Security
Providing enterprise-grade data protection is core to our mission at Briefcase. We use industry-leading safeguards, never share data between clients or firms, and never sell data or allow third parties to train models on it.
Briefcase partners with leading AI labs such as OpenAI and Anthropic to provide access to the latest advancements in large language models (LLMs).
When necessary, data is securely processed with our trusted LLM partners.
Our LLM partners do not store or use your data to train their models.
This is contractually enforced through zero data retention (ZDR) agreements we have in place, available upon request.
Briefcase is fully GDPR-compliant and hosts all data exclusively on European servers, which are SOC 2 and HIPAA compliant.
All data is encrypted at rest using industry-standard AES-256 encryption.
In transit, data is secured using SSL to protect against interception or tampering.
Briefcase ensures strict separation of customer data and enforces strong access controls at every level.
All practice and client data is securely partitioned and logically isolated at the database level to prevent cross-access between users. There is no data sharing between practices, accounts, or user environments.
Multi-factor authentication (MFA) is required for all user accounts ensuring account proteciton in the case of password breaches.
