Your most private information lives here. Here's how we protect it.

Every piece of information you store in LifeAccount is encrypted — both when it’s traveling between your device and our servers, and when it’s sitting on our servers.

In transit:All communication uses TLS 1.2 or higher — the same standard used by banks. No one can intercept your data as it travels.

At rest: Your vault content is encrypted using AES-256 before it is stored. AES-256 is the encryption standard used by the U.S. government to protect classified information.

In plain English: Even if someone broke into our servers, your data would be unreadable without the keys we control under strict access protocols.

Each member’s vault is invisible to every other member at the database level. We use row-level security (RLS) so that even a misconfigured query cannot return another member’s data.

LifeAccount staff do not access vault content as part of normal operations. Administrative access requires elevated credentials and is logged via our database’s query log. Access is reserved for security investigations, legal compliance, or with your explicit consent. We do not read your vault content for any other purpose, and we do not use it to train AI models or for analytics.

The only people who can ever see your vault content are:

• You
• Trusted contacts and executors you have explicitly designated, and only when the conditions you set have been met (see Executor Activation below)
• Inner Circle members, and only for specific items you have explicitly shared

Your account is protected by:

• Encrypted password storage — we never store your password in plain text
• Three-checkbox signup acknowledgment — every account must explicitly agree to age/U.S. residency, Terms and Privacy Policy, and the depository disclaimer before the account is created. Each acknowledgment is recorded permanently with timestamp, IP, and document version.
• Two-factor authentication (2FA) using TOTP codes, available on every account, recommended for paid plans
• Single-use backup codes issued at 2FA setup
• Sign-in alerts on new device or location
• Auto-logout after extended inactivity, configurable in Settings
• Email verification required for every new account

What you can do:

• Use a strong, unique password
• Enable two-factor authentication — it takes 90 seconds and is the single biggest thing you can do to protect your account
• Keep your email account secure (it’s the recovery path)
• Never share your credentials
• Contact hello@lifeaccount.com immediately if you suspect your account has been compromised

We maintain permanent, immutable logs of every action that affects who can see your data:

• Inner Circle activity — joins, leaves, shares, unshares, removals, dissolutions
• Consent activity— partner referral grants and revocations, email preference changes, AI processing acknowledgments
• Signup acknowledgments — the three legal acknowledgments you made when creating your account, with timestamp, IP, browser, and document versions
• Partner referrals— every outbound referral with snapshot of what was sent
• Cancellation activity — when and why

You can view your consent history in Settings → Consent & sharing, and your Inner Circle activity within each Circle’s history view. We are building a unified audit log viewer that will surface every recorded action in a single place. Until then, you can request a full audit export by emailing hello@lifeaccount.com.

We never delete audit log entries. They survive even after you close your account (with your identity anonymized).

LifeAccount runs on a small set of trusted vendors. All are U.S.-hosted; we do not transfer your data outside the United States.

• Supabase— database, authentication, file storage. U.S.-hosted. SOC 2 Type 2.
• Vercel— application hosting. U.S.-hosted. SOC 2 Type 2.
• Anthropic— AI processing for Grace. U.S.-hosted. SOC 2 Type 2.
• Stripe— payment processing. PCI DSS Level 1.
• Resend— transactional email delivery. SOC 2 audited.

Each vendor processes your information on our behalf, under contract, and only for purposes we have authorized.

Your data is backed up automatically by our database provider, Supabase, on their Pro plan. Current backup posture:

• Daily backups retained for 7 days at Supabase
• Point-in-time recovery available within the retention window
• Backups are encrypted at rest using AES-256

What we are building (committed to in our Privacy Policy and Terms of Service):

• Nightly off-site backups to a separate cloud provider, so a failure at our primary host cannot take your data with it
• A target Recovery Point Objective of 1 hour (current is ~24 hours via Supabase daily backups)
• A target Recovery Time Objective of 4 hours
• Quarterly tested restore drills to verify backups actually work

These improvements are in development and will be in place before our public paid launch. We will update this section as each is shipped. We do not claim production-grade off-site backups or quarterly restore testing until they are live and tested.

What this means for you today: in the unlikely event of a complete data loss at Supabase, the maximum amount of data you could lose is approximately 24 hours’ worth. We are working to bring that down to 1 hour.

LifeAccount is a depository. We do not gatekeep your information; we hold it securely for the person you chose to receive it. When you pass, your designated executor is responsible for initiating access — we do not monitor for it on our own.

