Last updated: May 26, 2026
This Privacy Notice for LegacySafe ("we," "us," or "our") describes how and why we might access, collect, store, use, and/or share your personal information when you use our Services, including when you visit legacysafe-web-cyan.vercel.app, use our mobile application (Legacy Safe), or engage with us in other related ways. Questions or concerns? Contact us at [email protected].
We collect personal information that you voluntarily provide when you register, express interest in our products, participate in activities, or contact us. This includes:
When necessary and with your consent, we may process: health data, genetic data, financial data, biometric data, data about sexual orientation, racial or ethnic origin, political opinions, religious beliefs, credit worthiness, trade union membership, student data, and government identifiers.
As a digital estate vault, we also store the following data on your behalf — encrypted and accessible only to you and your designated nominees post-death:
Payment data is handled by Stripe and Razorpay. We do not store your card details.
If you use our mobile app, we may collect geolocation information to provide location-based services. You can manage permissions in your device settings.
We process your personal information to provide, improve, and administer our Services — and only when we have a valid legal reason to do so. Purposes include:
The GDPR and UK GDPR require us to explain the valid legal bases we rely on:
We process your information with your express or implied consent. You may withdraw consent at any time. In exceptional cases permitted by law, we may process without consent (e.g., fraud prevention, legal obligations, protecting next of kin).
Yes. We offer AI-powered features including AI document generation and extraction. These are powered by third-party AI Service Providers including Anthropic and OpenAI.
Your input, output, and personal information may be shared with these providers solely to enable AI features. All processing adheres to our Privacy Notice and our agreements with those providers. You must not use AI features in any way that violates the terms of any AI Service Provider.
To opt out of AI features, update your preferences in your account settings.
Our servers are located in India. If you access our Services from outside India, your information may be transferred to, stored by, and processed in India and other countries where our third-party providers operate.
If you are a resident of the EEA, UK, or Switzerland, we protect your personal information using the European Commission's Standard Contractual Clauses and, where applicable, Binding Corporate Rules (BCRs). Our Standard Contractual Clauses and BCRs can be provided upon request.
We retain your personal information only for as long as necessary for the purposes outlined in this Notice — generally for as long as you have an active account with us, unless a longer retention period is required by law.
When we have no ongoing legitimate need to process your information, we will delete or anonymize it. If immediate deletion is not possible (e.g., backup archives), we will securely isolate it until deletion is feasible.
We implement appropriate technical and organizational security measures, including AES-256 encryption at rest, secure transmission protocols, and access controls. However, no electronic transmission over the internet is 100% guaranteed secure. We cannot promise that hackers or unauthorized third parties will never defeat our security measures. Transmission of personal information to and from our Services is at your own risk — please only access the Services within a secure environment.
We do not knowingly collect, solicit data from, or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or are the parent/guardian of a minor consenting to their use. If we learn that data from a user under 18 has been collected, we will deactivate the account and delete the data. Contact us at [email protected] if you believe we have collected data from a minor.
Depending on your location, applicable data protection laws may give you rights including: access and copy, rectification, erasure, restriction of processing, data portability, and objection to automated decision-making. You may also have the right to object to processing and to withdraw consent at any time.
If you are in the EEA or UK and believe we are unlawfully processing your data, you may complain to your Member State data protection authority or the UK data protection authority. In Switzerland, contact the Federal Data Protection and Information Commissioner.
You may review or update your account information at any time via your account settings. Upon requesting account termination, we will deactivate and delete your data from active databases, though we may retain some information to prevent fraud or comply with legal requirements.
For privacy rights questions, email [email protected].
Most browsers include a Do-Not-Track ("DNT") feature. No uniform technology standard for recognizing DNT signals has been finalized, so we do not currently respond to DNT browser signals. California law requires us to disclose this. If an industry standard is adopted in the future, we will update this Notice accordingly.
We do recognize and honor Global Privacy Control (GPC) signals. If your browser or extension supports GPC, we will treat it as a valid opt-out from the sale or sharing of your personal information for targeted advertising under applicable state privacy laws. Learn more at globalprivacycontrol.org.
If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have rights to access, correct, delete, or obtain a copy of your personal information, and to opt out of its sale or use for targeted advertising.
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Name, alias, postal address, phone number, IP address, email, account name | YES |
| B. California Customer Records | Name, contact information, education, employment, financial information | NO |
| C. Protected classification characteristics | Gender, age, date of birth, race and ethnicity, national origin, marital status | YES |
| D. Commercial information | Transaction information, purchase history, financial details, payment information | YES |
| E. Biometric information | Fingerprints and voiceprints | YES |
| F. Internet or network activity | Browsing history, search history, interaction data | NO |
| G. Geolocation data | Device location | NO |
| H. Audio, electronic, sensory information | Images and audio/video recordings | NO |
| I. Professional or employment information | Business contact details, job title, work history | YES |
| J. Education information | Student records and directory information | YES |
| K. Inferences from personal information | Profile or summary about individual preferences | YES |
| L. Sensitive personal information | Account login, biometric data, financial account access, health data, genetic data, government IDs, and more | YES |
We only collect sensitive personal information as defined by applicable law or with your consent. We retain each category for as long as the user has an active account with us.
Submit a request at legacysafe-web-cyan.vercel.app/contact or contact us using the details in Section 16. We will honor your opt-out preferences if you use the Global Privacy Control.
You may designate an authorized agent to make a request on your behalf. We may deny requests from agents who cannot prove valid authorization. To appeal a declined request, email [email protected].
Yes. We may update this Privacy Notice from time to time to stay compliant with relevant laws. The updated version will be indicated by an updated "Last updated" date at the top. If we make material changes, we may notify you by prominently posting a notice or sending a direct notification. We encourage you to review this Notice frequently.
If you have questions or comments, contact us at:
You have the right to request access to the personal information we collect, details about how we have processed it, corrections of inaccuracies, or deletion of your personal information. You may also have the right to withdraw your consent to processing.
To submit a data request, visit legacysafe-web-cyan.vercel.app/contact or contact us at [email protected]. We will consider and act upon any request in accordance with applicable data protection laws.
How Do We Handle Your Social Logins?
Our Services offer the option to register or log in using third-party social media accounts (e.g., Google, Facebook). If you do so, we receive certain profile information — typically your name, email address, and profile picture.
We use this information only as described in this Privacy Notice. We are not responsible for how your social media provider uses your data — please review their privacy policy separately.