Privacy Policy

1. Who we are

This Privacy Policy describes how MyLifePapers LLC ("MyLifePapers," "we," "us," or "our") handles personal information collected through:

• the MyLifePapers desktop application,
• the MyLifePapers mobile applications for iOS and Android,
• the website at mylifepapers.com, and
• any related services we offer (together, the "Service").

You can reach us at privacy@mylifepapers.com.

2. Information you give us

We collect personal information only when you give it to us. Specifically:

• When you buy a license, we collect your email address and process your payment through our payment processor. We use the email to deliver your license key and to contact you about your account.
• When you share content with someone using our optional sharing features (Quick Share and Trusted Access), we may temporarily store an email address you provide so the recipient can verify they are the intended viewer.
• When you contact support, we receive whatever you choose to send us — your email address, a description of your problem, and any attachments or screenshots you decide to include.

3. Information your device sends us automatically

Our applications make network requests to our servers and to your chosen cloud providers. These requests carry:

• a license key to confirm your account is active,
• an encrypted data blob when you sync or share (we cannot read the contents),
• standard network metadata that every internet request carries — your approximate IP region (which we hash and truncate before logging) and the request timestamp.

We do not embed analytics SDKs, behavioral trackers, advertising trackers, or session-replay tools in our applications.

4. What we do not collect

We want to be explicit about what we do not see, store, or have access to:

• The contents of your records, passwords, files, notes, or any other data you save in MyLifePapers. These are encrypted on your device using a passphrase that only you know. We do not have, and cannot derive, your passphrase or the key it generates.
• Your passphrase. It never leaves your device. We have no copy and no way to recover it for you. If you saved the recovery code we showed you during setup, you can use it to set a new passphrase yourself — we are not involved in that process and never see your recovery code. If both your passphrase and your recovery code are lost, no one, including us, can recover your data.
• The contents of files you sync through your own cloud account. When you use Google Drive, Dropbox, OneDrive, or iCloud, your encrypted vault is stored in your account. We do not have credentials for your cloud account and never see its contents.
• Your browsing history, location, contacts, photos, calendar, or any other data outside MyLifePapers. We do not request these and we do not access them.
• Analytics or usage tracking. We do not measure which features you use, how often you open the app, or what records you create.

5. How we use your information

We use the personal information we collect to:

• deliver the Service you have purchased,
• verify that your account is active when the application contacts our servers,
• send you operational messages about your account, your purchase, or a security issue that affects you,
• prevent fraud and abuse, including blocking sign-ups that appear automated, and
• comply with our legal obligations.

We do not sell your personal information. We do not share it with advertisers. We do not use it to train AI models.

6. How we use third-party cloud storage

If you connect a third-party cloud provider so MyLifePapers can sync between your own devices, your data is encrypted on your device before it leaves. The provider holds the encrypted vault in a scope we have limited access to. We never see your provider credentials, and neither the provider nor MyLifePapers can read the contents — only a device that holds your passphrase can decrypt them.

The scopes and isolation we use with each supported provider:

Google Drive. We request only the drive.file scope, which lets MyLifePapers access only the files our application creates or opens in your Drive. We do not request and we do not receive access to any other files.

Dropbox. We use Dropbox's App Folder mechanism — a folder created and isolated for our application inside your Dropbox account. We can read and write only inside that folder.

Microsoft OneDrive. We use Microsoft's App Folder mechanism with the equivalent isolated scope. We can read and write only inside that folder.

Apple iCloud Drive. iCloud sync uses your operating system's built-in file syncing. MyLifePapers writes the encrypted vault to a local folder on your device that your operating system mirrors to iCloud. We never connect to iCloud directly; the operating system handles all transfer.

7. Sharing your information with third parties

We share personal information only as described below.

Service providers

We use a small number of third-party services to run MyLifePapers. They are bound by contract to use the information we share with them only to provide their service to us.

Two of these providers matter to how the product works, so we name them:

• Cloudflare hosts our API and the encrypted storage used by our cloud sync, Quick Share, and Trusted Access features. The data stored with them is encrypted before it leaves your device — they cannot read it, and neither can we.
• Stripe processes our payments. When you buy a license, your name, email, and billing details are handled by Stripe under their own terms and privacy policy.

We also use operational providers for things like transactional email delivery and customer support. We will share the current list on request — email privacy@mylifepapers.com.

