Law Enforcement Requests

Last updated: 2026-04-24. For non-emergency requests, please follow the standard process below. For emergencies, use the emergency disclosure path instead.

🚨 Emergency Disclosure

For situations involving imminent risk of death or serious bodily harm, we will respond as quickly as possible. Federal, state, local, and foreign law-enforcement officers may contact us at the emergency address below with a sworn declaration of the emergency.

Email: [email protected]
Response window: As fast as humanly possible during business hours; <24h off-hours.
What to include: (1) agency + badge number / identifying info, (2) contact callback number, (3) nature of emergency, (4) specific data required + legal basis, (5) sworn statement under 18 USC §2702(b)(8) or equivalent.

Standard Requests

For non-emergency requests — subpoenas, warrants, court orders, and preservation requests — contact:

Email: [email protected]
Response window: Subpoenas: typically 10 business days. Warrants: prioritized same-week response. Preservation requests: acknowledged within 72h.
Required format: Formal legal process (subpoena, search warrant, court order) served by email as PDF attachment. Include your agency ORI number, the investigating officer, and jurisdictional basis.

Data We May Hold

Our retention policy keeps user-content data for a minimum required period and then deletes it. Practically, we may have:

Account metadata — email, display name, signup timestamp, login IP+user-agent, subscription tier.
Chat messages — retained for 90 days hot, optionally 90 additional days anonymized, then deleted. Active legal holds preserve rows past this schedule.
Moderation history — report records, scan verdicts, and takedown actions. Retained per UK OSA / EU DSA audit obligations (≥ 6 months).
Payment records — managed by Stripe. We do not store card numbers.

We do NOT store: user-uploaded images after CSAM scan (deleted immediately on positive match, with NCMEC report retained); voice/audio data (processed, not stored); or IP addresses beyond the 30-day login log.

Preservation Requests

We will preserve a specified account's data for 90 days upon receipt of a valid preservation request under 18 USC §2703(f). Extendable for additional 90 days upon request. Email[email protected]with the specific user identifier (email or account UUID) and the nature of the preservation request.

CSAM

ChatBrat has zero tolerance for CSAM. We scan uploaded media and report positive matches to the National Center for Missing & Exploited Children (NCMEC) CyberTipline per 18 USC §2258A. See our Child Safety Policy for details.

User Notification

We generally notify users about law-enforcement requests affecting their data, unless legally prohibited (non-disclosure order, gag provision) or when notification would risk physical harm, witness intimidation, or destruction of evidence.

Foreign Requests

Requests from foreign law-enforcement agencies should be routed through your country's mutual legal assistance treaty (MLAT) process with the US Department of Justice, or via a US court pursuant to 28 USC §1782. We do not voluntarily respond to foreign process without MLAT compliance, except in cases of imminent emergency.

This page is informational, not legal advice. ChatBrat is operated by [company name + state of incorporation — fill in before launch].