LineCite

Security & Compliance

LineCite is architected for the sensitive nature of medical and legal records. We maintain rigorous standards for data isolation and tenant boundaries.

Data Isolation

  • Tenant-level logical separation for all case data.
  • Isolated processing containers for every extraction job.
  • Strict IAM policies and least-privilege access controls.
  • No cross-tenant data leakage or shared cache.

Encryption & Transit

  • AES-256 encryption at rest for all storage volumes.
  • TLS 1.3 enforced for all data in transit.
  • Per-tenant encryption keys for sensitive fields.
  • Secure, hardened cloud infrastructure (AWS/GCP).

Data Policies

  • No customer data is used to train shared models.
  • Configurable data retention windows per tenant.
  • Permanent data erasure upon request or deletion.
  • Comprehensive audit logging for all data access.

Compliance

  • SOC2 Type II (In Progress) and audit ready.
  • HIPAA Business Associate Agreements (BAAs) available.
  • GDPR and CCPA compliant data handling.
  • Regular third-party security audits and penetration tests.

Subprocessors

We maintain a curated list of subprocessors who meet our high security standards. A full list is available upon request.

Request List

Data Residency

By default, all data is stored and processed within the United States. Regional processing is available for enterprise customers.

US-EAST-1 Default

Audit Logging

Every action taken within the platform is logged, including data access, modifications, and export generation events.

Full Audit History