Privacy Policy – echolegacy.life

Effective Date: February 8, 2026 (Updated [Future Date] for Google Sign-In & Meta Pixel Features)

EchoLegacy.life (“we,” “us,” or “our”) operates the website echolegacy.life and related services (the “Service”), which allow users to create interactive digital legacies (avatars) by recording voice, video, stories, memories, and other personal content while alive, for secure preservation and family interaction.

We are committed to protecting your privacy and the privacy of your loved ones. This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you use our Service, including future features like Google Sign-In for login and Meta Pixel for site analytics and marketing. By using EchoLegacy.life, you consent to the practices described here.

1. Information We Collect

a. Information You Provide Directly

Personal identifiers: Name, email address, phone number (for account creation, access, and communications).
Legacy content: Voice recordings, video recordings, photos, text stories, memories, advice, family details, recipes, or other personal narratives you upload or record during guided prompts.
Account details: Preferences, family access invitations (e.g., emails of authorized family members), and any updates you add over time.
Google Sign-In (OAuth login): When you choose “Continue with Google,” we receive basic profile information you permit (e.g., name, email address, profile picture) to create/authenticate your account. You control what is shared via Google’s consent screen.
Payment information: Processed securely via third-party providers (e.g., Stripe); we do not store full card details.

b. Automatically Collected Information

Device and usage data: IP address, browser type, device ID, operating system, pages visited, time/date of access, interaction patterns (e.g., prompts completed).
Cookies and similar tech: For site functionality, analytics, session management, and marketing (detailed in our Cookies Policy).
Meta Pixel (Facebook Pixel): Tracks events like page views, waitlist sign-ups, or button clicks to measure site performance, conversions, and support retargeting/ad optimization. Collects anonymized or pseudonymous data (e.g., browser ID, device info, actions taken).
Cookies from Google Analytics 4 (GA4) and Meta Pixel (e.g., _ga, _fbp, fr—see Cookies Policy for details).

c. Information from Third Parties

From Google (via Sign-In): Basic account info as authorized.
From Meta Platforms (via Pixel): Aggregated event data for analytics/marketing.
We do not pull data from other external sources without explicit consent.

We do not collect sensitive health/medical data unless you voluntarily include it in legacy content (treated with highest security).

2. How We Use Your Information

We use your information solely to provide and improve the Service:

Create/maintain your interactive avatar (AI organizes/retrieves your recorded content for natural conversations).
Enable authorized family to interact with the avatar.
Process payments, manage accounts, and handle authentication (including Google Sign-In).
Analyze usage (via GA4) and measure marketing effectiveness (via Meta Pixel) to improve features and campaigns.
Send service updates, prompts, or access notifications (opt-out available).
Comply with legal obligations.

We do not use legacy content for unrelated purposes, sell personal data, or train external AI models without explicit opt-in consent.

3. Sharing Your Information

We share information only in limited cases:

With authorized family/accessors: Only those you invite can interact with your avatar (you control/revoke anytime).
With service providers/third parties:
- Google LLC (for Sign-In authentication, analytics via GA4).
- Meta Platforms, Inc. (for Pixel tracking, ad measurement, retargeting).
- Hosting/payment providers (e.g., AWS, Stripe)—all bound by strict confidentiality/security.
Legal requirements: If required by law, court order, or to protect rights/safety.
Business transfers: In merger/acquisition, with notice where possible.

We never share legacy content publicly or with marketers unrelated to the Service.

4. Data Storage and Security

All data encrypted in transit (TLS) and at rest.
Stored securely in the US (or compliant regions) with limited access.
Industry-standard measures (firewalls, audits) against unauthorized access/loss.
International transfers (e.g., to Google/Meta in the US): Rely on standard contractual clauses or equivalent safeguards.

No system is 100% secure—use strong passwords and report issues.

5. Data Retention

Legacy content retained as long as your account is active (your “forever” promise).
Analytics/tracking data (GA4, Meta Pixel) retained per provider policies (e.g., GA4 up to 14 months default; Meta per event).
You can request deletion anytime; data removed within 30-90 days (backups purged).

6. Your Rights and Controls

You (or authorized representative) have rights:

Access, correct, update, or export your information/avatar.
Revoke family access, pause/retire avatar, or delete account/content (irreversible).
Opt out of non-essential communications, tracking (via banner), or Meta retargeting.
CCPA/CPRA (California residents): Right to know, delete, opt-out of sales/sharing (we do not sell; use “Do Not Sell or Share My Personal Information” link if added), limit sensitive data use.
GDPR (EU/UK residents): Right to rectification, erasure, restriction, portability, objection; consent withdrawal for non-essential processing (e.g., Pixel, analytics).

