Security & Confidentiality

Built for legal workflows. Designed with firm trust in mind.

Plain-English answers on how CaseClock handles voice data, time entries, and client information — for lawyers, billing admins, and firm decision-makers.

✓Lawyer review before anything syncs or exports
✓Encrypted in transit and at rest
✓Voice recordings not used to train AI models
✓Client data not used to train AI models

Voice and AI handling

How your voice recordings are processed

When you speak a time entry, CaseClock securely transmits your audio to Microsoft Azure for processing. The recording is used to produce a structured draft — nothing else.

Transmitted for transcription only

When you record, your audio is securely transmitted to Microsoft Azure for processing. CaseClock uses Azure OpenAI — Microsoft's enterprise AI service — to produce a structured draft time entry from your voice input.

Not used to train AI models

Data processed via Azure OpenAI is not shared with OpenAI and is not used to train AI models. Your recordings are processed solely to produce your draft time entry.

Retained per our privacy policy

Audio recordings and transcripts are retained in accordance with our privacy policy. You can request deletion of your recordings at any time by contacting legal@caseclock.ai.

Lawyer controls

Nothing is billed until you approve it

Lawyer review is built into the core workflow — not an optional step. Every entry CaseClock produces is a draft. You decide what goes out.

You review every entry before it leaves

CaseClock produces a draft entry from your voice recording. You see it, edit it if needed, and approve it before it syncs to Clio or exports via CSV. Nothing moves without your explicit sign-off.

Encrypted in transit and at rest

Your data is encrypted during transfer and in storage.

Actions logged for review

Key events are recorded for accountability, supporting your firm's audit and oversight requirements.

Infrastructure and data handling

Where your data lives

CaseClock is built on Microsoft Azure infrastructure, with jurisdiction-aware deployment for Canadian and US firms.

Microsoft Azure infrastructure

CaseClock stores audio files and processes AI tasks through Microsoft Azure infrastructure, including Azure Blob Storage and Azure OpenAI services. Azure provides enterprise data protection commitments for all data processed through its services.

Canadian and US data residency

CaseClock supports both Canadian and US deployment contexts. Your data stays in your jurisdiction.

Security Questions

Only you can see your time entries in CaseClock. Entries are drafts until you review and approve them. After approval, they sync to your billing system or are exported via CSV — the same access path as your current workflow. CaseClock does not make your entries visible to other users, firms, or third parties.

When you record, your audio is securely transmitted to Microsoft Azure for processing. CaseClock uses Azure OpenAI to transcribe the recording into a draft time entry. Data processed via Azure OpenAI is not shared with OpenAI and is not used to train AI models. Audio recordings and transcripts are retained in accordance with our privacy policy.

CaseClock does not currently hold SOC 2 certification. If compliance certification is a specific requirement for your firm, please schedule a demo so we can discuss your evaluation criteria and current controls directly.

Responsible Disclosure

Found a potential security issue? We take responsible disclosure seriously.

View our Security Policy and Responsible Disclosure program →

Ready to put CaseClock to work? See CaseClock features or start your free trial.

For context on how legal billing operations intersect with data handling requirements, read our billing operations vs time tracking guide.

Have specific security or compliance questions?

Schedule a demo to walk through CaseClock’s workflow, data handling, and what to expect for your firm’s specific requirements.

Start Free Trial