Privacy & Security#

FrameCounsel is architected from the ground up with a zero-trust approach to case data. Every feature operates locally on your Mac, no data is transmitted to external servers, and the application includes no telemetry, analytics, or phone-home capabilities of any kind.

This is not a marketing bullet point. It is the foundational engineering decision that every other feature is built on top of. Only physical control of your data guarantees attorney-client privilege.

---

The Cloud AI Threat#

The legal profession is experiencing a rush toward AI tools, but most attorneys do not understand the catastrophic risk that cloud-based AI poses to their clients and their own licenses.

How Cloud AI Services Handle Your Data#

When you use a cloud AI tool, here is what actually happens:

1. Your input is transmitted over the internet to a remote data center owned by OpenAI, Anthropic, Google, or Microsoft
2. Your data is processed on shared infrastructure alongside queries from millions of other users
3. Your data may be logged in server logs, debugging systems, and monitoring pipelines
4. Your data may be used for training unless you have negotiated a specific enterprise agreement (and even then, the data still sits on their servers)
5. Your data is subject to that company's jurisdiction, their subpoena obligations, their security practices, and their employees' access policies

The Privilege Destruction Problem#

Attorney-client privilege requires that communications remain confidential between attorney and client. The moment you paste a police report, witness statement, case strategy memo, or any work product into a cloud AI service, you have voluntarily disclosed that information to a third party. Under most state bar ethics opinions:

• Voluntary disclosure to a third party waives privilege for that specific communication
• The waiver may extend beyond the specific text you entered, potentially opening the door to broader discovery
• Opposing counsel can argue that your use of cloud AI constitutes a waiver of work-product protection
• Malpractice liability arises if privileged information is exposed through negligent use of cloud tools

Specific Risks by Provider#

Most "AI Legal Tools" Are Dangerous Cloud Wrappers#

Many products marketed as "AI for lawyers" are thin interfaces on top of cloud AI APIs. They send your data to OpenAI, Anthropic, or Google behind the scenes. Some warning signs:

• "Powered by GPT-4" or "Built on Claude" means your data goes to that provider's servers
• Requires an internet connection for AI features means processing happens remotely
• Browser-based interface often means server-side processing
• "Your data is encrypted in transit" is a deflection; the issue is not interception, it is that the data arrives at someone else's server at all
• "We don't train on your data" may be true for the wrapper company, but what about the underlying AI provider?

FrameCounsel is fundamentally different. Every AI model ships bundled with the application and runs on your Mac's Neural Engine. Your case data never leaves your machine. There is no API call, no cloud endpoint, no remote server. Period.

---

No-Telemetry Architecture#

Unlike many modern applications, FrameCounsel collects absolutely no usage data:

• No analytics - No tracking pixels, no usage metrics, no crash reports sent externally
• No network calls - The application makes zero outbound network connections during normal operation
• No cloud sync - Case data is never uploaded, backed up, or synchronized to any remote service
• No update checks - Software updates are downloaded manually from your license portal when you choose

---

Setting Up Your Evidence Vault#

The most secure way to run FrameCounsel is with a dedicated external evidence drive that serves as your "local cloud" -- a portable, encrypted, physically securable storage device that replaces cloud storage entirely.

Recommended Hardware: SanDisk Professional Pro-G40 SSD#

We recommend the SanDisk Professional Pro-G40 Thunderbolt SSD as the ideal evidence vault for FrameCounsel workspaces:

Why an External Evidence Drive?#

• Physical chain of custody: When you are done working, unplug the drive, lock it in a safe, and log the access. No cloud server can offer this level of physical control.
• Air-gap capability: The drive can be used on a machine with no network connection whatsoever.
• Portability: Bring the drive to court, to the jail for client meetings, or to an expert witness -- without ever transmitting data over a network.
• Disaster isolation: If your Mac is compromised, lost, or seized, the evidence drive can be secured independently.
• Multi-machine workflow: Use the same evidence vault across multiple Macs without ever syncing through a cloud service.

