Privacy Policy

Your privacy is fundamental to our mission. This policy explains how we collect, use, and protect your personal information.

Effective Date: January 1, 2025 | Last Updated: January 1, 2025

FarewellFootage ("we," "us," or "our") operates the website farewellfootage.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. We are committed to protecting your privacy and handling your data with transparency and care.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Service.

1. Information We Collect

1.1 Personal Information You Provide

When you register for an account, subscribe to a plan, or use our Service, we may collect the following information:

  • Account Information: First name, last name, email address, phone number, date of birth, and password (stored as a secure hash).
  • Subscription Information: Billing details, payment method, plan selection, and transaction history processed through our third-party payment provider.
  • Farewell Content: Video recordings, text letters, messages, and any other content you create through the Service.
  • Recipient Information: Names, email addresses, phone numbers, and relationships of individuals you designate as message recipients.
  • Death Verification Documents: Death certificates, supporting documentation, and contact information submitted during the verification process.
  • Communication Data: Messages you send to our support team, contact form submissions, and survey responses.

1.2 Information Collected Automatically

  • Log Data: IP address, browser type, operating system, referring URLs, pages viewed, and timestamps.
  • Device Information: Device type, screen resolution, and unique device identifiers.
  • Cookies and Tracking: We use cookies and similar technologies to maintain sessions, remember preferences, and analyze usage patterns.

2. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To create and manage your account, store your farewell messages, process subscriptions, and deliver messages to designated recipients upon verified authorization.
  • Security: To encrypt and protect your content, detect fraud, prevent unauthorized access, and ensure platform integrity.
  • Communication: To send you account-related notifications, verification emails, password resets, subscription confirmations, and important Service updates.
  • Improvement: To analyze usage patterns, improve our features, and enhance user experience.
  • Legal Compliance: To comply with legal obligations, respond to lawful requests, and enforce our Terms of Service.

3. Video Storage and Content Security

Given the sensitive and deeply personal nature of farewell messages, we implement extraordinary measures to protect your content:

  • Encryption at Rest: All video files, text letters, and associated metadata are encrypted using AES-256 encryption while stored on our servers.
  • Encryption in Transit: All data transmitted between your device and our servers is protected by TLS 1.3 encryption.
  • Access Control: Your farewell content is accessible only to you while you are alive. No FarewellFootage employee can view or access your message content without explicit legal authorization.
  • Secure Infrastructure: Our servers are hosted in SOC 2 Type II compliant data centers with physical security, redundant systems, and 24/7 monitoring.
  • Content Isolation: Each user's content is stored in an isolated environment to prevent cross-account access.

4. Data Encryption

We employ multiple layers of encryption to safeguard your data:

  • Passwords are hashed using bcrypt with a cost factor of 12, making them computationally infeasible to reverse.
  • Session tokens, CSRF tokens, and verification tokens are generated using cryptographically secure random number generators.
  • All API communications use HTTPS with TLS 1.3.
  • Database connections are encrypted and access is restricted by IP whitelist.
  • Backup data is encrypted before transfer and storage.

5. Data Retention

  • Active Accounts: Your data, including farewell content, is retained for as long as your account remains active and your subscription is in good standing.
  • Cancelled Subscriptions: Upon cancellation, your data is retained for 90 days to allow for reactivation. After 90 days, content exceeding Free plan limits may be archived. You will receive multiple notifications before any data is removed.
  • Delivered Messages: Messages that have been released to recipients are retained for 12 months after delivery to ensure recipients have adequate time to access them.
  • Account Deletion: If you request account deletion, all personal data and content will be permanently removed within 30 days, except where retention is required by law.
  • Death Verification Documents: Submitted death certificates and supporting documents are retained for 7 years for legal compliance and audit purposes, after which they are securely destroyed.

6. Third-Party Sharing

We do not sell, rent, or trade your personal information or farewell content to third parties. We may share information only in the following limited circumstances:

  • Service Providers: We work with trusted third-party providers for payment processing, email delivery, and cloud hosting. These providers are contractually bound to protect your data and use it solely to perform services on our behalf.
  • Message Delivery: When a death verification is approved, we deliver your farewell messages to your designated recipients via secure email links. Only the specific content designated for each recipient is shared.
  • Legal Requirements: We may disclose information if required by law, subpoena, court order, or government request, or to protect the rights, property, or safety of FarewellFootage, our users, or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity, who will be bound by this Privacy Policy.

7. Your Rights

7.1 GDPR Rights (European Economic Area Residents)

If you are located in the European Economic Area, you have the following rights under the General Data Protection Regulation:

  • Right of Access: You may request a copy of the personal data we hold about you.
  • Right to Rectification: You may request correction of inaccurate or incomplete data.
  • Right to Erasure: You may request deletion of your personal data, subject to legal retention requirements.
  • Right to Restrict Processing: You may request limitation of how we process your data.
  • Right to Data Portability: You may request your data in a structured, commonly used, machine-readable format.
  • Right to Object: You may object to processing based on legitimate interests or direct marketing.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.

7.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

  • Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of personal information we have collected from you.
  • Right to Opt-Out: You have the right to opt out of the sale of your personal information. Note: We do not sell personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise any of these rights, please contact us at privacy@farewellfootage.com or use our contact form. We will respond to verified requests within 30 days.

8. Cookies

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for basic functionality such as user authentication, session management, and CSRF protection. These cannot be disabled.
  • Preference Cookies: Store your preferences such as language settings and cookie consent status.
  • Analytics Cookies: Help us understand how visitors interact with our Service so we can improve functionality and user experience. These are anonymized and do not track individual users across websites.

You can manage cookie preferences through your browser settings. Please note that disabling essential cookies may impair the functionality of our Service.

9. Children's Privacy

FarewellFootage is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we discover that we have inadvertently collected data from a minor, we will promptly delete it. If you believe a child has provided us with personal information, please contact us immediately.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your information in accordance with this Privacy Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by posting the updated policy on our website and, where appropriate, sending you an email notification. Your continued use of the Service after such changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: