Private by default, built for pre-signing review.

Documents are private to the user account.

Files are stored securely and are not public.

Users can delete uploaded documents, generated reports, or full projects.

Reports are generated for the user's review.

SubScope does not replace an attorney.

SubScope helps identify issues to review before signing.

Production deployments should use Supabase row-level security and signed URLs for temporary downloads.

MFA can be required through Auth0 and step-up login hooks are included for uploads, reports, downloads, and deletion.