RELAY stores some of the most sensitive data you own — account passwords, legal documents, and final instructions. This policy explains exactly how that data is stored, who can access it, and what happens when you leave.
1. What Data We Store
RELAY stores the following categories of data on your behalf:
- Account credentials: Names, usernames, and passwords for accounts you choose to store. Passwords are stored as entered — they are not re-encrypted by us beyond database-level encryption. Do not store passwords to critical financial accounts if you are uncomfortable with this.
- Documents: Uploaded files (PDFs, images, Word documents) labeled as wills, insurance policies, identity documents, deeds, or other categories. Documents are stored as binary data in our PostgreSQL database.
- Trusted contacts: Names, email addresses, and relationship descriptions for up to 3 contacts.
- Personal instructions: Any notes or instructions you write in your vault.
- Check-in history: Timestamps of your check-ins, configured intervals, and notification status.
2. How Your Data Is Stored
Database: All vault data is stored in a PostgreSQL database hosted by Neon (neon.tech) in the United States. Neon provides:
- Encryption at rest for all stored data
- TLS encryption for all database connections
- Automated backups
- SOC 2 Type II compliance
File storage: Uploaded documents are stored as binary data (BYTEA) in the database — not in a separate file storage system. This means documents are subject to the same database-level protections as all other vault data.
In transit: All data transmitted between your browser and our servers uses TLS (HTTPS). All data transmitted between our application server and the database uses TLS.
3. Who Can Access Your Vault Data
Vault contents (credentials, documents, instructions) are only accessible to you, while you are authenticated. They are never shared with trusted contacts, third parties, or RELAY staff in the normal course of operations.
Access to your vault data occurs in these specific cases:
- You: When you are logged in with a valid session token
- Automated backup systems: Neon's infrastructure creates automated database backups. These are encrypted and exist solely for disaster recovery
- RELAY administrators: May access encrypted database records for technical troubleshooting in exceptional circumstances. Staff access is logged and audited
- Legal requirement: If required by valid legal process (court order, subpoena), we may be required to disclose specific records. We will notify affected users where legally permitted
Trusted contacts never receive vault contents. The only communication sent to trusted contacts is a notification email indicating that you have missed a check-in. That email contains no vault data.
4. The Trusted Contact Notification System
Here is exactly how the notification system works:
- You configure a check-in interval (7, 14, 30, 60, or 90 days)
- If you do not check in by the due date, a 48-hour grace period begins
- If the grace period passes without a check-in, an automated email is sent to each of your trusted contacts
- The email tells them your name, the date you were due to check in, and asks them to contact you
- No vault contents are included in the email
- The notification is sent once per missed check-in cycle
- Checking in resets everything and stops future notifications for that cycle
5. Data Retention
Active accounts: Data is retained for as long as your account remains active.
Cancelled subscriptions: If your subscription lapses, your account and vault data are retained in an inaccessible state for 90 days, during which you may reactivate. After 90 days of non-payment, we may permanently delete your data.
Account deletion: If you request account deletion, all vault data (credentials, documents, contacts, check-in history) is permanently deleted from our production database within 30 days. Backup copies may persist for up to an additional 30 days before expiring naturally.
We do not archive or sell deleted data. Deletion is permanent and irreversible.
6. Data Breach Notification
In the event of a security incident that results in unauthorized access to personal data:
- We will assess the scope and nature of the breach within 24 hours of discovery
- We will notify affected users by email within 72 hours of determining that personal data was compromised
- Notifications will describe what data was affected, what we are doing, and what you can do to protect yourself
- We will notify relevant data protection authorities where required by law
- We will post a public disclosure on our website for significant incidents
7. Data Portability
You have the right to export your vault data at any time. To request a complete export of your data in JSON format, contact us at evereaseos@polsia.app. We will fulfill export requests within 30 days.
8. What Happens to Your Data If We Shut Down
In the event that RELAY ceases operations, we will:
- Provide at least 60 days' notice to all active users via email
- Give users the opportunity to export their vault data during that period
- Permanently delete all user data from our systems at shutdown
9. Contact
Questions about how we use your data? Contact us at evereaseos@polsia.app.