1. Introduction

This Privacy Policy explains how Legatry collects, uses, and protects your personal information when you use our family legacy management platform. We are committed to protecting your privacy and ensuring the security of your personal and family information.

2. Information We Collect

Account Information

Name and email address when you create an account
Profile information including optional profile photos
Phone number and bio (if you choose to provide them)
Birth date and relationship information (if you choose to provide them)

Member and Family Information

Family member roles and relationships
Invitation email addresses when you invite others to join
Family member permissions and access levels

Content You Upload

Documents in various formats (PDFs, Word documents, images, text files)
Photos with titles, descriptions, and categories
Document categories and organization preferences
Any content extracted from your documents for analysis

Usage Information

Login timestamps and session information
HeritageAI™ usage including daily scan counts
Document upload and analysis activities
Feature usage and platform interactions

3. How We Use Your Information

Service Provision

Creating and managing your account
Providing document storage and organization
Enabling HeritageAI™ document analysis
Facilitating member management and family invitations
Processing subscription billing and payments

Communication

Sending family invitation emails
Account verification and password reset communications
Service updates and important notifications
Responding to your support requests

Security and Compliance

Monitoring for security threats and unauthorized access
Logging access and activities for security purposes
Enforcing usage limits and fair use policies
Complying with legal obligations

4. Data Storage and Security

🔒 Azure Blob Storage — Your Files Are Never Stored on the Platform

Documents, photos, and stories uploaded to Legatry are not stored on the Legatry application or any Legatry-operated server. All files are stored exclusively in Microsoft Azure Blob Storage — an enterprise-grade, geo-redundant cloud storage service operated and secured by Microsoft.

Documents, photos, and stories reside in Azure Blob Storage — not on Legatry's platform
Files are encrypted at rest using AES-256 and in transit using TLS
Azure Blob Storage is ISO 27001, SOC 2, and GDPR compliant
Access is controlled through secure, short-lived signed URLs — files are never publicly exposed

Security Measures

Secure user authentication and session management
Role-based access controls limiting which family members can view files
All documents, photos, and stories stored exclusively in Azure Blob Storage with AES-256 encryption
File URLs are signed and time-limited — direct access without authentication is not possible
Security logging and monitoring for unauthorized access attempts
Rate limiting to prevent abuse

Document Processing

Document analysis is performed using Azure OpenAI and Azure Document Intelligence — separate from file storage
Files are retrieved from Azure Blob Storage, processed within Microsoft's secure environment, then results are returned to your account
No document content is retained by AI services beyond the analysis session
Analysis results are stored alongside your document metadata in Azure — not on the Legatry platform

5. AI Processing and Data Use

✅ AI Training Policy

We do not use your data to train our AI models
Your documents and content are never used for model training
AI analysis is performed solely for your benefit
Document content is processed temporarily and not retained by AI services

HeritageAI™ Processing

Document text extraction using Azure Document Intelligence
AI analysis for plain language translation and insights
Legacy Foundation document classification
Risk and opportunity identification in documents

6. Information Sharing

Within Your Family

Family members can access content based on their assigned roles and permissions
Owners have full access to all family content
Admins have access to member management and content as permitted
Members have access to content shared with them

Third Parties

We do not sell, trade, or share your personal information with third parties, except:

Microsoft Azure services for cloud infrastructure and AI processing
When required by law or to protect our rights
With your explicit consent

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services.

Account information is retained while your account is active
Documents and content are stored until you delete them or close your account
Deleted content is permanently removed within 30 days
Some information may be retained longer as required by law

8. Your Rights and Controls

Account Management

Update your profile information and preferences
Change your password and security settings
Manage family member roles and permissions
Delete documents and content you've uploaded

Data Access and Deletion

Access and download your data through the platform
Delete specific documents or photos
Request account deletion and data removal
Control sharing and access permissions

9. Cookies and Session Management

We use session management to maintain your login state and provide a secure experience:

Session cookies to keep you logged in
Authentication tokens for secure API access
Security monitoring for unauthorized access prevention

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or for legal, regulatory, or operational reasons. We will notify you of material changes through the platform and update the "Last updated" date at the top of this policy.

Your continued use of Legatry after policy updates constitutes acceptance of the revised terms.

11. Contact Us

If you have questions about this Privacy Policy or how we handle your personal information, please contact us through our support channels available in the application.