Privacy & Confidentiality

Napoleon is designed for legal workflows where confidentiality is critical. This page explains how information is handled and protected in the current production setup.

Access Controls

• Authenticated sign-in required to access the application.
• Protected routes redirect unauthenticated users to login.
• Analysis API rejects unauthenticated requests.

Encryption

• HTTPS/TLS protects traffic between users and the platform.
• Sessions are managed securely via Supabase auth cookies.
• No public endpoint exposes uploaded matter content.

Document Handling

• Uploaded files are processed transiently for analysis.
• The app does not persist source files as permanent stored records by default.
• Input is size-limited and validated prior to processing.

AI Processing

• Matter content is sent securely to a configured AI processing provider for analysis.
• Outputs are returned as structured legal briefing content.
• Access remains restricted to authenticated users in this workspace.

Professional Use Notice

Napoleon is an internal legal support tool. Generated outputs should be reviewed by a qualified solicitor before reliance, filing, or external distribution.