Confidential by design, protected by discipline.

A dispute is among the most sensitive things a person or a business can hold. Tochelet treats your matter accordingly — reviewed only by intake counsel, never displayed in analytics, never sold or shared. This page sets out how your information is handled, how it is retained, the standards we hold ourselves to, and the limits of what this service is.

Several of the controls described here are stated as our intended design and targets. Where something is not yet in place, we say so plainly — marked "once implemented" or "target" — rather than imply a guarantee we have not earned.

Confidential by design

Confidentiality is not a feature we add at the end; it is the assumption everything else is built on. From the first line of an intake form to a closed matter, your information is handled as privileged and private.

  • Encrypted in transit and at rest. Information you send is transmitted over encrypted connections, and (once implemented) is stored encrypted at rest. Access is restricted to the people who need it to review your matter.
  • Reviewed only by intake counsel. Your enquiry is read by the senior lawyers and mediators responsible for assessing it — not by a general team, and not by an automated system acting alone.
  • Never displayed in analytics. The substance of your matter — what you write, the figures, the documents — is never exposed in third-party analytics, dashboards, or marketing tools.
  • Never sold or shared. We do not sell, rent, or trade your information, and we do not share it with third parties except as needed to operate the service or where required by law.
  • Never used to train anything outside Tochelet. Confidential matter data is never exposed, sold, or used to train any external model, product, or service. Our proprietary analytical model is built and refined inside Tochelet, on our own resolved-matter data.
Please don't upload sensitive documents yet

At the initial enquiry stage, please keep your description high-level. Do not send contracts, court filings, financial records, or other sensitive materials until you have accepted our intake terms. When documents are needed, we request them securely — only after a matter is qualified and you have given informed consent. This protects you, and it keeps the early conversation simple and safe.

Privacy & data retention

This section explains what we collect, why, how long we keep it, and how to ask us to delete it. It describes the website intake process; it is not a substitute for a formal engagement agreement, which governs any matter we take on.

What we collect at intake

We deliberately ask for as little as possible to begin. A typical enquiry includes:

  • Contact details — your name, email address, and, optionally, a phone number, so we can respond.
  • High-level matter information — the type of dispute, an approximate amount, the current stage, whether written evidence exists, and a short, general description in your own words.

You choose how much to disclose. Please do not include sensitive details, identifying information about third parties, or documents at this stage.

How it's used

We use the information you provide to review your enquiry, decide whether and how we can help, and respond to you. Where you consent, we may use your contact details to follow up on your matter. We do not use your enquiry for advertising, profiling, or any purpose unrelated to assessing and responding to it.

Retention & deletion

We keep enquiry information only as long as needed for the purpose it was given, and to meet our professional and legal obligations. If your enquiry does not become a matter, we retain it for a limited period and then delete or anonymise it (retention windows are being finalised as part of our data-governance program — stated here as a target).

You may ask us, at any time, to confirm what we hold about you, to correct it, or to delete it. To make a request, use the secure contact method below; we will respond within a reasonable time, subject to any obligation that requires us to retain certain records.

A secure contact method for sensitive cases

If your matter is especially sensitive, you do not have to disclose details through the website form. Write to us at [email protected] with only what is necessary to make contact, and we will arrange a secure channel for anything further. As above, please do not attach sensitive documents to a first message.

Cookies & analytics

We aim to keep the site lean. Where we use analytics, it is configured so that the content of your enquiry is never sent to third-party analytics — measurement is limited to aggregate, non-sensitive usage of the site itself. Any non-essential cookies are used only with appropriate notice and, where required, consent.

Standards

We hold ourselves to recognised information-security and privacy frameworks. The items below describe the controls and frameworks we design and operate toward. They are stated as targets and controls, not as held certificates; where a formal certification or audit has not been completed, we do not claim it.

Frameworks & controls (targets) SOC 2 — controls modelled on the Trust Services Criteria ISO 27001 — information-security management as a target GDPR-aligned — data-protection principles applied
i

SOC 2 (target)

We design our controls around the SOC 2 Trust Services Criteria — security, availability and confidentiality. A formal SOC 2 examination is a goal, not a completed report; we will not represent otherwise until it is.

ii

ISO 27001 (target)

Our internal practices follow the structure of an ISO 27001 information-security management system — documented policies, access control, and ongoing risk review — with certification treated as a forward-looking objective.

iii

GDPR-aligned

We apply core data-protection principles — lawful basis, data minimisation, purpose limitation, and your rights of access and erasure — to how we collect and handle enquiries.

iv

Privilege & confidentiality

Above any framework, we treat matter information as privileged and confidential, consistent with the professional duties of the lawyers who lead each assessment.

Legal disclaimer

Please read the following carefully. It governs your use of this website and the assessments Tochelet provides.

  • Decision-support, not legal advice. Tochelet provides structured dispute risk and settlement analysis for informational and decision-support purposes. The website and any assessment do not constitute legal advice.
  • Does not replace independent counsel. An assessment is intended to inform your thinking, not to replace independent legal advice. You should consult, and rely on, your own qualified lawyer regarding your specific situation.
  • No attorney-client relationship. Using this website, submitting an enquiry, or receiving an assessment does not create an attorney-client (or lawyer-client) relationship between you and Tochelet or any of its lawyers. Such a relationship arises only through a signed engagement agreement.
  • Dependent on the information provided. Every assessment depends on the accuracy and completeness of the information you give us. Incomplete, inaccurate, or evolving facts can materially change the analysis.
  • No certain prediction of outcomes. Tochelet does not predict court outcomes with certainty. An assessment expresses ranges and likelihoods under explicit assumptions; it is not a guarantee, forecast, or promise of any particular result.
  • Forward-looking statements. Several controls on this page describe intended design and targets ("once implemented" / "target"). They are not representations that a given control or certification is currently in place.

Questions about security, privacy, or these terms are welcome. You can reach us in confidence at [email protected], or begin a confidential enquiry through our request an assessment page when you are ready.