Afterword

Privacy Policy

Last Updated: March 2026

Introduction

Afterword ("we," "us," or "the Platform") is a digital legacy platform based in Switzerland. We operate a zero-knowledge, encrypted digital legacy vault that allows users to store and schedule the posthumous delivery of personal messages.

This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the Swiss Federal Act on Data Protection (FADP / DSG) and, where applicable, the EU General Data Protection Regulation (GDPR).

By using the Afterword platform, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this policy, please do not use our services.

Data Controller

The data controller responsible for the processing of your personal data is:

Afterword

Basel-Landschaft, Switzerland

Email: hello@afterword.ch

1. What Personal Data We Collect

Account Data

When you create a vault, we collect your email address for authentication and communication purposes. If you choose SMS-based verification, we also collect your phone number.

Recipient Data

You may provide the names, email addresses, and phone numbers of individuals you designate as message recipients ("your circle"). This data is stored on our global database infrastructure (Supabase) and is protected by access controls and transport-layer encryption (TLS), but is not encrypted at the application level.

Keyholder Data

You may designate a Keyholder — a trusted person who confirms your absence. We collect their name, email address, and optionally their phone number. This data is stored on our global database infrastructure (Supabase) and is not application-level encrypted.

Legacy Content (Zero-Knowledge)

You may upload text messages, voice notes, videos, and other media to your vault. This content — and only this content — is encrypted using AES-256 at rest and stored exclusively on Swiss sovereign infrastructure via Exoscale. Under our zero-knowledge model, we cannot read, view, or access this media content at any time.

Payment Data

Payment processing is handled entirely by Stripe, Inc. We do not store credit card numbers, bank account details, or other payment instrument data on our servers.

Usage & Technical Data

We may collect minimal technical data necessary for the operation and security of the platform, including IP addresses (for authentication security), browser type, and session identifiers. We do not use tracking pixels, behavioral analytics, or advertising cookies.

2. How We Use Your Data

We process your personal data solely for the following purposes:

  • Account Creation & Authentication: To verify your identity, provide secure passwordless login, and manage your session.
  • Vault Operations: To store, encrypt, and manage your legacy content and recipient information.
  • Pulse Check Protocol: To send periodic check-in notifications via email or SMS, confirming your continued activity.
  • Message Delivery: To release your encrypted messages to designated recipients upon confirmation of your absence.
  • Payment Processing: To process your one-time membership payment via our payment processor.
  • Customer Support: To respond to inquiries and provide technical assistance.
  • Service Communications: To send essential transactional emails (e.g., login codes, pulse check alerts, security notifications).

We do not sell, rent, or share your personal data with third parties for marketing purposes. We do not use your data for profiling, automated decision-making, or advertising.

3. Legal Basis for Processing

Under the Swiss FADP and, where applicable, the GDPR, we process your data based on:

  • Performance of a Contract (Art. 6(1)(b) GDPR / Art. 31 FADP): Processing necessary to deliver the services you purchased.
  • Consent (Art. 6(1)(a) GDPR / Art. 31 FADP): Where you voluntarily provide data or opt into specific features such as SMS-based pulse checks.
  • Legitimate Interest (Art. 6(1)(f) GDPR / Art. 31 FADP): For security measures, fraud prevention, and platform integrity.

4. Data Architecture & Sovereignty

We employ a deliberate dual-region architecture to balance global accessibility with data sovereignty:

Account, Recipient & Keyholder Data (Global)

Your account information (email, phone, name), recipient details, and keyholder details are managed through Supabase (global infrastructure). This data is protected by strict access controls, Row-Level Security (RLS) policies, and TLS encryption in transit, but is not encrypted at the application level.

Legacy Media Content (Switzerland)

Your vault's media content — voice notes, videos, and file attachments — is stored exclusively on sovereign Swiss servers via Exoscale, a Swiss-operated cloud provider.

Encryption

All legacy media content stored on Exoscale is encrypted using AES-256 encryption at rest. We operate on a zero-knowledge model for this content: we cannot read, view, or access your stored media. File integrity is ensured through MD5 checksum verification.

5. Third-Party Data Processors

We engage the following third-party processors:

ProviderPurposeData Processed
SupabaseAuthentication & databaseEmail, session tokens, account metadata
ExoscaleSwiss sovereign content storageEncrypted vault content (messages, media)
Stripe, Inc.Payment processingBilling details, transaction records
ResendTransactional email deliveryEmail address, email content
TwilioSMS notifications (pulse check)Phone number, SMS content
Google Cloud VisionDocument verification (keyholder)Uploaded certificate images (processed, not stored)
Google AnalyticsWebsite analytics & conversion trackingAnonymized usage data, IP address, page views

All processors are bound by data processing agreements in accordance with applicable data protection laws.

6. Cookies & Tracking

We use essential, first-party cookies strictly necessary for authentication and session management.

We also use Google Analytics 4 to measure website traffic and feature usage.

We do not use advertising cookies, behavioral tracking pixels, or cross-site tracking for marketing purposes.

7. Data Retention

Vault Content: Your encrypted legacy content is retained indefinitely until one of the following occurs: (a) you manually delete it, (b) you delete your account, or (c) the content is released to your designated recipients through the Silence Protocol.

Account Data: Account information is retained for the lifetime of your membership. If you choose to delete your account ("Wipe Vault"), all data is permanently and irrecoverably purged from our Swiss servers.

Payment Records: Transaction records are retained by Stripe in accordance with applicable financial regulations.

8. Your Rights

Under the Swiss FADP and, where applicable, the GDPR, you have the following rights:

  • Right of Access: You may request information about what personal data we hold about you.
  • Right of Rectification: You may update or correct your personal data through your account settings.
  • Right of Deletion: You may permanently delete your account and all associated data at any time via the "Wipe Vault" function.
  • Right to Data Portability: You may export your account data in a machine-readable format.
  • Right to Object: You may object to specific processing activities by contacting us.
  • Right to Lodge a Complaint: You may file a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC).

To exercise any of these rights, contact us at hello@afterword.ch.

9. International Data Transfers

Your vault media content remains within Swiss jurisdiction at all times via Exoscale. Account data is processed by Supabase on global infrastructure. Where personal data is transferred outside of Switzerland or the EEA, we ensure appropriate safeguards are in place.

10. Security Measures

We implement the following security measures:

  • AES-256 encryption at rest for vault media content (stored on Exoscale, Switzerland)
  • TLS encryption in transit for all communications
  • Zero-knowledge architecture for vault media
  • Row-Level Security (RLS) policies on all database tables
  • Passwordless authentication via one-time codes
  • Multi-factor authentication for keyholders
  • MD5 checksum integrity verification for all stored media
  • Swiss sovereign infrastructure for media content storage

11. Master Recovery Code

Upon account creation, you are issued a unique Master Recovery Code. Under our zero-knowledge framework, we do not retain a readable copy of this code. It is your sole responsibility to store it securely and offline.

12. Children's Privacy

Afterword is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any material changes will be communicated via email. Continued use of the service constitutes acceptance of the updated policy.

14. Contact

For privacy-related inquiries, data requests, or complaints:

Afterword — Privacy Office

Basel-Landschaft, Switzerland

Email: hello@afterword.ch

For general inquiries, visit our Contact page or email hello@afterword.ch. For the full legal agreement, please review our Terms of Service.