Skip to main content

Legal

Acceptable Use Policy

Last updated: May 3, 2026

The short version. CourtFlow AI is built for licensed legal professionals running real litigation work. Don't use it for anything illegal, don't try to break the security of the platform or other tenants, don't resell access, and don't use the AI features to produce content you'd be embarrassed to file. This policy is incorporated by reference into our Terms of Service; violating it is grounds for suspension or termination.

1. Who This Applies To

This Acceptable Use Policy ("AUP") applies to every person and entity that accesses CourtFlow AI, including subscribed firms, individual users within those firms, public-tool visitors (the free filing analyzer at /try, the court rules reference at /rules, the sales chat widget, and the public probate intake portal), and anyone else interacting with our infrastructure.

2. Prohibited Conduct — Legal & Ethical

You will not use the Service to:

  • Violate any applicable law, regulation, or court order, including U.S. federal law, the law of any U.S. state in which you practice, the rules of professional conduct of any bar to which you are admitted, or any cease-and-desist or protective order entered against you.
  • Engage in the unauthorized practice of law. CourtFlow does not authorize or hold out non-attorneys as authorized to practice law; user accounts marked as "Attorney" must be held by individuals with an active bar admission.
  • Misrepresent the identity, role, or bar admission status of any user (your own or another's) on a CourtFlow account.
  • Process documents, emails, or case data on behalf of any party other than your own clients (as defined by your bar's rules of professional conduct), without that party's informed consent.
  • Submit any AI-generated work product to a court, opposing counsel, or client without independently verifying its accuracy. Reliance on unverified AI output may itself violate Rule 11, Rule of Professional Conduct 1.1 (Competence), and analogous rules; CourtFlow makes this duty explicit in Terms §7.

3. Prohibited Conduct — Security & Integrity

You will not:

  • Probe, scan, or test the vulnerability of any CourtFlow system or network without prior written authorization, except as expressly permitted by our Responsible Disclosure guidelines.
  • Attempt to access any data, account, tenant, or system you are not authorized to access, including but not limited to other firms' cases, documents, deadlines, or audit logs.
  • Bypass, disable, or interfere with any security or access-control measure, including authentication, rate limiting, role-based access controls, tenant scoping, CSRF protection, or content security policies.
  • Upload or transmit any malware, virus, worm, ransomware, time bomb, dropper, or other code intended to damage, disrupt, or surveil any system or user. Public uploads are subject to magic-byte signature verification; attempts to disguise an executable as a PDF or image will be rejected and may trigger investigation.
  • Reverse engineer, decompile, disassemble, or attempt to derive the source code of any part of the Service except to the extent applicable law expressly permits.
  • Use the Service to develop a product or service that competes with CourtFlow, or to train any machine-learning model or AI system. Outputs you receive from the Service are licensed to you for use in your legal practice, not as training data.
  • Spider, crawl, scrape, or otherwise access the Service by automated means except via documented APIs and within published rate limits.
  • Frame or mirror any part of the Service or use the CourtFlow trademarks without written permission.

4. Prohibited Content

You will not upload, transmit, generate via the AI features, or otherwise process any content that:

  • Is unlawful, defamatory, fraudulent, obscene, or constitutes a credible threat of violence.
  • Sexually exploits or endangers minors. We report any apparent CSAM to the National Center for Missing & Exploited Children (NCMEC) as required by 18 U.S.C. § 2258A and preserve the underlying material as required by law.
  • Infringes the intellectual property, privacy, or publicity rights of any third party.
  • Contains material a court has sealed or otherwise restricted from public dissemination, where uploading or generating that material would violate the sealing order.
  • Consists of regulated personal data outside the scope of the Service — for example, payment-card information (PCI), protected health information (PHI) governed by HIPAA where you are a covered entity and have not entered a Business Associate Agreement with us, or biometric identifiers governed by BIPA or similar laws.
  • Is intended to harass, intimidate, or impersonate another person, including on the public sales chat widget or in lead-capture forms.

