Back to home

Protecting Your Data is Table Stakes

Securing your personal and client data is paramount for your firm. We've built William from the ground up with enterprise-grade security as a core principle—not an afterthought.

End-to-End Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption. Your sensitive billing data is protected at every step.

Enterprise SSO

Single sign-on integration with SAML 2.0 and OAuth 2.0 providers. Manage your users with the identity systems and policies you already have in place.

Secure Infrastructure

Our infrastructure runs on enterprise-grade cloud providers with multiple availability zones, ensuring high availability and disaster recovery.

Access Controls

Granular role-based access controls ensure that users only have access to the data and features they need. All access is logged and auditable.

Firm-Specific AI Models

Your AI models are deployed on a firm-by-firm basis. Your data is never mixed with other firms or used to train models for other customers.

Data Residency

Choose where your data is stored. We offer data residency options in multiple regions to meet your compliance requirements.

Secure by Design

We leverage best-in-class infrastructure and services to provide enterprise-grade security. Our platform runs continuously across multiple physically isolated data centers to ensure high availability and resilience.

  • Performance is consistent, even during usage spikes
  • Data is encrypted at rest and in transit
  • Data is stored within a private network
  • Regular backups with point-in-time recovery
  • Continuous monitoring and threat detection
99.9%

Uptime SLA

24/7

Monitoring

AES-256

Encryption

Frequently Asked Questions

How is my data protected?

All data is encrypted using AES-256 encryption at rest and TLS 1.3 in transit. We implement strict access controls, regular security audits, and maintain comprehensive audit logs.

Do you have compliance certifications?

We are currently pursuing SOC 2 Type I certification, with completion expected in 2025. Our infrastructure providers maintain ISO 27001, ISO 27017, and ISO 27018 certifications.

Can I control which applications William tracks?

Yes, users have full control over which applications and data sources are tracked. You can configure tracking preferences at both the firm and individual user level.

How do you handle attorney-client privilege?

William is designed with attorney-client privilege in mind. We never access the content of privileged communications. Our AI processes metadata to generate time entries without exposing confidential information.

What happens to my data if I cancel?

Upon cancellation, you can export all your data within 30 days. After that period, we securely delete all your data within 90 days, unless retention is required by law.

Do you perform security testing?

Yes, we conduct regular penetration testing by independent security firms, automated vulnerability scanning, and continuous security monitoring.

Have Security Questions?

Our security team is available to discuss your specific requirements and answer any questions about how we protect your data.

Contact Our Security Team