CitationClerk

Privacy

Last updated: May 2026

CitationClerk is a tool for checking the citations and quotations in a legal brief against public sources. To do that we need a copy of the brief, your email address, and a payment method. This page explains what we keep, for how long, who else sees it, and our deletion policy.

What we store

  • The PDF you upload, and the text we extract from it.
  • The per-citation report we produce.
  • Your email address (collected by Stripe Checkout) so we can send the result link.
  • A Stripe customer identifier and a card fingerprint, so each customer is limited to 3 free briefs.
  • Server logs of request timing and errors. No brief contents are logged. We may review the files (the same files deleted at the end of the 30-day window) to diagnose failures and improve verification quality.

How long we keep it

30 days from submission. After that the uploaded PDF, the extracted text, the per-citation report, and the submission record are all deleted by an automated job. Stripe keeps its own payment records on its own retention schedule. See Stripe's privacy policy.

Who else sees it

  • Stripe handles payment. We pass them your email and card details; we never see the card number. See Stripe's privacy policy.
  • Postmark delivers the result-link email. They see your email address and the message body. See Postmark's privacy policy.

Beyond those two, nobody else. We don't sell your data. We don't share it with marketers, advertisers, or AI training pipelines.

No model training

CitationClerk doesn't use language models to evaluate your brief, and we don't use your brief to train any model. The pipeline is rules, indices, and retrieval against public sources; every verdict is reproducible from the same public data.

Cookies

No tracking or advertising cookies. The site uses a session cookie only during the submission flow (to carry your brief from upload to checkout to processing). Stripe sets its own cookies during Checkout. See their policy.

Analytics

We count page views with Plausible, a cookieless, EU-hosted analytics service, so we can see which pages people find useful. It sets no cookies and collects no personal information.

On the home page, blog, and other public pages, Plausible runs in your browser. Pages that carry a private link in their address, such as a report or the upload step after checkout, load no in-browser analytics script. When a report is opened, our own server records an anonymous count that a report was viewed. For the public example reports we feature, that count includes the example's name, so we can see which ones get shared. For a private report we send to a customer, it records only that a report was viewed, and never its address, title, or contents. The brief itself is never sent to the analytics service.

Security

We use industry-standard security best practices to protect uploaded files and customer data. If you handle highly sensitive matters and need a formal compliance statement, please email us first.

Contact

Questions: support@citationclerk.com.