Privacy Policy
Specification v2.0.3 — Effective Date: February 2026
This page describes the general data handling principles under which Finality operates. Specific data processing obligations are established through separately executed engagement agreements and data processing addenda.
Operating Entity
Finality is operated by Tempered Technologies LLC, a Delaware limited liability company, located at 8 The Green, Ste B, Dover, DE 19901.
Data Collection
The system is designed to capture data necessary for deterministic constraint evaluation and procedural record capture. Data collection is scoped to the minimum required for these operational purposes as defined in the applicable engagement agreement. This site does not use third-party analytics, tracking pixels, or advertising technologies. Fonts are self-hosted; no visitor data is transmitted to external CDN providers.
Data Use
Data is used for deterministic constraint evaluation and procedural record capture as defined in the applicable engagement agreement. Data is not shared with third parties except as required by law, court order, or with explicit institutional consent as specified in the governing agreement.
Data Retention
Retention periods are configurable per institutional requirements and are specified in the applicable engagement agreement. Default retention periods are described under /legal/retention.
Access Controls
Institutional participants control access to evidence artifacts as defined by their role and engagement configuration. Access logs are maintained for auditability. Technical and organizational measures are implemented to protect data as described under /security.
Data Subject Rights
Institutional participants and data subjects may request access to, correction of, or deletion of their data by contacting Tempered Technologies LLC at the address above. Requests are processed in accordance with applicable law and the terms of the governing engagement agreement. Where data is processed on behalf of an institutional participant, requests are coordinated through that institution.
Breach Notification
In the event of a data breach affecting personal data, affected institutional participants are notified without undue delay and in accordance with applicable law. Specific breach notification timelines and content requirements are defined in the applicable data processing addendum.
Specification Version 2.0.3 — Effective Date: February 2026