Privacy Policy

Welcome to Reid (“Reid”, “we”, “our”, or “us”), an AI-native Legal Operating System designed to support advocates, law firms, businesses, organizations, and other users through AI-assisted legal research, document automation, matter management, workflow optimization, communication tools, and related legal technology services.

Reid is committed to protecting the privacy, confidentiality, and security of all personal data processed through the platform and ensuring compliance with applicable Kenyan laws and regulations relating to data protection, cybersecurity, confidentiality, and electronic communications.

This Privacy Policy is prepared in accordance with the Constitution of Kenya, 2010, the Data Protection Act, No. 24 of 2019, the Data Protection (General) Regulations, 2021, the Data Protection (Registration of Data Controllers and Data Processors) Regulations, 2021, the Computer Misuse and Cybercrimes Act, 2018, and any other applicable laws or regulatory requirements in Kenya.

This Privacy Policy explains how Reid collects, uses, stores, processes, transfers, secures, and discloses personal data and outlines the rights available to users under Kenyan law.

“Personal Data” shall mean any information relating to an identified or identifiable natural person.

“Sensitive Personal Data” shall include information relating to health status, biometric data, financial information, religious beliefs, race, ethnicity, children, sex life, or any category recognized as sensitive under applicable Kenyan law.

“Processing” shall mean any operation or set of operations performed on personal data including collection, recording, organization, storage, retrieval, disclosure, transfer, deletion, destruction, or analysis.

“User” shall mean any advocate, law firm, business, organization, client, or individual accessing or using Reid.

“Legal Data” shall mean pleadings, contracts, legal opinions, affidavits, matter files, legal correspondence, legal research, evidence materials, court documents, and any other legal information uploaded to or generated through Reid.

This Privacy Policy applies to all services, applications, websites, mobile applications, APIs, integrations, communication channels, AI systems, dashboards, and platforms operated by or under Reid.

This Privacy Policy applies to all users accessing Reid from Kenya or any other jurisdiction where Reid services are available.

By accessing or using Reid, users acknowledge that they have read, understood, and agreed to this Privacy Policy.

Reid may collect and process personal data including names, email addresses, phone numbers, law firm details, organization information, user credentials, billing information, payment information, and professional information provided during registration or use of the platform.

Reid may collect Legal Data uploaded, generated, stored, or processed through the platform including pleadings, contracts, affidavits, legal research, court documents, correspondence, evidence materials, legal strategies, matter notes, and related legal documentation.

Reid may automatically collect technical information including IP addresses, browser type, operating system, device identifiers, usage logs, analytics data, cookies, session data, feature interaction data, and system performance information.

Where applicable, Reid may collect payment and transaction information including subscription details, invoices, transaction records, tax information, and payment processor metadata.

Reid may collect AI interaction data including prompts submitted to AI systems, generated outputs, uploaded documents, workflow instructions, feedback submissions, and system correction inputs.

Personal data may be collected directly from users during account registration, onboarding, subscription processes, support interactions, communication with Reid, or use of Reid services.

Personal data may also be collected automatically through cookies, analytics technologies, APIs, integrations, authentication systems, and system monitoring tools.

Where permitted by law, Reid may receive information from third-party service providers, payment processors, integrations, or publicly available sources.

Reid processes personal data based on user consent where consent is required under applicable law.

Reid may process personal data where processing is necessary for the performance of a contract or provision of services requested by the user.

Reid may process personal data where processing is necessary for legitimate interests including improving services, enhancing security, preventing fraud, conducting analytics, and maintaining operational efficiency, provided such interests do not override user rights and freedoms.

Reid may process personal data where necessary for compliance with legal obligations, regulatory requirements, court orders, law enforcement requests, or professional obligations.

Reid may process personal data where processing is necessary for public interest purposes recognized under applicable law.

Reid processes personal data for purposes including providing and maintaining services, facilitating legal workflows, enabling AI-assisted legal research, generating legal documents, managing subscriptions, securing the platform, conducting analytics, improving functionality, and providing customer support.

Personal data may also be processed for fraud detection, compliance monitoring, dispute resolution, audit requirements, enforcement of terms, and compliance with applicable laws and regulations.

Reid may process user interaction data and AI usage information for purposes of improving system performance, enhancing AI models, and optimizing user experience where legally permitted.

Reid utilizes artificial intelligence technologies to assist users with legal drafting, research, summarization, matter organization, workflow automation, document analysis, and related functions.

AI-generated outputs are intended for informational and productivity purposes and should not be relied upon as legal advice without independent professional review by a qualified advocate.

Users remain solely responsible for reviewing, verifying, and validating all AI-generated outputs, legal citations, legal authorities, filings, and legal strategies before use or submission.

