Privacy Policy

Last updated: March 17, 2026

1. Introduction

Keepsy ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, which allows you to store and deliver legacy messages to your loved ones.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, and optional phone number when you create an account.
  • Message Content: Text messages, voice recordings, and video messages you create and store on our platform.
  • Recipient Information: Names and contact details of individuals you designate as message recipients.
  • Trusted Contact Information: Names and contact details of individuals you designate as trusted contacts for health check verification.
  • Payment Information: Billing details processed through our third-party payment processor. We do not store your full credit card number.

2.2 Information Collected Automatically

  • Usage Data: Information about how you interact with our platform, including pages visited, features used, and timestamps.
  • Device Information: Browser type, operating system, and device identifiers.
  • Log Data: IP address, access times, and referring URLs.

3. How We Use Your Information

  • To provide, maintain, and improve our services.
  • To process and deliver your legacy messages to designated recipients according to your instructions.
  • To conduct periodic health check verifications as part of our message release protocol.
  • To process payments and manage your subscription.
  • To send you service-related communications, including health check notifications and account alerts.
  • To respond to your inquiries and provide customer support.
  • To detect, prevent, and address technical issues or security threats.

4. Data Security & Encryption

We take the security of your data extremely seriously. All messages stored on our platform are protected with end-to-end encryption. Your message content is encrypted at rest and in transit using industry-standard AES-256 encryption. Access to your messages is restricted to you and, upon release, your designated recipients only.

We use AWS (Amazon Web Services) infrastructure with SOC 2 compliance for hosting and data storage. Authentication is handled through AWS Cognito with secure password hashing and optional multi-factor authentication.

5. Data Sharing & Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Message Delivery: When our release protocol is triggered, your messages are delivered to your designated recipients as per your instructions.
  • Service Providers: We use third-party services for payment processing, email delivery, and cloud infrastructure. These providers only have access to information necessary to perform their functions.
  • Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
  • Safety: We may disclose information if we believe it is necessary to protect the safety of any person or to address fraud or security issues.

6. Data Retention

We retain your account information and message content for as long as your account is active or as needed to fulfill the purpose of our service (delivering your messages when triggered). If you delete your account, we will delete your personal information and message content within 30 days, except where we are required to retain it by law.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion: Request that we delete your personal data.
  • Portability: Request a copy of your data in a portable format.
  • Objection: Object to the processing of your personal data.

To exercise any of these rights, please contact us at the email provided below.

8. Children's Privacy

Our service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child, we will take steps to delete that information.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the platform after changes are posted constitutes your acceptance of the revised policy.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

privacy@projectomega.com