Setting Up Your Pro-G40 as an Evidence Vault#

1. Connect the Pro-G40 to your Mac via the Thunderbolt cable (use the Thunderbolt port for maximum speed)
2. Format the drive using Disk Utility with APFS (Encrypted). Choose a strong passphrase and store it securely.
3. Open FrameCounsel and navigate to Settings > Workspace
4. Set the workspace location to a folder on the Pro-G40 (e.g., /Volumes/EvidenceVault/FrameCounsel)
5. Enable workspace encryption in Settings > Security for an additional encryption layer on top of the drive's hardware encryption
6. Create a drive access log -- maintain a physical log sheet that records who connected the drive, when, and for what purpose

Drive Security Protocols#

• Always eject properly before disconnecting (use the eject button in Finder or FrameCounsel's "Safely Disconnect" option)
• Store in a locked location when not in use (a fireproof safe is recommended)
• Maintain a physical access log recording every connection and disconnection
• Label the drive with a case number or "PRIVILEGED -- ATTORNEY WORK PRODUCT" designation
• Never connect to an untrusted computer -- the drive should only be used with machines you control
• Create an encrypted backup to a second Pro-G40 for disaster recovery, stored in a separate physical location

---

Chain of Custody Deep Dive#

FrameCounsel's chain of custody system is built on cryptographic primitives that make tampering mathematically detectable.

SHA-256: The Foundation of Evidence Integrity#

SHA-256 (Secure Hash Algorithm, 256-bit) produces a unique 64-character hexadecimal fingerprint for any file. This hash has several critical properties:

• Deterministic: The same file always produces the same hash
• Avalanche effect: Changing even a single bit of the file produces a completely different hash
• Collision resistant: It is computationally infeasible to find two different files that produce the same hash
• One-way: You cannot reconstruct the original file from its hash

When you import evidence into FrameCounsel, the application immediately computes the SHA-256 hash and records it in the immutable audit trail. This hash becomes the file's permanent identity.

Tamper Detection in Practice#

FrameCounsel performs automatic integrity verification at multiple points:

1. At import: Hash is computed and recorded
2. Before any analysis: Hash is recomputed and compared to the import hash
3. After any processing: New hash is computed for any derivative files, with the processing chain documented
4. At export: Hash is recomputed and verified before generating any report or court document
5. On-demand: Manual verification available at any time via Tools > Verify Integrity or

If any hash verification fails, FrameCounsel immediately alerts you with a tamper warning, locks the affected file from further processing, and logs the discrepancy in the audit trail.

The Immutable Audit Trail#

Every action in FrameCounsel is recorded in an append-only log that cannot be edited, overwritten, or deleted. Each log entry is itself hashed and chained to the previous entry, creating a structure similar to a blockchain. This means:

• No entry can be removed without breaking the chain
• No entry can be modified without invalidating all subsequent entries
• The entire history is cryptographically verifiable from first entry to last
• Any gap or inconsistency is immediately detectable

This audit trail is your courtroom proof that evidence was handled properly from the moment it entered your possession to the moment it was presented in court.

---

Air-Gapped Mode Configuration#

For the highest level of security, FrameCounsel supports full air-gapped operation on machines with no network connectivity. This is the gold standard for handling sensitive evidence.

When to Use Air-Gapped Mode#

• Cases involving classified or highly sensitive material
• High-profile defendants where media or public interest creates leak risk
• Any situation where court order or firm policy requires network isolation
• Cases where opposing counsel or government agencies may be monitoring network traffic
• When working with evidence obtained under protective orders

Step-by-Step Air-Gapped Setup#

Step 1: Prepare the Air-Gapped Machine#

1. Start with a clean macOS installation on an Apple Silicon Mac
2. Disable Wi-Fi in System Settings > Wi-Fi > Turn Wi-Fi Off
3. Disable Bluetooth in System Settings > Bluetooth > Turn Off (if not needed for peripherals)
4. Remove any Ethernet connections
5. Verify isolation: Open Safari and confirm you cannot reach any website

Step 2: Install FrameCounsel Offline#

1. On a separate, connected machine, download the FrameCounsel .dmg from your license portal
2. Copy the .dmg to a USB flash drive or your Pro-G40 evidence drive
3. On the air-gapped machine, open the .dmg and install FrameCounsel
4. Delete the .dmg from the transfer media after installation