If you choose cloud sync, you also authorize one of the following at your own choice. We never receive your credentials for these services, and the data we send is encrypted before it leaves your device.

• Google LLC (Google Drive)
• Dropbox, Inc.
• Microsoft Corporation (OneDrive)
• Apple Inc. (iCloud Drive — files stored locally on your device, synced by your operating system)

We do not share your personal information with marketing, analytics, or advertising providers.

Legal requests

We may disclose personal information if we are required to do so by a valid legal process — for example, a court order or subpoena issued in a jurisdiction where we operate. We will challenge requests that we believe are improper, overly broad, or not supported by the law. Because we cannot decrypt your records, we cannot respond to demands for the contents of your data; we can only provide the limited account information described in Section 2.

Business changes

If MyLifePapers is involved in a merger, acquisition, financing, or sale of all or part of our business, personal information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

8. Security

We protect your information with industry-standard practices, including encryption in transit between your device and our servers, encryption at rest on our cloud storage, and access controls limiting which of our personnel can reach administrative systems.

The most important protection of your data is on your device: every record, password, and file is encrypted with a key derived from a passphrase that only you know. No security measure is perfect, but the design of MyLifePapers means that even a successful attack on our servers would not expose the contents of any user's records.

If we ever discover a breach that affects your personal information, we will notify you without undue delay as required by applicable law.

9. How long we keep your information

We keep your information only for as long as we need it to run the Service.

• Account information (license key, email): for as long as your account exists, plus a reasonable period afterward to maintain accurate business and tax records.
• Payment records: for the period required by tax and accounting law, typically seven years.
• Encrypted sync data stored on our cloud sync: until you delete it or close your account.
• Quick Share content: expires at the time limit you choose when you create the share. The maximum allowed is 30 days, after which we delete it automatically.
• Trusted Access content: until you delete the link or your account ends, with a grace period afterward for the link to keep working.
• Access logs for sharing features (timestamp, hashed IP fragment, success or failure): up to 90 days, then deleted.
• Support emails: up to two years from the last reply, then deleted.

10. Deleting your data

You are in control of your data. You can:

• Delete records, passwords, and files at any time inside the application. They move to a trash area you can empty, after which they are removed from your device and from any sync target.
• Stop syncing by disconnecting your cloud provider in Settings. Future changes will stay on your device.
• Revoke our access to your cloud provider directly from that provider's settings page (Google Account → Security → Third-party access; Dropbox → Apps; Microsoft → My account → Privacy → Apps and services). You can do this at any time without telling us.
• Close your account and delete remaining server-side data by emailing support@mylifepapers.com from the address tied to your license. We will confirm the request, delete your license record and any encrypted blobs we hold for you, and notify you when it is complete. Backups may retain copies for up to 30 days before they are overwritten.

11. Children's privacy

MyLifePapers is not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16, we will delete that information promptly. If you believe a child under 16 has provided us with personal information, please contact us at privacy@mylifepapers.com.

12. International transfers

MyLifePapers is operated from the United States. If you use the Service from outside the United States, your information will be transferred to, stored, and processed in the United States and in other countries where our service providers operate. We rely on appropriate legal mechanisms — including the European Commission's Standard Contractual Clauses where applicable — to protect your information when it crosses borders.

13. Your rights

Depending on where you live, you may have the following rights under applicable privacy law (including the General Data Protection Regulation in the European Economic Area and the United Kingdom, and the California Consumer Privacy Act):

• the right to know what personal information we hold about you,
• the right to access and receive a copy,
• the right to correct inaccurate information,
• the right to delete your information,
• the right to restrict or object to how we process it,
• the right to withdraw consent where we relied on it, and
• the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, email privacy@mylifepapers.com from the address tied to your license. We will respond within the timeframes required by applicable law, typically within 30 days. We do not discriminate against you for exercising these rights.

We do not sell or share personal information as those terms are defined under the CCPA, and we have no method to opt out of selling because we do not sell.

14. Changes to this policy

We may update this Privacy Policy from time to time. When we make a material change, we will notify you by email (to the address tied to your license) and post a banner inside the application at least 14 days before the change takes effect. Continued use of the Service after the effective date means you accept the updated policy.

15. How to contact us

• Email: privacy@mylifepapers.com
• Support: support@mylifepapers.com
• Mailing address: MyLifePapers LLC, 5900 Balcones Drive STE 100, Austin, TX 78731, United States

We aim to respond to every request within 5 business days.