LifeLedgerLifeLedgerBack to Home

Privacy Policy

Last updated: February 5, 2026

1. Introduction

LifeLedger ("we", "our", or "us") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our digital legacy management service.

We comply with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

2. Data Controller

LifeLedger is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact our Data Protection Officer at privacy@lifeledger.com.

3. Information We Collect

We collect the following types of personal data:

  • Account Information: Email address, name, phone number, and password (hashed)
  • Digital Account Data: Account names, usernames, encrypted passwords, and notes you choose to store
  • Trusted Contact Information: Names, email addresses, and relationships of your designated contacts
  • Legacy Letters: Personal messages you create for your trusted contacts
  • Usage Data: Check-in history, login times, and activity logs
  • Technical Data: IP address, browser type, device information, and cookies

4. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

  • Contract Performance: To provide you with our services as agreed in our Terms of Service
  • Consent: For marketing communications and optional analytics
  • Legitimate Interests: To improve our services, prevent fraud, and ensure security
  • Legal Obligation: To comply with applicable laws and regulations

5. How We Use Your Information

We use your personal data to:

  • Provide and maintain our digital legacy management service
  • Send check-in reminders and important account notifications
  • Notify your trusted contacts when triggered by the dead man's switch
  • Deliver your legacy letters to designated recipients
  • Improve and personalize your experience
  • Respond to your inquiries and provide customer support
  • Detect and prevent fraud, abuse, and security incidents

6. Data Security

We implement industry-leading security measures to protect your data:

  • Encryption: All sensitive data is encrypted using AES-256-GCM encryption
  • Zero-Knowledge Architecture: Your encrypted data can only be decrypted with your master password
  • Secure Transmission: All data is transmitted over TLS 1.3 encrypted connections
  • Access Controls: Strict access controls and audit logging for all systems
  • Regular Audits: Third-party security audits and penetration testing

7. Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time for consent-based processing

To exercise any of these rights, please visit your account Settings or contact us at privacy@lifeledger.com.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide our services. After account deletion:

  • Your data will be permanently deleted within 30 days
  • Backup copies are purged within 90 days
  • Some data may be retained for legal compliance (e.g., financial records for 7 years)

9. Cookies and Tracking

We use cookies for:

  • Essential Cookies: Required for authentication and security
  • Analytics Cookies: To understand how you use our service (with consent)
  • Marketing Cookies: To deliver relevant advertisements (with consent)

You can manage your cookie preferences through our cookie banner or your browser settings.

10. International Data Transfers

Your data may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your data during international transfers.

11. Third-Party Services

We use the following third-party services:

  • Supabase: Database and authentication (Data Processing Agreement in place)
  • Vercel: Hosting and infrastructure
  • Email Service Providers: For transactional emails and notifications

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes via email or through our service. Your continued use of LifeLedger after such modifications constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

LifeLedger Data Protection Officer

Email: privacy@lifeledger.com

You also have the right to lodge a complaint with your local data protection supervisory authority.