Security & Privacy

Last Updated: November 2025

Built for Attorney-Client Confidentiality

We understand that patent professionals value confidentiality. PatentSignal is designed with security and privacy as foundational principles.

Your Searches Are Private

We do not share or sell your activity data. Your search queries, patent analyses, and usage patterns are private and confidential.

  • We do not track your specific patent interests for advertising
  • We do not share your data with third parties for marketing purposes
  • Your analyses are accessible only to you (and your team, if on TEAM tier)

AI Model Training

CRITICAL: We do NOT train our AI models on your specific client data or search queries.

Our AI models are trained exclusively on:

  • Publicly available USPTO data
  • Public patent documents and office actions
  • Public prosecution history records

Your interest in specific patents, your search queries, and your analyses remain completely private and are not used to train our AI systems.

Data Security

Encryption

  • In Transit: All data transmitted between your browser and our servers uses HTTPS/TLS encryption
  • At Rest: Sensitive data is encrypted at rest using industry-standard encryption algorithms

Authentication

  • Secure authentication via Firebase Auth
  • Password requirements meet industry standards
  • Multi-factor authentication (MFA) available for enhanced security

Infrastructure

  • Hosted on Google Cloud Platform (GCP) with enterprise-grade security
  • Regular security audits and penetration testing
  • Access controls and employee training on data security
  • Incident response procedures in place

Data Processing

What We Process

  • Public Patent Data: We analyze publicly available USPTO data to provide insights
  • Your Account Data: Email, name (if provided), subscription information
  • Usage Data: Features used, analysis history (for providing the Service)

What We Don't Process

  • Your specific client information
  • Confidential attorney-client communications
  • Proprietary business information beyond patent numbers

Compliance

PatentSignal is designed to comply with:

  • GDPR: European General Data Protection Regulation
  • CCPA: California Consumer Privacy Act
  • Industry Standards: Following best practices for SaaS security

Your Rights

You have the right to:

  • Access: Request access to your personal data
  • Correction: Update or correct your account information
  • Deletion: Request deletion of your account and data
  • Portability: Export your analysis data
  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@patentsignal.com.

Third-Party Services

PatentSignal uses trusted third-party services for:

  • Hosting: Google Cloud Platform
  • Authentication: Firebase Auth
  • Payment Processing: Secure payment processors (we do not store full credit card numbers)
  • Analytics: Privacy-focused analytics tools

All third-party vendors are contractually obligated to protect your data and comply with applicable privacy laws.

Incident Response

In the unlikely event of a security incident:

  • We will notify affected users promptly
  • We will take immediate steps to mitigate the impact
  • We will comply with applicable breach notification laws
  • We will provide transparent communication about the incident

Contact Us

If you have questions about security or privacy, please contact us:

Security: security@patentsignal.com
Privacy: privacy@patentsignal.com