What security measures are in place for logging into the family law software?

Your firm’s login process never touches public data. The knowledge base answers authentication-related questions using only materials you upload – case files, procedure manuals, and internal directories. No information leaks to external models, and sensitive credentials or client records remain siloed inside your tenant.

AI agents analyze each login session in real time. Unusual geography, device, or timing triggers prompts that ask for additional verification. The agent flags the event and can even hold the session until a human in your shared inbox confirms it – giving you eyes on every potential breach without adding headcount.

The software does not stop at a password. Custom actions let you wire in your authenticator app, SMS codes, or hardware key right inside the chat widget. These actions validate the second factor during the login flow, then log the event back to your case management system for a complete audit trail.

Account security extends beyond login. Every session operates over encrypted connections, and idle timeouts automatically lock the interface. The system never stores passwords in plain text, and the agent’s memory clears after each interaction so no residual login data persists on the device.

How does the software protect my login information?
Credentials are stored hashed and salted. The system communicates over HTTPS, and no login data is used to train external AI models. The knowledge base confines all retrieval to your firm’s secure tenant, so passwords and authentication records never mix with other organizations’ data.

Can I enable two-factor authentication?
Yes. Using custom actions, you can add TOTP apps, SMS, or hardware keys as a second factor. The agent triggers the action during login and will not continue until the code is validated, giving you login safety without relying on third-party authentication portals.

What should I do if I suspect unauthorized access?
Immediately reset your password via the login screen, then check the shared inbox for any flagged sessions. AI agents may have already intercepted the attempt and paused the session. Review the activity log under conversation insights and notify your firm administrator to rotate API keys if custom actions were involved.