SafeIdea
Get SafeIdea

AI compliance for legal professionals.

Use the cloud AI of your choice while keeping confidential client information out of the cloud. Your judgment, executable.

Get SafeIdea See how it works
Works with
Claude ChatGPT Gemini Harvey CoCounsel Vincent Legora Irys Intapp

Why now

AI needs data. Clients need confidentiality.

Rule 1.6 has no AI exception. The duty of confidentiality has implied since 2012 that confidential client information stays under the attorney's physical control. ABA Formal Opinion 512 made it explicit.

Cloud AI needs data to reason. It does not need client names, party identifiers, account numbers, or deal terms. Pasting them in is voluntary liability. Once that data leaves the attorney's machine, no contract brings it back. No vendor agreement defeats a subpoena, a discovery order, a data breach, or a unilateral change in the provider's terms.

As AI adoption compounds, so does the volume of confidential client data sitting in systems the attorney does not control. Every prompt is new exposure.

U.S. v. Heppner and the Wang ruling, citing In re OpenAI, show how the conflict is surfacing. Heppner held that AI-assisted documents processed through a cloud AI the attorney does not control are not protected by privilege. Wang held that AI chat logs are discoverable, compelling the provider to produce them. These rulings may be revised, distinguished, or overturned. The structural problem they reveal will not be.

The best defense is that the data was never there in the first place. SafeIdea keeps confidential information on the attorney's machine.

Standard

ABA Model Rule 1.6

The duty of confidentiality.

Confidential client information stays under the attorney's control.

Standard

ABA Formal Opinion 512

The operative legal standard for AI use in client work.

"Reasonable efforts" to prevent unauthorized disclosure when AI is involved in legal services.

Case

U.S. v. Heppner

2026 WL 436479 (S.D.N.Y. Feb. 17, 2026).

AI-assisted legal work prepared through a third-party cloud is not protected by privilege. The court further held that submitting privileged material to consumer AI may waive privilege over the underlying attorney-client communications.

Case

The Wang ruling

In re OpenAI, Inc., Copyright Infringement Litig., 2026 WL 21676 (S.D.N.Y. Jan. 5, 2026).

AI providers can be compelled to produce chat logs. The logs sit at the provider, discoverable by any party with standing, in litigation the firm has nothing to do with.

Read the full FAQ

The compliance system

Compliance from first prompt to matter close.

Local by architecture. The Masking Engine, patent pending, runs on the attorney's machine. Confidential information in prompts and documents is masked and never reaches the cloud. Your choice of AI platform gets only what it needs to be useful.

Standardized firmwide. The Firm Masking Dictionary applies uniform confidentiality rules across every attorney and every matter.

Proven on demand. Compliance Receipts are signed, chained, tamper-evident, and attorney-owned. Produced for regulators, clients, malpractice carriers, or a court.

Compliance, operational.

COMPLIANCE FLOW ARCHITECTURE01DROP TO SAFEIDEAAttorney drops the documentinto SafeIdea.02MASKDetects confidentialentities automatically;consults the MaskingDictionaries forfirmwide compliance.Attorney reviews andapproves.03DROP TO AIDrag the masked contentinto the AI of choice.The original neverleaves.04DROP BACKMasked entities arerestored.05EMITAn Audited SessionRecord is created. ACompliance Receiptis produced on demandfor clients, the bar,malpractice carriers,and courts.[ SAFEIDEA · ATTORNEY'S MACHINE · LOCAL ]DOCUMENTORIGINAL STAYS ON MACHINEMASKING ENGINEPATENT PENDING · LOCALDETECT · REVIEW · APPROVEMASKING DICTIONARIESMATTER-LEVEL · LOCAL CROSS-MATTER · FIRMMASKED OUTPUTREADY FOR ANY CLOUD AI[ CLOUD · OUTSIDE BOUNDARY ]ANY CLOUD AIATTORNEY'S CHOICEFIRM-AUTHORIZED OR PERSONALDROP TO AIRESPONSE · MASKEDRESTOREDNAMES UNMASKED LOCALLYORIGINAL NEVER LEFTAUDITED SESSION RECORDIMMUTABLE · PER TURNCOMPLIANCE RECEIPTSIGNED · CRYPTOGRAPHICALLY CHAINEDTAMPER-EVIDENT · ATTORNEY-OWNED · ON DEMAND

The compliance system

Compliance from first prompt to matter close.

Local by architecture. SafeIdea's patent-pending Masking Engine runs on the attorney's machine.

Standardized firmwide. The Firm Masking Dictionary applies uniform confidentiality rules.

Proven on demand. Compliance Receipts: signed, cryptographically chained, tamper-evident, attorney-owned.

Compliance flow architecture

  1. 01Drop to SafeIdea
    Local · Attorney's machine

    Attorney drops the document into SafeIdea. The original stays on the machine.

  2. 02Mask
    Local · Masking engine

    Detects confidential entities automatically; consults the Masking Dictionaries for firmwide compliance. Attorney reviews and approves.

