Privacy Policy

Draft for review — this text has not yet been approved by legal counsel and is not a published policy.

Hartia (“we”, “us”) provides document automation software for legal firms. This policy explains what data we handle, in what role, and what choices you have.

Two kinds of data

• Account data— your firm's name, login email, branding assets, service catalog and prices, billing details. For this data we are the controller.
• Client data — personal data your firm enters to produce documents (names, passport details, addresses, family composition). Your firm is the controller; we act strictly as a processor on your instructions. We never use client data for anything except generating your documents.

Where data lives

• Cloud plan: data is stored on infrastructure located in the European Union, encrypted in transit and at rest.
• On-premise plan: all data — including the database and generated documents — is stored on hardware physically located in your office. Nothing is sent to our servers.

What we don't do

• We do not sell or share personal data with third parties for marketing.
• We do not train AI models on your client data.
• We do not access your data except for support you explicitly request.

Retention & deletion

Account data is kept while your subscription is active and deleted within 30 days of a deletion request after cancellation. Client data on the Cloud plan is deleted with your account; on the On-premise plan it never leaves your control in the first place.

Your rights

Under the GDPR you may request access, correction, export, or deletion of your personal data. Write to [email protected] and we will respond within 30 days.

Contact

Questions about this policy: [email protected].