Is Clio safe with your data?
Clio
Strong disclosure · medium confidence
Clio earns an A (70/100) because it discloses its data practices clearly.
#10
of 211 apps ranked
70
score · Legal avg 46
+24
vs category average
Clio's privacy policy discloses training opt-out for generalized LLMs, user-owned outputs with limited provider reuse, comprehensive GDPR-aligned rights (access, deletion, portability, correction, objection), explicit data-sharing disclosures, 90-day post-termination deletion, named security controls and breach notification, but with vague retention periods and weak synthetic-output marking.
What Clio's privacy policy and terms of service say about your data
Sublicensable content licence
Provider rights over your content are described as "non-exclusive, worldwide, sublicensable, royalty-free," a broad licence that weakens your control over what you submit
Strong data-subject rights
Names concrete access, deletion, portability, correction, and objection rights with mechanisms, alongside a 90-day post-termination deletion window
Training opt-out, not opt-in
You can opt out of training on generalized LLMs, but the default is to train, and the opt-out is conditional rather than absolute
Boilerplate encryption
Names security controls and a 72-hour breach-notification commitment, but describes data only as "encrypted" with no named standard such as AES-256
What the policy is silent or vague on
- Not stated: a way to opt out of training
- Not stated: whether training use differs by plan
- Not stated: shorter retention for AI conversation logs
- Not stated: automated decisions and a human-review path
Clio privacy rating
Details
- Category
- Legal
- Modalities
- text
- Processes biometrics
- No
- Policy last updated
- 2026-02-11
- Region scored
- Global / US-default
- Last assessed
- 2026-07-08
Documents examined
Other legal apps
Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.