Reid does not make legally binding decisions solely through automated processing without meaningful human involvement.

Reid recognizes the importance of advocate-client confidentiality, legal professional privilege, and ethical obligations applicable to legal practitioners.

Reid implements reasonable technical and organizational safeguards designed to protect confidential legal information from unauthorized access, disclosure, misuse, or loss.

Users remain responsible for ensuring that their use of Reid complies with the Advocates Act, the Law Society of Kenya Code of Standards of Professional Practice and Ethical Conduct, court confidentiality requirements, and any other professional obligations applicable to them.

Reid may share personal data with third-party service providers involved in hosting, cloud infrastructure, analytics, authentication, customer support, payment processing, communications, or AI services where necessary for operation of the platform.

Reid may disclose personal data where required by law, court order, regulatory obligation, law enforcement request, or other lawful authority.

Personal data may be disclosed in connection with mergers, acquisitions, restructuring, financing transactions, or sale of assets subject to appropriate safeguards.

Reid shall not sell personal data to third parties for unrelated commercial advertising purposes without user consent.

Reid may process or store personal data on servers located outside Kenya.

Where personal data is transferred internationally, Reid shall implement appropriate safeguards in accordance with the Data Protection Act and applicable regulations.

Users acknowledge that certain cloud infrastructure providers, AI service providers, or integrations may process data in multiple jurisdictions.

Reid retains personal data only for as long as necessary to fulfill the purposes for which the data was collected, comply with legal obligations, resolve disputes, enforce agreements, and maintain security and audit records.

Retention periods may vary depending on the nature of the data, legal requirements, user settings, litigation hold obligations, or operational needs.

Upon expiry of applicable retention periods, personal data may be deleted, anonymized, archived, or securely destroyed.

Reid implements reasonable technical and organizational security measures designed to protect personal data against unauthorized access, disclosure, destruction, alteration, misuse, or loss.

Security measures may include encryption, secure cloud infrastructure, access controls, authentication systems, logging, monitoring, backups, vulnerability testing, and role-based access controls.

While Reid implements reasonable safeguards, no method of transmission or storage can guarantee absolute security and users acknowledge inherent cybersecurity risks associated with online services.

Subject to applicable law, users may have the right to access personal data held by Reid.

Users may request correction of inaccurate or incomplete personal data.

Users may request deletion, restriction, or objection to certain processing activities where permitted by law.

Users may withdraw consent where processing is based on consent, subject to lawful limitations.

Users may request portability of personal data where applicable under the Data Protection Act.

Users may lodge complaints with the Office of the Data Protection Commissioner of Kenya regarding alleged violations of data protection rights.

Reid may use cookies, analytics technologies, session tracking tools, and related technologies to improve functionality, monitor usage, maintain sessions, enhance security, and personalize user experiences.

Users may manage cookie preferences through browser settings or device configurations.

Reid is not intended for use by children under the age of eighteen (18) years without lawful authorization or supervision.

Reid does not knowingly collect personal data from children unlawfully and reserves the right to delete such data where discovered.

Reid may integrate with third-party platforms or services including cloud providers, payment processors, communication tools, productivity platforms, or external APIs.

Such third-party services are governed by their own privacy policies and Reid shall not be responsible for the privacy practices or policies of third parties.

In the event of a personal data breach, Reid may investigate the incident, mitigate risks, notify affected users where required, and notify the Office of the Data Protection Commissioner in accordance with applicable law.

Reid may take any remedial or protective measures reasonably necessary to protect users and the integrity of the platform.

Users shall ensure that all personal data uploaded to or processed through Reid is obtained and processed lawfully.

Users shall maintain confidentiality of login credentials and account access information.

Users remain responsible for reviewing AI-generated outputs, ensuring compliance with legal obligations, and validating all legal work produced using Reid.

Users shall not use Reid for unlawful, fraudulent, malicious, or unauthorized purposes.

Reid provides technology services and AI-assisted tools and does not operate as a law firm unless expressly stated otherwise.

Use of Reid does not create an advocate-client relationship between Reid and users or between Reid and any third-party clients.

Reid does not guarantee the accuracy, completeness, or suitability of AI-generated outputs for legal filing, legal advice, or legal representation purposes.

Reid reserves the right to amend, revise, update, or modify this Privacy Policy at any time.

Updated versions of this Privacy Policy shall be published on the Reid platform together with the updated effective date.

Continued use of Reid following publication of updates constitutes acceptance of the revised Privacy Policy.

Any questions, requests, complaints, or concerns regarding this Privacy Policy or personal data processing may be directed to:

Reid — operated by Mizizi AI, Nairobi, Kenya.

Email: privacy@reid-ai.com

Users may also contact the Office of the Data Protection Commissioner of Kenya.