Security

Security for signed contract follow-up.

Security basics for contract records, with reviewed access — what's logged, who can see a workspace, and how data is exported, deleted, and reviewed.

Request access Privacy policy Contact security

Workspace access
Audit history
CSV exports
Deletion requests
Reviewed fields

Contract files

How contract files are handled

Upload types: PDF and DOCX
Stored data: Files, extracted text, reviewed fields
Access: Workspace-scoped users, by role
Isolation: Cross-workspace access blocked
In transit: Encrypted over HTTPS
AI provider: Sent only to support extraction suggestions
Review state: Suggested fields are not operational data until approved

See how we handle data

What we process

Data categories

Account: Profile and sign-in
Workspace: Team and membership
Contracts: Uploaded files, extracted text, reviewed fields
Activity: Audit and activity events
Public requests: Access requests and contact messages
Exports: Reports and CSV files

Access and roles

Membership and admin controls

Roles: OwnerAdminMemberViewer
Membership: Scoped to one workspace
Owner & Admin: Billing and settings

Audit history

Key workspace actions

Logged: Uploads and field approvals
Also: Owner, evidence, and member changes
Per event: Actor and timestamp

Account security

Authentication and sessions

Sign-in: Password with self-service reset
MFA: Authenticator app (TOTP)
Sessions: Review and sign out sessions
Sensitive actions: Require password confirmation

Data export and deletion

Export and deletion paths

Export: Contract records and reports as CSV
Deletion: Workspace data, by request

A first workspace can start with a small or redacted contract set.

AI and review

Suggested fields require human review

Review state: Not operational data until approved
Source: Snippet tied to each suggestion
Verify: A source snippet backs each value

Boundaries

What we do not claim

No public security attestation claimed
No SLA or uptime guarantee
No legal advice or autonomous decisions
No managed migration or procurement readiness

Security contact

Questions about your data

For access, export, and deletion questions, AI and data-handling questions, or to report a security concern.

Email security@oblixa.io Contact page

Legal note

Oblixa does not provide legal advice

Oblixa is not a law firm and does not provide legal advice. Your team reviews suggestions before acting. See the terms and acceptable use policies.