Privacy Policy
Last updated: April 2026
1. Data We Collect
We collect information you provide directly: name, email address, password (hashed), profile information, and content you upload (messages, files, credentials). We also collect usage data, device information, and cookies for analytics and service improvement.
2. How We Use Your Data
Your data is used to provide the Everlasting service, including storing and delivering your digital legacy to designated beneficiaries. We use your email for account notifications and service updates. We never sell your personal data to third parties.
3. Security & Encryption
All data is encrypted in transit (TLS) and at rest (AES-256). We implement zero-knowledge architecture where possible, meaning even Everlasting staff cannot access your encrypted content. Regular security audits are conducted to maintain the highest standards of data protection.
4. Your Rights (GDPR)
Under GDPR, you have the right to: access your personal data, rectify inaccurate data, erase your data (right to be forgotten), restrict processing, data portability, and object to processing. To exercise these rights, contact us through our contact page.
5. Data Retention
Your data is retained for as long as your account is active or as needed to provide the Service. Upon account deletion, your data will be securely erased within 30 days, except where required by law or for legitimate business purposes.
6. Cookies
We use essential cookies for authentication and session management. Analytics cookies may be used to improve the Service. You can manage cookie preferences through your browser settings.
7. Third-Party Services
We use Stripe for payment processing. Stripe has its own privacy policy governing the handling of payment data. We do not store credit card information on our servers.
8. Contact
For privacy-related questions or to exercise your data rights, please contact us through our contact page.