Contact privacy@echolegacy.life to exercise rights—we respond within legal timeframes (e.g., 30-45 days).

7. Children’s Privacy

Service not directed at children under 13 (or 16 in some jurisdictions). No knowing collection from children.

8. Changes to This Policy

Updates posted here; significant changes notified via email if you have an account.

9. Contact Us

privacy@echolegacy.life [Your Vamo, FL address]

Thank you for trusting EchoLegacy with your legacy—we take this seriously.

Cookies Policy

Effective Date: February 8, 2026 (Updated [Future Date] for Pixel & Login Features)

EchoLegacy.life (“we,” “us,” or “our”) uses cookies and similar tracking technologies on our website echolegacy.life (the “Site”) to enhance functionality, analyze usage, enable secure login, support advertising/retargeting, and improve our services. This Cookies Policy explains what they are, types used, purposes, durations, and management options. It supplements our Privacy Policy.

What Are Cookies?

Cookies are small text files stored on your device when visiting a website. They enable core functions (e.g., login), remember preferences, track usage, and support ads. We use first-party (set by us) and third-party (set by partners like Google/Meta) cookies.

Types of Cookies We Use

Strictly Necessary Cookies Essential for Site operation (e.g., session management, security, basic navigation). No consent required.
- Examples: Our own session cookies for form submissions or account state.
- Duration: Session or short-term.
- Cannot be disabled without breaking the Site.
Functional / Authentication Cookies Enable enhanced features like login and remember preferences.
- Google Sign-In (for “Continue with Google” login):
  - Sets first-party cookies to manage authentication state, session restoration, and OAuth flow (e.g., sign-in tokens, user ID persistence). May tie into Google’s general cookies (e.g., NID, SID for identity).
  - Purpose: Secure login, auto-restore sessions, share basic profile info (name/email) with consent.
  - Duration: Session or up to persistent (user-controlled).
  - Third party: Google LLC. More info: https://policies.google.com/technologies/cookies
- Our own login session cookies (if email/password added later).
- Duration: Session or as needed for login persistence.
Analytics Cookies Help understand Site usage (pages viewed, time spent, traffic sources) for improvements. Data anonymized/aggregated.
- Google Analytics 4 (GA4):
  - Cookies: _ga, _ga_<container-id>, etc.
  - Purpose: Track unique users/sessions, interactions, reports.
  - Duration: _ga up to 2 years; session cookies ~30 min or browser close.
  - Third party: Google LLC (anonymized data shared).
  - Opt-out: https://tools.google.com/dlpage/gaoptout
  - More: https://support.google.com/analytics/answer/11397207
Advertising / Marketing Cookies Enable ad performance, retargeting, conversion tracking on Meta platforms (Facebook/Instagram). Used for optimizing campaigns and audience building.
- Meta Pixel (Facebook Pixel):
  - Cookies: _fbp (Browser ID), _fbc (Click ID), fr (ad delivery/measurement), and others (e.g., oo for opt-out). Supports first-party mode (default) and third-party where available.
  - Purpose: Track events (page views, sign-ups, waitlist joins), retarget visitors, measure ad ROI, audience segmentation, frequency capping, cross-device matching.
  - Duration: Mostly 90 days (3 months); some shorter or longer per Meta settings.
  - Third party: Meta Platforms, Inc.
  - More info: https://www.facebook.com/privacy/policies/cookies/ and https://developers.facebook.com/docs/meta-pixel/reference
- No other ad networks currently.

We do not use cookies for profiling beyond stated purposes or sell personal data.

How We Obtain Consent

Strictly necessary: No consent needed.
Functional, analytics, advertising: For EU/EEA/UK (GDPR/ePrivacy) or strict regions, we use a cookie consent banner for explicit opt-in before non-essential cookies. Accept/reject/customize anytime.
US users (CCPA/CPRA): Notice here; opt-out via banner or browser. No “sales” of data.
Consent voluntary/withdrawable. We use Google Consent Mode where applicable for GA/Pixel.

Managing Cookies

Consent Banner: Adjust preferences (appears on first visit or via footer link).
Browser Settings: Block/delete cookies (may limit login/Site features).
Specific Opt-Outs: Google Analytics add-on; Meta opt-out via their tools.
Do Not Track: Honored where possible.
Clearing cookies may require re-consent.

Changes

Updates posted here; material changes notified via email if you have an account.

Contact

privacy@echolegacy.life