Lethe.

Our philosophy

Compliance is a trust problem before it is a technical one.

The matching, the hashing, the file formats are specified and solvable. What a broker actually needs is to stop carrying the obligation in their head, and to hold evidence that would satisfy someone who does not have to take their word for it. That is the problem we work on. These are the principles we work by.

We do not ask to be admired. We ask to be trusted, and trust is earned by being correct, on the record, and the same every cycle.

The principles

Six commitments that govern every decision.

I

We sell certainty, not novelty

The goal is not excitement. It is the moment a broker stops worrying about the Delete Act because the cycle is handled and the evidence exists. Relief is the product. The software is how it gets delivered.

II

Evidence over assertion

Anyone can claim a deletion happened. We build proof a third party can verify, anchored so it cannot be quietly rewritten later. A green result means the same thing to an auditor as it does to us.

III

Continuity is the obligation

The platform serves the full deletion universe once, then deltas. The law requires keeping deleted people deleted as new data arrives, permanently. Holding that record correctly is the durable work, and the part a broker cannot rebuild if it is lost.

IV

Your data stays in your custody

We do not ask a broker to hand raw customer records to a new vendor. Matching runs on hashes, on their premises. In the on-premise tier, nothing leaves at all. That is the only posture that earns a cautious buyer's trust.

V

We say the true thing

We do not call a package auditor-ready until its proof is genuinely anchored. We do not overstate a moat or a guarantee. When something is tamper-evident but not externally witnessed, we label it exactly that. Plain accuracy is the whole value of a compliance vendor.

VI

The regulated party is you

A broker cannot transfer its statutory liability, and we never pretend to absorb it. We are a processor that runs the cycle and produces the record. Our job is to leave a broker defensible, not to stand between them and the regulator.

Where we stand

A compliance institution that happens to use software.

What Lethe is
  • An operator of the Delete Act deletion cycle
  • A producer of verifiable audit evidence
  • Purpose-built for DROP, not retrofitted
  • A processor that keeps the broker defensible
What Lethe is not
  • A startup disrupting privacy
  • A security vendor selling shields and dashboards
  • An advocacy group fighting data brokers
  • A law firm, or a substitute for counsel

On focus

Built for one regulation, on purpose.

Lethe does not span every state, every privacy law, and every compliance need. It does one regulation, California's Delete Act, and the part of it that is hardest to get right and most costly to get wrong: durable suppression and audit-grade proof.

A general privacy platform treats DROP as one checkbox among hundreds. We treat it as the whole job. That narrowness is deliberate. It is why the cycle is correct, why the evidence holds, and why a broker can hand the result to an auditor without a long explanation.

If the cycle is on your desk, start by seeing where you stand.

A readiness assessment is the sober first step: your scope, your exposure, and your gaps, documented and yours to keep.

Request a readiness assessmentAm I a data broker?