    Masking Dictionaries

    • Matter-level
    • Local cross-matter
    • Firm
  3. 03Drop to AI
    Cross-boundary · Masked only

    Drag the masked content into the AI of choice. The original never leaves.

  4. 04Drop back
    Local · Restored on machine

    Real names are restored locally. The original never left.

  5. 05Emit
    Local · Attorney-owned

    An Audited Session Record is created. A Compliance Receipt is produced on demand for clients, the bar, malpractice carriers, and courts.

    Signed · Chained · Tamper-evident

Use the AI you already pay for, compliantly.

Claude ChatGPT Gemini Harvey CoCounsel Vincent Legora Irys Intapp

Local architecture

Compliance built in, not bolted on.

The question a managing partner needs to answer for regulators, clients, malpractice carriers, or a court is not whether the cloud provider behaves. It is whether confidential client information ever left the attorney's physical control.

Every other approach in the market answers that question with a contract. SafeIdea answers it with architecture. Documents stay on the attorney's machine. The Masking Engine identifies confidential entities, presents them for attorney review and approval, and only then permits transmission to the AI of choice. The original never leaves.

"Reasonable efforts" under Rule 1.6 and ABA Formal Opinion 512 are what the standard actually requires. A documented local-first workflow with attorney-approved review, plus a Compliance Receipt produced on demand by the attorney for any matter, is a documented "reasonable efforts" workflow under Rule 1.6 and Formal Opinion 512.

Read the FAQ on architecture

Today's Approach

Contract holds, until it doesn't.

Contractual

Confidential Data PRIVACY POLICY no-training clause [ CLOUD ] CLOUD AI All content received as input

The original document leaves the attorney's machine. Confidentiality depends on someone else's policies holding under subpoena, breach, or a unilateral terms change.

Compliant Approach

The original never leaves the attorney's control.

Architectural Control

[ SAFEIDEA · LOCAL ] Confidential Data MASKING ENGINE Masked Data [ CLOUD ] CLOUD AI Masked Content

Documents stay on the attorney's machine. The Masking Engine identifies confidential entities, the attorney reviews and approves, and only masked content is transmitted. There is nothing to subpoena.

A fourth option

The attorney's judgment, executable.

Lawyers face untenable AI choices today. Use the powerful AI and accept the confidentiality risk. Decide not to use AI on this matter and accept the productivity cost. Or do what careful attorneys actually do today: manually scrub sensitive information from the document, run the cleaned version through the AI, and reassemble the result by hand. A productivity sink that defeats the purpose of using AI in the first place.

SafeIdea offers a fourth option. Use any AI you choose on only the parts of the matter that do not contain sensitive client information, while keeping the parts that do under local firm control. Masking is automated by the Masking Engine, attorney-reviewed, and reversible. The reassembly happens on your machine, not in your head.

You know that names and party identifiers carry confidentiality weight while contract amounts and clause structure usually do not. SafeIdea makes that judgment executable.

Firm-wide compliance, made operational

Your firm's confidentiality rules are not a memo. They are operational.

SafeIdea's Firm Masking Dictionary holds the canonical entities your firm has decided will never reach a cloud AI. The dictionary is built from your firm's existing systems: practice management, document management, CRM, and any seed source you choose.

The dictionary applies uniformly to every prompt across every attorney. Attorneys can augment with matter-specific rules as needed.

Compliance Receipts are attorney-owned artifacts, produced on demand: signed, chained, tamper-evident records for managing partners, ethics counsel, malpractice carriers, regulators, clients, or court. The confidentiality boundary holds inside the firm by design.

What used to be policy is now infrastructure.

See how Masking Dictionaries work

Three-scope Masking Dictionary

MATTER-LEVEL Per matter · created when a matter is opened LOCAL CROSS-MATTER Per attorney · the attorney's terminal scope FIRM Built by the Indexer · distributed firmwide

Compliance Receipt

Produced on demand for clients, malpractice carriers and courts.

COMPLIANCE RECEIPT Matter 016 · Sequoia Drafting PRINCIPAL TIMESTAMP DICTIONARY ACTIONS MODEL attorney@firm.example 2026-05-15T14:22:03Z Firm v.42 · Matter 016 14 masks · 12 unmasks claude-3.5 SIGNED · CHAINED · TAMPER-EVIDENT PDF

Built with advisors

Rob Pressman (Bramson & Pressman; IP attorney and CLE faculty). Claire Wasserman (AIGP-certified; AI adoption for law firms).

Legal authorities

ABA Model Rule 1.6 · ABA Formal Opinion 512 · U.S. v. Heppner · the Wang ruling.

Meet the team

Make compliance operational.

Standardize confidentiality compliance across the firm, across any AI.

List $399/ seat / mo Standard pricing
Charter Customer $249/ seat / mo Locked for 12 months
Get SafeIdea

30-day money-back guarantee. No seat minimums.