Privacy Policy

Last Updated: 3/23/2026

Your Privacy Matters

We understand that estate planning information is highly sensitive. This Privacy Policy explains how we collect, use, protect, and share your personal information. We are committed to transparency and compliance with GDPR, CCPA, and other privacy regulations.

1. Information We Collect

Information You Provide

When you use WillWise, you voluntarily provide us with personal information, including:

  • Account Information: Name, email address, password
  • Personal Details: Date of birth, address, marital status
  • Family Information: Spouse details, children information, guardian preferences
  • Beneficiary Data: Names, relationships, allocation percentages
  • Executor Information: Contact details for designated executors
  • Digital Assets: Cryptocurrency wallet addresses, social media accounts, cloud storage details
  • Payment Information: Processed through Stripe (we do not store credit card numbers)

Automatically Collected Information

  • Usage Data: Pages viewed, features used, time spent on platform
  • Device Information: IP address, browser type, operating system
  • Cookies: Session cookies for authentication and preferences
  • Analytics: Anonymized usage statistics to improve our service

2. How We Use Your Information

We use your information to:

  • Provide the Service: Generate legal documents, store your will, manage your account
  • Process Payments: Complete transactions and send receipts
  • Communication: Send service updates, payment confirmations, and support responses
  • Improve the Service: Analyze usage patterns to enhance user experience
  • Legal Compliance: Comply with applicable laws and regulations
  • Security: Detect fraud, prevent abuse, and protect your account

We Will NEVER: Sell your personal information, use your data for advertising, or share your estate planning details with third parties without your explicit consent.

3. How We Protect Your Information

We implement industry-leading security measures to protect your sensitive information:

🔒 Encryption

  • • AES-256 encryption at rest
  • • TLS 1.3 encryption in transit
  • • End-to-end encryption for sensitive fields

🛡️ Access Controls

  • • Multi-factor authentication
  • • Row-level security policies
  • • Limited employee access

💾 Backup & Recovery

  • • Automated daily backups
  • • Encrypted backup storage
  • • Disaster recovery procedures

👁️ Monitoring

  • • 24/7 security monitoring
  • • Intrusion detection systems
  • • Regular security audits

Important: No method of transmission over the internet is 100% secure. While we use commercially reasonable efforts to protect your information, we cannot guarantee absolute security.

4. Security Incident Notification

In the unlikely event of a data breach that affects your personal information, we will:

  • Notify You Promptly: Within 72 hours of discovering the breach
  • Explain What Happened: Describe what data was affected
  • Provide Guidance: Recommend steps you should take to protect yourself
  • Notify Authorities: Report to relevant regulatory authorities as required by law

We maintain a comprehensive security incident response plan and conduct regular security audits to minimize the risk of unauthorized access.

Report a Security Concern: If you suspect unauthorized access to your account or a security vulnerability, immediately contact security@willwise.com

5. Third-Party Services

We use trusted third-party services to provide our platform. These services have access to limited information necessary for their specific functions:

Clerk (Authentication)

Manages user accounts and authentication. Data: Email, name, account credentials.

Stripe (Payment Processing)

Processes payments securely. Data: Payment information (we never store card numbers).

Supabase (Database Hosting)

Hosts our encrypted database. Data: All questionnaire and will data (encrypted).

Vercel (Hosting)

Hosts our application. Data: Usage logs, performance metrics.

Each third-party service is bound by their own privacy policies and has been selected for their strong security practices and compliance with privacy regulations.

6. Your Privacy Rights

Depending on your location, you have the following rights regarding your personal information:

GDPR Rights (EU Residents)

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to certain types of processing

CCPA Rights (California Residents)

  • Right to Know: What personal information we collect and how we use it
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: Opt-out of the sale of personal information (we don't sell data)
  • Right to Non-Discrimination: Equal service regardless of exercising privacy rights

To exercise your rights, email us at privacy@willwise.com or use the account settings in your dashboard. We will respond within 30 days.

7. Data Retention

We retain your information for different periods:

  • Active Accounts: Data retained while your account is active
  • Will Documents: Retained for a minimum of 5 years from creation date, with option for extended retention. See our Terms of Service Section 14 for complete retention policy.
  • Payment Records: Retained for 7 years for tax/legal compliance
  • Support Communications: Retained for 2 years
  • Analytics Data: Anonymized after 12 months

Upon account deletion, we will remove or anonymize your personal information within 90 days, except where we are legally required to retain it (e.g., financial records).

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Essential Cookies: Required for authentication and security (cannot be disabled)
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Understand how you use our service (anonymized)

You can control cookies through your browser settings. Note that disabling cookies may affect functionality of the service.

9. Children's Privacy

WillWise is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover we have collected information from a child, we will delete it immediately.

10. International Data Transfers

Our services are hosted in the United States. If you access our service from outside the U.S., your information will be transferred to, stored, and processed in the United States. By using our service, you consent to this transfer.

For EU residents, we comply with GDPR requirements for international data transfers through appropriate safeguards such as Standard Contractual Clauses.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting a notice on our website
  • Sending an email to your registered email address
  • Updating the "Last Updated" date at the top of this policy

Your continued use of the service after changes become effective constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@willwise.com

Support: support@willwise.com

Website: www.willwise.com/contact

For GDPR-related requests, please include "GDPR Request" in your subject line. For CCPA-related requests, please include "CCPA Request" in your subject line.

Privacy Promise

  • ✓ We encrypt all your data with military-grade security
  • ✓ We will never sell your personal information
  • ✓ We comply with GDPR, CCPA, and other privacy regulations
  • ✓ You have full control over your data (access, delete, export)
  • ✓ We are transparent about how we collect and use information