Once your executor begins the activation process, our role is to confirm two things: that the request is legitimate, and that the person making it is the person you named.

Our activation process:

1. The executor submits a request through the platform or by emailing hello@lifeaccount.com
2. They provide a copy of the death certificate
3. They provide identity verification confirming they are the executor you designated
4. We initiate a 30-day anti-fraud waiting period during which we attempt to reach you through every contact method on file
5. If we receive no response and the documentation checks out, your executor’s access activates at the end of the waiting period

This process protects against premature access and fraud. It is not a substitute for your executor’s responsibility to act when the time comes. We will not initiate or supervise the use of the executor access you have granted.

What you can do today:

• Tell them they have been designated
• Make sure they know to access LifeAccount when you pass
• Leave them basic instructions (with your attorney, in a sealed envelope) on how to begin the activation process
• Periodically review and update your designation

Designating someone in LifeAccount does not grant them legal authority. Legal executor authority comes from your will and the probate court.

What we don’t do matters as much as what we do:

• We do not sell your data to anyone, ever.
• We do not share your data with advertisers or data brokers.
• We do not use your conversations with Grace, your vault content, or your personal information to train AI models — our own or any third party’s. Anthropic, our AI provider, also does not train models on API conversations.
• We do not use third-party advertising cookies, retargeting pixels, or cross-site tracking on the signed-in product.
• We do not transfer your data outside the United States.
• We do not access your vault content for analytics, profiling, or product research.
• We do not act on your behalf after you pass. LifeAccount is a depository; your designated executor initiates the activation process.
• We do not provide legal, financial, medical, tax, or insurance advice. We hold your information securely; we do not interpret it for you, recommend actions, or substitute for a qualified professional.

SOC 2 Type 2: We are working toward SOC 2 Type II certification. We will publish the report on this page when the audit completes.

State privacy laws: We comply with the California Consumer Privacy Act (CCPA / CPRA) and equivalent laws in Colorado, Virginia, Connecticut, Utah, and other states. See our Privacy Policy for the specific rights you have under each.

FTC Endorsement Guides: When we refer you to a partner advisor, we disclose any material connection at the moment of the referral. See our Privacy Policy section 5 and Terms of Service section 11.

HIPAA: LifeAccount is not a HIPAA covered entity. Medical information you store is treated as sensitive personal information subject to additional protections.

Permanent acknowledgment record: Every new account is created only after three explicit, separately-checked acknowledgments. These are recorded permanently with timestamp, IP address, browser, and the exact version of each document agreed to.

If we become aware of a security incident that affects your data, we will:

1. Contain the incident as quickly as possible
2. Notify affected users by email within 72 hours of confirming the incident
3. Provide a clear explanation of what happened, what data was affected, and what we are doing about it
4. Report to relevant authorities as required by applicable law

This 72-hour notification timeline meets or exceeds the breach-notification requirements of every U.S. state’s data-breach law.

We will never downplay a security incident or delay notification to protect our reputation. Trust is built or lost in moments like that.

If you discover a security vulnerability in LifeAccount, please report it to us responsibly before making it public.

Email: hello@lifeaccount.com
Subject line: Vulnerability Report

Include a description of the issue, steps to reproduce it, and the potential impact. We will acknowledge your report within 48 hours and keep you informed as we investigate.

We do not pursue legal action against security researchers who report vulnerabilities in good faith.

Security is a shared responsibility. We protect our systems — you protect your account.

• Use a strong password that’s unique to LifeAccount.
• Enable two-factor authentication. Settings → Security. 90 seconds, biggest single thing you can do.
• Keep your email secure. It’s the recovery path for your account.
• Don’t share your login. We will never ask for your password.
• Review your trusted contacts periodically.
• Log out on shared devices.
• Tell your executor. Designating someone means nothing if they don’t know. Have the conversation.

We believe security commitments should be public and verifiable. Here’s what we’re currently working on:

• Nightly off-site backups to a second cloud provider — in development
• 1-hour Recovery Point Objective + 4-hour Recovery Time Objective — in development
• Quarterly restore drills — first drill scheduled after off-site backup deployment
• Unified audit log viewer in Settings — in development
• SOC 2 Type 2 certification — engagement planning underway

This list is updated as commitments are met or new ones are added.

If you have questions about our security practices, email us at hello@lifeaccount.com.

LifeAccount
30 N Gould St, #43019
Sheridan, WY 82801
United States