Security & Trust

Encryption & Data Security

All data transmitted to and from EvenStance is secured using industry-standard 256-bit AES encryption in transit and at rest. Our platform is built on enterprise-grade infrastructure designed to protect your sensitive information from unauthorised access, disclosure, or alteration.

Data Storage

Your personal data, case details, and uploaded evidence are stored securely within UK-based data centres, fully compliant with national data sovereignty and protection regulations. Access to production environments is strictly controlled and monitored.

AI Processing & Privacy

EvenStance uses advanced AI models to assist with case management and legal drafting. Before any case information is processed by our AI engines, all Personally Identifiable Information (PII) is automatically detected and aggressively redacted. We use commercial AI APIs (Google Gemini, Anthropic Claude, OpenAI GPT-4o). All personally identifiable information is redacted server-side before any data reaches a provider. Under each provider's commercial API terms, inputs are not used to train public models.

GDPR Compliance

We are fully committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. You have the right to access, rectify, or erase your personal data at any time. We only collect the information absolutely necessary to support your dispute resolution process.

EvenStance Ltd is registered with the Information Commissioner's Office (ICO) under registration reference ZC146340 (registered 13 May 2026, expires 12 May 2027). You can verify our registration at ico.org.uk.

Contact Security

If you have any questions about our security practices, or if you believe you have discovered a security vulnerability, please contact our security team immediately at:
legal@evenstance.com