Security

Not a consumer chatbot. Not an autonomous agent.

MatterCue is designed as a controlled email workflow tool. Your firm decides what gets processed. Your team approves every output. Nothing happens automatically.

Access and control

What MatterCue can and cannot access.

MatterCue only sees what your team explicitly sends to it. There is no background monitoring, no inbox connection, and no autonomous outreach.

No full Outlook or Gmail inbox access required.
No inbox monitoring.
No document management system access.
Only processes emails intentionally sent, CC'd, or forwarded to MatterCue.
Only approved users can trigger MatterCue.
Emails are routed through Postmark and processed by the workflow.
Postmark retention is set to 7 days.
MatterCue does not automatically send client replies.
MatterCue does not automatically resolve obligations.
Human review is required before any action is taken.

Security principles

Built on business-tier APIs, not consumer tools.

MatterCue is built around one core idea: your team stays in control. Here is what that means in practice.

API-based processing, not copy-paste

MatterCue connects to AI providers via secure business APIs. Your firm's email content is processed through a controlled server pipeline — not pasted manually into a consumer chat window by a staff member.

Your data is not used to train models

Business and API-tier agreements with major AI providers generally prohibit using customer inputs and outputs to train or improve foundation models by default. MatterCue is built on that tier, not consumer products.

Human review before every action

MatterCue does not auto-reply to clients, does not send legal advice, and does not approve billing entries. Every output — summaries, tasks, billing drafts, suggested replies — requires a human to review and act.

Controlled workflow, not autonomous agent

MatterCue is a structured extraction workflow. It reads, extracts, and surfaces structured data for your team. It does not take autonomous action, contact clients, or modify any system without user instruction.

Tasks stay open until manually resolved

Nothing disappears from the digest automatically. Items remain visible until someone on your team explicitly marks them resolved, so nothing slips through due to automated clean-up.

Deadlines and billing require verification

Any deadline, date, or billing entry flagged by MatterCue is explicitly marked as requiring attorney verification. MatterCue does not treat its own outputs as authoritative.

Questions about security or data handling?

We are happy to walk through how MatterCue handles your firm's data in detail.

Ready to take control of your inbox?

Choose a plan and get your firm set up in minutes.

Last updated: June 19, 2026

Email Processing

MatterCue only processes email threads intentionally sent, forwarded, or CC'd to mattercue@mattercue.com. MatterCue does not monitor your inbox, access your email account generally, send replies automatically, or mark tasks resolved automatically.

Account Access

MatterCue portal access is controlled through authenticated user accounts. Firm admins are responsible for inviting, managing, and deactivating users for their firm.

Payment Security

MatterCue uses Stripe for checkout, subscription billing, payment method updates, invoice access, subscription changes, and cancellations. MatterCue does not store full card numbers on its own systems.

Service Providers

MatterCue may rely on trusted third-party providers for hosting, authentication, database services, email delivery, automation, payment processing, and AI processing.

Human Review

MatterCue outputs are not legal advice and should be reviewed before reliance. Users remain responsible for verifying deadlines, obligations, billing entries, suggested replies, and client communications.

Security Questions

Security questions may be sent to support@mttrai.com.