Legal Disclaimer.
Case Ledger is a tamper-evident screen recording tool. It is not legal counsel, it is not a compliance certification, and it does not guarantee the admissibility or legal sufficiency of any recording.
What Case Ledger Is
Case Ledger is a Mac application that records screen content and produces tamper-evident artifacts intended to support evidence preservation workflows. Specifically, it can:
- Record screen, webcam, and audio to standard MP4 files.
- Produce a JSON manifest containing the recording's SHA-256 hash, duration, timestamps, and machine identifier.
- Append an entry to a hash-chained audit log on every recording.
- Sign the manifest with a key held in the Mac's Secure Enclave.
- Mark the finalized recording file as read-only at the filesystem level.
- Optionally include an RFC 3161 timestamp token from an external timestamp authority.
- Bundle all of the above into a single .evidencebundle package that can be independently verified.
These artifacts allow a reviewer to determine, after the fact, whether the recording and its associated metadata have been altered since the moment of capture.
What Case Ledger Is Not
Case Ledger is not:
- A legal compliance certification. No regulatory body has certified Case Ledger as compliant with HIPAA, GDPR, CCPA, SOX, GLBA, FERPA, FRCP, FRE, or any other law or regulation.
- A substitute for legal counsel. Whether and how to record any particular screen content, and how to use any resulting artifacts, are legal and ethical questions that depend on your circumstances and jurisdiction. Consult a qualified attorney.
- A guarantee of admissibility. Whether a recording will be admitted as evidence in any proceeding depends on the rules of evidence in the relevant jurisdiction, the discretion of the court, the foundational testimony provided, and many other factors outside our control.
- A chain-of-custody management system. Case Ledger creates tamper-evident artifacts that may support chain-of-custody documentation, but it does not itself model custody transfer, track identities, or enforce custody policies.
- A litigation hold or e-discovery platform. If you have litigation hold obligations, those obligations are not satisfied by using Case Ledger alone.
- A medical records system. Case Ledger is not a HIPAA Business Associate. We do not sign Business Associate Agreements.
- A financial records system. Case Ledger is not designed to meet the records-retention requirements of FINRA, the SEC, the IRS, or similar bodies.
No Legal Advice
Nothing in the Case Ledger application, the caseledger.app website, our support communications, or any documentation we publish constitutes legal advice. We are a software publisher, not a law firm. Information we provide about evidence preservation, audit logging, cryptographic signing, or related topics is provided for general informational purposes only.
If you have a specific legal question — including questions about whether recording is permitted in your jurisdiction, whether any particular recording would be admissible, or how to satisfy any legal or regulatory obligation — consult a licensed attorney in your jurisdiction.
Recording, Consent, and Privacy Laws
You are solely responsible for ensuring that any recording you make with Case Ledger complies with applicable laws, including:
- Federal and state wiretap and electronic surveillance statutes.
- One-party and two-party (or all-party) consent requirements that may apply to recording communications.
- Workplace recording laws and any applicable employment or labor regulations.
- Data protection and privacy laws (such as GDPR in the EU, CCPA in California, or similar laws in other jurisdictions) that may govern recording or processing of personal data.
- Professional conduct rules, including attorney ethics rules, medical confidentiality obligations, and similar professional duties.
- Confidentiality obligations you owe to clients, patients, employers, or other parties.
- Intellectual property rights, including copyright, that may restrict your ability to record certain content.
The fact that Case Ledger is local-only and produces tamper-evident artifacts does not itself authorize any particular recording. You must have a lawful basis to record independent of the tool you use.
What Verification Proves and Does Not Prove
The cryptographic verification that Case Ledger and the Case Ledger Verifier perform establishes the following technical facts about a given evidence bundle, when all checks pass:
- The bundle's recording file has the same SHA-256 hash now as it did at the moment the signed manifest was created.
- The signed manifest was signed by the private key associated with the included public key.
- The audit log entries form an unbroken hash chain.
- The bundle's file inventory matches the files present.
Verification does not establish, prove, or warrant:
- That the screen content shown in the recording is true, accurate, or complete.
- That the recording was made by any particular person.
- That the recording captures what it purports to capture.
- That the recording was made with proper consent or under any particular legal authority.
- That the recording is admissible in any specific proceeding.
- That the recording satisfies any compliance, regulatory, or contractual requirement.
- That the Mac on which the recording was made was uncompromised at the time.
These are determinations for the appropriate decision-maker (a court, a regulator, an auditor, a counterparty) based on the totality of the evidence and circumstances, not inferences from cryptographic verification alone.
Apple Silicon and the Secure Enclave
Case Ledger generates its signing key inside the Secure Enclave of an Apple Silicon Mac and uses Secure Enclave APIs to sign manifests. The Secure Enclave is a hardware-based key manager that, according to Apple's published documentation, is designed to make private keys generated within it unable to be extracted by software.
We rely on Apple's documentation and platform guarantees for these properties. We do not independently warrant the security properties of the Secure Enclave or any other part of macOS or Apple hardware. If Apple's platform guarantees change, are breached, or are found to be different than represented, the security properties of recordings signed by Case Ledger may be different than described.
Third-Party Dependencies
When you enable the optional external RFC 3161 timestamp feature, Case Ledger transmits a hash of the manifest to a timestamp authority that you configure. The privacy, security, availability, and trustworthiness of any external timestamp authority are not within our control. You are responsible for selecting and trusting any timestamp authority you use.
Case Ledger is distributed through the Apple App Store and relies on Apple's platforms, APIs, and services. We are not responsible for any failure, delay, error, or change in those platforms or services.
Your Responsibility
When you use Case Ledger, you are responsible for:
- Determining whether the App is appropriate for your particular purpose.
- Understanding and complying with all applicable laws, rules, and obligations that govern your recording activity and the resulting recordings.
- Maintaining the security of your Mac, your macOS account, and your recordings.
- Backing up your recordings and evidence bundles. We do not back up your data; recordings are local to your Mac.
- Properly preserving evidence bundles intact when you need to rely on them. Verification fails if the bundle has been modified, including by file format conversion, re-compression, or partial extraction.
- Obtaining any necessary consents before recording.
- Documenting your recording workflow, chain of custody, and foundational facts as needed for any use you plan to make of the recordings.
Contact
For questions about this Legal Disclaimer:
Case Ledger
Castle Rock, Colorado
United States
support@caseledger.app
For questions about the terms of your use of Case Ledger, see our Terms of Use. For questions about our handling of your information, see our Privacy Policy.