Built to be trustworthy for decades, not just today.

At rest:every document is encrypted with AES-256-GCM — the same standard used by U.S. government agencies for top-secret data. Each document gets its own data-encryption key, wrapped by your personal key. Even if our storage was compromised, the documents stay unreadable without your credentials.

In transit: TLS 1.3 between your browser and our servers. No fallback to older, weaker protocols.

Every document you upload gets a cryptographic fingerprint (SHA-256). That fingerprint is then anchored to the Bitcoin blockchain, through a public service called OpenTimestamps. Years later anyone can independently verify that your document existed in this exact form on this exact date. No trust in us required. The math holds.

This is what protects you against the most damaging post-death attack: a contesting heir arguing “Mom changed her will at the end — this version is fake.” We can prove she didn’t, with a record on the most secure public ledger that exists.

When you set up your account, you verify your identity with your driver’s license (captured via QR code on your phone) and a consent video. Both are signed cryptographically using Ed25519 — the signature scheme used by modern operating systems and hardware wallets — and both are anchored to the same public ledger as your documents.

When release time comes, every required signer (executor, heirs, professionals) re-verifies their identity, reviews the release summary, and signs with Ed25519 — optionally drawing their signature with a finger on their phone. The combination of re-authentication + cryptographic signature + finger drawing makes the chain of authorizations extremely difficult to forge.

Multi-factor authentication required. No exceptions. You can use an authenticator app today; passkey support is coming.

Account recovery is not a single email link.Recovery requires multi-factor verification including a pre-designated recovery contact — the same trusted person who can act as a deputy on your account. We refuse to implement the “reset by clicking a link” pattern that’s the source of most account-takeover incidents.

Session protection. Short- lived sessions, device-trust prompts, geographic anomaly detection.

SOC 2 Type II audit, within 12 months of launch — the gold-standard security certification for SaaS companies handling sensitive data.

HIPAA-aligned for the healthcare directives and medical power-of-attorney documents we store.

Texas Data Privacy & Security Act (TDPSA) compliant for Texas residents, with CCPA and GDPR controls available for users in other jurisdictions.

You may sign up at 55 expecting us to be here at 78. So we’ve committed to corporate-continuity guarantees: a bonded third-party data custodian, a successor-entity clause in your service contract, and a fee-waiver provision if Executor Estate ever ceases operations. Your vault contents are preserved even if we don’t survive.

This is the same protection model that funeral homes use for prepaid funeral trust funds in Texas. The principle: your wishes outlive the company that helped you organize them.

You don’t have to trust us. The OpenTimestamps proofs we generate are publicly verifiable using open-source tools. Any technically literate person — or any attorney with access to one — can independently confirm that a document existed in a specific form at a specific time. We surface the proofs in your account so you can hand them to a skeptical heir, attorney, or court without needing our cooperation.