Verdictia ← Back to site
Legal

Privacy Policy

Last updated: May 3, 2026

1. Controller

Verdictia Inc. (“Verdictia”, “we”, “us”) is responsible for personal information collected through verdictia.com and related services. For privacy questions, contact contact@verdictia.com.

2. Information collected

We may collect contact information, technical and usage information needed to operate, secure, diagnose and improve the service, and contract-related documents submitted or shared as part of the analysis service.

3. Purposes

Information is used to respond to demo or pilot requests, provide and improve contract analysis, secure the platform, and comply with applicable legal obligations in Quebec and Canada.

4. Cookies and similar technologies

Verdictia does not use advertising cookies, advertising trackers or tracking technologies for commercial profiling.

The Verdictia application does use a cookie that is strictly necessary for authentication and session security. This technical cookie is used in particular to securely renew a session and is not used for advertising purposes.

The application may also use browser local storage or session storage for necessary or functional elements, such as the temporary access token, display language, interface state or certain session-related messages. These elements are not used for advertising profiling.

5. Contracts and AI models

Contract documents submitted to Verdictia are not used to train, fine-tune or improve artificial intelligence models. They are processed only to provide the requested analysis.

6. Hosting and data location

Application data and contract storage are hosted in Canada. AI inference is controlled through AWS Bedrock, with policies configurable to client requirements. Certain AI inference operations may be processed outside Quebec or Canada by enterprise cloud service providers, depending on the approved models and profiles and in accordance with applicable agreements.

7. Recipients

We do not sell personal information. Information may be shared with technical service providers operating under confidentiality obligations, strictly for service delivery.

8. Retention

We retain personal information only for as long as necessary for the purposes for which it was collected, including providing the service, managing the user relationship, securing the platform, complying with legal obligations and resolving disputes.

When information is no longer required, we delete it, securely destroy it or anonymize it in accordance with applicable law.

Contract documents, analyses and associated data are retained for the duration of the client organization's use of the service, unless deletion is requested, the account is closed, or a written agreement provides otherwise.

When a client requests deletion of its workspace, Verdictia deletes from active application systems the associated users, contracts, contract versions, reference files, comments and analysis outputs, product feedback tied to the client, and related semantic index entries. Storage objects linked to documents and reference files are deleted with a bounded retry mechanism for temporary failures.

When a user is deleted, Verdictia deletes that user's own items, including analyses, documents, reference files, product feedback, sessions, private criteria and related semantic index entries. Shared criteria created by that user may be retained without personal attribution where needed to preserve the client's workspace.

Certain technical data, security logs and metadata-only telemetry may be retained for up to twelve (12) months where reasonably necessary for security, diagnostics, operational audit, AI cost tracking, abuse prevention, compliance, protection of Verdictia's rights, backup management, or where permitted or required by law. These logs and telemetry must not include raw contracts, full prompts, full AI responses, secrets or authentication tokens.

9. Your rights

Subject to applicable law, you may request access, correction, deletion, withdrawal of consent or file a complaint with the Commission d’accès à l’information du Québec. To exercise rights: contact@verdictia.com.

10. Security

Verdictia applies appropriate technical and organizational safeguards, including encryption in transit, encryption at rest, access controls and security reviews.

11. Changes

This policy may be updated. Material changes will be communicated to active users or posted on this page with an updated effective date.

12. Contact

Person responsible for the protection of personal information:
Abdesselam Belkhiri, President, Verdictia Inc.
contact@verdictia.com
Verdictia Inc. · Montreal, Quebec, Canada