5. AI & Generated Content

The AI features (document analysis, deadline extraction, draft generation, case briefs, trial preparation materials, probate drafts, sales chat) are tools to assist your work, not autonomous agents. You will not:

  • Use the AI to fabricate citations, evidence, or party admissions for use in any legal proceeding. AI-generated citations are flagged as Verified, Probable, or Unverified — none of these labels relieves you of the duty to independently confirm the citation before relying on it.
  • Submit AI-generated drafts as your own work without independent review, or hold out AI-generated work product as having been prepared exclusively by a human.
  • Attempt to extract, exfiltrate, or replicate the underlying models, embeddings, system prompts, or weights of any AI provider used by the Service, including through prompt-injection or jailbreak techniques.
  • Use the AI features to produce content for a use case unrelated to your legal practice (for example, generating marketing content, social media posts, fiction, or entertainment material).
  • Craft prompts intended to elicit instructions for illegal activity, malware, or other prohibited content.

6. Account & Resource Use

  • Each user must have their own account and credentials. Sharing a single account among multiple humans defeats audit logging and is prohibited; add additional seats instead.
  • You are responsible for all activity under your account, including activity by your employees, contractors, and anyone you give access to.
  • Do not exceed published rate limits, plan usage caps, or fair-use thresholds. Sustained or programmatic attempts to exceed limits may be throttled, queued, or rejected without notice.
  • Do not resell, sublicense, white-label, or otherwise commercially distribute access to the Service without a written agreement with CourtFlow.

7. Public Tools & Outreach Surfaces

The public surfaces of CourtFlow — the free filing analyzer, the court rules reference, the sales chat widget, and the public probate intake portal — exist to serve real attorneys, prospective customers, and the clients of CourtFlow firms. Misuse includes:

  • Submitting fabricated names or email addresses to obtain free analyses or chat replies you would not otherwise be entitled to.
  • Using the public probate intake portal for purposes other than completing an intake at the request of an inviting CourtFlow firm.
  • Attempting to enumerate intake tokens, firm slugs, or other identifiers.
  • Using the sales chat widget to spam, harass, or send malicious content to CourtFlow staff or other visitors.

8. Reporting Abuse

If you believe an account, user, or piece of content on CourtFlow violates this AUP — including suspected security probing, harassment, infringement, or apparent CSAM — report it to abuse@courtflow.ai. Include the URL, account or firm identifier (if known), and a description of what you observed. We aim to acknowledge reports within two business days and to investigate substantive reports within seven.

Security vulnerabilities should be reported through our Responsible Disclosure channel rather than abuse@.

9. Enforcement

We may, in our reasonable discretion and without prior notice where the conduct presents an imminent risk to the platform, other users, or the public:

  • Throttle or block requests from a specific user, IP address, or tenant;
  • Remove or quarantine specific content, uploads, or AI-generated outputs;
  • Suspend a user account or an entire tenant pending investigation;
  • Terminate the account or tenant for cause and without refund;
  • Cooperate with law-enforcement requests as required by valid legal process; and
  • Preserve relevant logs, content, and audit records for the period required by applicable law.

For non-imminent violations we will normally notify the affected account owner and provide a reasonable opportunity to cure before suspension. The ABA Model Rule 1.6 confidentiality of client data uploaded to the account remains protected throughout any enforcement action; we do not review case content as part of routine enforcement, and substantive review of stored data is limited to what is necessary to investigate a specific reported violation.

10. Changes to this Policy

We may update this AUP from time to time as the platform evolves. Material changes will be posted to the changelog and reflected by the "Last updated" date at the top of this page. Continued use of the Service after a change constitutes acceptance of the updated AUP.

Report abuse or ask a question

Abuse and AUP-violation reports: abuse@courtflow.ai. Other questions: legal@courtflow.ai.