is embedded at the infrastructure layer. Designed to meet legal, IT, and procurement scrutiny.
Encryption in transit (TLS) and at rest
Role-based access controls (RBAC)
Granular permissioning by user and team
Detailed audit logging across system activity
Environment Isolation & Access Controls
ContractsAI supports enterprise-grade access management. Access is governed, logged, and reviewable.
Customer data logically isolated
SSO support (SAML / OIDC)
Controlled admin access
Change management processes in place
Compliance & Audit Readiness
ContractsAI maintains documented security controls and policies. Built to support IT security questionnaires and vendor assessments.
Security policies and procedures documented
Monitoring and logging across environments
Ongoing audit scope expansion
Security documentation available during evaluation
Common Questions
What AI models do you use?
arrow down
ContractsAI uses industry leadings models from providers such as OpenAI, Anthropic, Inception, and Google Gemini.
Can I use my own model instead of your models?
arrow down
Absolutely! Our enterprise and global customers can use their own models with BYO keys.
Does your AI model train on our data?
arrow down
No. ContractsAI does not use customer data for any LLM model training.
How can I know the extraction is accurate?
arrow down
We have strict controls and evaluation algorithms in place that ensure high levels of accuracy (>99%) when extracting data from documents in real time
Can you relate the contracts into families automatically?
arrow down
Yes. ContractsAI automatically groups related contracts together. Additionally, the platform also identifies the relationships between contracts automatically (e.g.: amendments, related contracts, etc.) and tags the metadata as such.
Are you SOC2 approved?
arrow down
Yes. ContractsAI is SOC2 and SOC3 certified. Please reach out to hello@contracts.ai if you'd like a copy of our SOC2 certification
The Future of Contract Search is Here.
Test with your Contracts
Test with your Contracts
See It Live
See It Live
Built with love and care in Silicon Valley, USA
SOC 2 and SOC 3 certified
Company
AboutContactPrivacyTerms
Legal
GDPRCCPAHIPAA
Support
hello@contracts.ai
© 2026 Contracts AI, Inc. All rights reserved.
Contracts.ai provides technology, not legal services, and its AI generated output is not legal advice, and may contain errors and misstatements or may be incomplete.  Use of Contracts.ai platform does not create an attorney-client relationship. You should consult a qualified attorney for legal advice regarding your specific situation.

DISCLAIMER: All logos and trademarks appearing on this website are the property of their respective owners. Their use is for informational purposes only and does not constitute an endorsement, sponsorship, or affiliation.