Step 3: Activate Your License Offline#

1. On the air-gapped machine, launch FrameCounsel. It will display an offline activation code.
2. On a separate, connected device (phone or another computer), go to your license portal
3. Enter the offline activation code to receive an activation response
4. Type or copy the activation response into the air-gapped machine
5. FrameCounsel is now activated with no network connection required

Step 4: Configure the Evidence Vault#

1. Connect your Pro-G40 evidence drive to the air-gapped Mac
2. Set the workspace location to the evidence drive (see "Setting Up Your Evidence Vault" above)
3. Enable workspace encryption

Step 5: Import Evidence#

1. Obtain evidence files on a separate USB drive or transfer them via the Pro-G40
2. Import files into FrameCounsel using File > Import Evidence
3. FrameCounsel computes SHA-256 hashes immediately upon import
4. All AI analysis runs locally on the Mac's Neural Engine with zero network dependency

Step 6: Verify Air-Gap Integrity#

1. Periodically check Activity Monitor > Network to confirm zero network activity
2. FrameCounsel's status bar shows a shield icon when operating in confirmed air-gapped mode
3. If any network interface becomes active, FrameCounsel will alert you immediately

---

Encryption at Rest#

FrameCounsel encrypts all case data at rest using AES-256 encryption:

• Case database - SQLite database files are encrypted with a per-case key
• Evidence files - Imported media files are stored in an encrypted container
• Temporary files - Processing artifacts are encrypted and securely deleted after use
• Export staging - Files queued for export are encrypted until the export completes

Encryption keys are derived from your macOS Keychain credentials and are never stored in plaintext. On Macs with the Secure Enclave (all Apple Silicon Macs), keys are hardware-protected.

---

Secure Workspace Setup#

Configure your workspace for maximum security:

• Dedicated user account - Create a separate macOS user account for FrameCounsel work, reducing the risk of accidental data exposure
• FileVault - Enable macOS FileVault for full-disk encryption as an additional layer
• Screen lock - Configure aggressive screen lock timeouts when working with sensitive cases
• Workspace location - Store your workspace on an encrypted external SSD (we recommend the Pro-G40) that can be physically secured when not in use
• Disable cloud services - Turn off iCloud Drive, Dropbox, Google Drive, OneDrive, and any other cloud sync service on the machine where you work with case data. These services can silently upload files from your Desktop and Documents folders.
• Disable Spotlight indexing of the evidence drive to prevent case data from appearing in system-wide search results

Access security settings from Settings > Security or press and navigate to the Security tab.

---

Why Zero-Cloud Is Non-Negotiable#

The legal profession's rush to adopt cloud tools is creating a ticking time bomb of privilege waivers and data exposure. Consider the following:

• A single paste into ChatGPT could waive privilege for that communication and open the door to broader discovery
• Cloud forensic tools transmit your evidence to servers where it is processed alongside data from other users, including potentially from opposing counsel or law enforcement
• Data breaches at cloud providers are not hypothetical; they happen regularly and expose customer data to unauthorized parties
• Government access requests to cloud providers are routine; your case strategy could be accessible via a warrant served on your AI tool provider
• Terms of service change without notice; a cloud provider that does not train on your data today may change that policy tomorrow

The only air-tight guarantee is architecture, not policy. FrameCounsel is engineered so that it is physically impossible for your data to leave your machine. There is no server to breach, no API to intercept, no employee who can access your case files. This is not a feature. It is the foundation.

---

Security Standards#

FrameCounsel's air-gapped architecture eliminates the risks that compliance frameworks were designed to manage. Instead of checking boxes, we eliminated the problem:

• Attorney-client privilege preserved by architecture — data physically cannot leave your machine
• State bar ethical obligations exceeded — zero risk of inadvertent disclosure through cloud APIs
• Court protective orders enforced by design — evidence stays on hardware you physically control
• Zero cloud, zero servers, zero data transfer — nothing to comply with because nothing leaves your machine
• SHA-256 chain of custody — cryptographic proof of evidence integrity from import to court

---

Next Steps#

Explore Chain of Custody to learn how FrameCounsel maintains court-admissible evidence integrity, or visit Integrations to learn how FrameCounsel connects with your existing case management workflows.