Security
Smartnote is built for confidentiality, controlled access, and operational safeguards that fit legal practice rather than consumer app defaults.
We design Smartnote for least-privilege access, strong separation between product layers, and disciplined handling of meeting notes, tasks, and legal matter context.
Security decisions are made with the assumption that file notes and follow-up actions may be business-critical, client-sensitive, and subject to internal review.
Administrative access is intended to be tightly restricted and reviewed, with production access granted only where it is necessary to operate or support the service.
Customer access, permissions, and future single sign-on controls should be configured to reflect how firms actually work across partners, lawyers, and support staff.
We aim to maintain logged operational changes, controlled deployments, and practical monitoring so issues are visible and recoverable rather than hidden until clients are affected.
Third-party services are selected conservatively, with preference for providers that can support strong security posture, documented processes, and contractual safeguards.
If you believe you have identified a security issue, please contact hello@smartnote.ai with the relevant details, reproduction steps, and any material needed to assess impact.
We ask that security research be conducted lawfully, in good faith, and without attempting to access data that does not belong to you.
Join the Smartnote waitlist to get product updates, beta access timing, and rollout conversations for your practice.
