Wordsmith
Wordsmith brings your legal team’s full functionality into Slack, completely elevating in-house legal by allowing you to seamlessly manage your entire legal workflow where your business already works. Scale legal support, accelerate business velocity, and free up your lawyers for high-value strategic work.What You Can Do with Wordsmith in Slack
• Get instant answers to routine legal and policy questions from across the business.
• Draft and review contracts right in Slack, including NDAs and other legal documents.
• Automate legal intake and triage requests from any channel into structured workflows.
• Route questions automatically to specialized workspaces for HR, Privacy, Sales, and more.
• Receive smart alerts for topics of interest, eliminating constant channel monitoring.
• Maintain full control with a co-pilot mode for reviewing and approving.How It Works
• Mention @Wordsmith in any channel or thread to ask a question or start a workflow.
• Wordsmith finds an answer from your connected knowledge base or routes the request to the right person.
• Take action on contracts, approvals, and other legal tasks directly in the conversation.Enterprise Security
Wordsmith is SOC2 Type 2 compliant and we never train on your data. Your information remains completely private with enterprise-grade security and data segregation.Pricing
Start your free 14-day trial today. To learn more about a plan that fits your needs, book a demo with our team. https://www.wordsmith.ai/book-demoImportant Notes
Wordsmith uses a Large Language Model (LLM) to generate responses. Please verify important information independently.
• Get instant answers to routine legal and policy questions from across the business.
• Draft and review contracts right in Slack, including NDAs and other legal documents.
• Automate legal intake and triage requests from any channel into structured workflows.
• Route questions automatically to specialized workspaces for HR, Privacy, Sales, and more.
• Receive smart alerts for topics of interest, eliminating constant channel monitoring.
• Maintain full control with a co-pilot mode for reviewing and approving.How It Works
• Mention @Wordsmith in any channel or thread to ask a question or start a workflow.
• Wordsmith finds an answer from your connected knowledge base or routes the request to the right person.
• Take action on contracts, approvals, and other legal tasks directly in the conversation.Enterprise Security
Wordsmith is SOC2 Type 2 compliant and we never train on your data. Your information remains completely private with enterprise-grade security and data segregation.Pricing
Start your free 14-day trial today. To learn more about a plan that fits your needs, book a demo with our team. https://www.wordsmith.ai/book-demoImportant Notes
Wordsmith uses a Large Language Model (LLM) to generate responses. Please verify important information independently.
Wordsmith will be able to view:
Wordsmith will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
General
Developer
Wordsmith Ai
Company headquarters location
United Kingdom
Terms of service
Privacy & data governance
Data retention policy
Wordsmith's data retention policy is to retain personal data for no longer than necessary, with specific retention periods depending on the type of data and the purposes for which it is used. The policy includes the following key points:
1. Basic information about customers, such as Identity, Contact, Financial and Payment Data, and Business Information, is kept for six years after they cease being customers, as required by law.
2. Personal data is retained while products and/or services are being provided and thereafter as needed to address any questions, complaints, or claims, to demonstrate fair treatment, and to comply with legal record-keeping obligations.
3. Upon termination or expiry of a Master Agreement, Wordsmith will securely delete or destroy the personal data in its possession or control, unless directed otherwise by the customer.
4. A draft Data Processing Agreement (DPA) indicates that personal data is retained for up to 90 days or earlier upon request.
Personal information is destroyed in accordance with applicable laws and regulations when it is no longer necessary to retain it. For further details on the mechanisms used when transferring personal information out of the UK or the EEA, or for any other inquiries regarding data retention, employees or customers may contact Wordsmith.
Data archiving and removal policy
Wordsmith's data archival and removal policy is designed to retain personal data for as long as necessary to fulfill service obligations, comply with legal requirements, and address any related inquiries. The company commits to not holding onto personal data for longer than necessary. Specific policies include:
1. Retaining personal data for varying periods depending on the type of data and its use, ensuring it is kept only while products and/or services are being provided and thereafter as needed for compliance and addressing questions, complaints, or claims.
2. By law, certain basic customer information is retained for six years after they cease being customers.
3. Upon termination or expiry of a Master Agreement, Wordsmith will securely delete or destroy, or if directed, return and not retain any of the Personal Data related to the agreement in its possession or control.
4. A general retention period of personal data for up to 90 days or earlier upon request is also mentioned in the company's Data Processing Agreement draft.
The company ensures that when it is no longer necessary to retain personal information, it will be securely destroyed in accordance with applicable laws and regulations.
Data storage policy
Wordsmith's data storage policy encompasses several key aspects:
1. Retention Periods: Personal data is retained for varying periods depending on the type of data and the purposes for which it is used. The company does not hold onto personal data for longer than necessary and ensures that personal data is kept while products and/or services are being provided and thereafter as needed for legal compliance.
2. Security Measures: Wordsmith has implemented a range of technical, organizational, and physical measures to ensure the security of personal data. This includes encryption of data in transit and at rest, pseudonymization, and regular testing and evaluation of security measures.
3. Data Destruction: When personal information is no longer necessary to retain, Wordsmith securely destroys it in accordance with applicable laws and regulations. Certain types of information are kept for six years after customers cease being customers.
4. Data Transfer: The company does not transfer personal data outside of the EEA, ensuring compliance with data protection laws.
5. Encryption Standards: Data at rest is encrypted using AES-256, and the company adheres to NIST recommended standards for database encryption and password storage. Backup copies are also encrypted within the AWS environment.
6. Record Keeping: Wordsmith maintains accurate, complete, and relevant records of personal data through data minimization, regular data auditing, user consent, and transparency. Detailed records regarding the processing of personal data are kept and reviewed annually.
7. Compliance: The company's policies and procedures for data storage and handling are reviewed annually to ensure compliance with data protection legislation and the company's information and security policies.
Data center location(s)
United Kingdom
Data hosting details
The data is hosted in cloud (AWS), located in EU datacenter.
Data hosting company
Amazon (AWS)
App/service has sub-processors
yes
Guidelines for sub-processors
App/service uses large language models (LLM)
yes
LLM model(s) used
Claude 4 Sonnet
LLM retention settings
Zero data retention.
LLM data tenancy policy
Zero data retention policy, the model is served via AWS Bedrock from EU datacenter.
LLM data residency policy
Zero data retention policy, the model is served via AWS Bedrock from EU datacenter.
Certifications & compliance
Data deletion request procedure
Wordsmith's procedure for handling requests for data deletion is as follows:
1. Upon termination of a contract or when it is determined that it is no longer necessary to retain personal data, Wordsmith will securely delete or destroy the personal data in accordance with applicable laws and regulations.
2. If a customer directs in writing, Wordsmith will return the personal data and not retain any copies of it.
3. Data removal requests are to be submitted via email to privacy@wordsmith.ai, as indicated in the Data Processing Agreement (DPA) draft.
This ensures that Wordsmith complies with data protection laws and respects the privacy rights of individuals whose data it processes.
HIPAA compliant
no
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack Marketplace, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Security
Supports Security Assertion Markup Language (SAML)
yes
Has a dedicated security team
yes
Contact for security issues
security@wordsmith.ai
Has a vulnerability disclosure program
no
Vulnerability disclosure program covers Slack app
yes
Has a bug bounty program
yes
Bug bounty program URL
Requires third party authorization/connections
no
Third party services used by this app
1. Amazon Web Services
2. Microsoft Azure
3. Pinecone
4. Vercel
5. Statsig
6. CloudConvert
Uses token rotation
no