Privacy Policy

Effective Date: 23rd May 2025

This Privacy Policy explains how DearTomorrow ("we", "us", "our") collects, uses, stores, and protects your personal data when you use our services at deartomorrow.co.uk.

1. What We Collect

When you use our platform, we may collect the following types of information:

  • Your name, email address, and contact information
  • Recipient names, addresses, and delivery instructions
  • Message content you write or upload
  • Uploaded media files (photos, video, audio)
  • Legal delivery instructions (e.g., reference codes for your will)
  • Payment details (processed securely by third-party providers)
  • Device/browser metadata and anonymised analytics (via cookies)

2. How We Use Your Data

We use your data solely to:

  • Store and deliver your letters on the chosen date
  • Notify and authenticate delivery contacts, if needed
  • Process payments and manage your account
  • Respond to support requests and technical issues
  • Securely store your message and attachments over time

3. Sensitive Content and Message Privacy

All messages and media attachments are treated as private and confidential. We never read, review, or analyse message content unless legally required or requested by you for support reasons.

  • Digital letters are encrypted and stored securely.
  • Handwritten letters are stored physically in a secure, access-controlled location and remain sealed until delivery.
  • Attached media is encrypted and accessible only via a secure link shared with the recipient at time of delivery.

4. Post-Death Delivery

If you’ve chosen to send a letter after your death, we rely on your legal representative or a nominated trusted contact to notify us when to deliver. We provide sample legal text for inclusion in your will to support this.

We will not access or deliver the letter unless formally instructed via the process you set up.

5. Data Retention

We retain your data only as long as necessary to fulfil the delivery of your message, or until you request deletion. For lifetime or after-death letters, data is stored indefinitely or until triggered for delivery.

You may delete or edit your content at any time before the scheduled delivery date, unless the message is marked as final and locked by you.

6. Your Rights

Under UK GDPR law, you have the right to:

  • Access the personal data we hold about you
  • Correct or update any inaccuracies
  • Request deletion of your data (where legally and contractually permitted)
  • Withdraw consent for optional communications
  • Request a copy of your stored data in a portable format

To exercise these rights, contact us at [email protected].

7. Data Sharing

We do not sell or share your personal data with third parties. The only exceptions are:

  • Our payment processor (for secure transactions)
  • Our hosting and email partners (to store and deliver your data securely)
  • Law enforcement, if legally required

8. Cookies

We use minimal cookies to support functionality and basic analytics. You can control cookies via your browser settings.

9. Security

We take security seriously. All communication with our platform is encrypted (SSL/TLS), and we use secure storage for both digital and physical letters. Access to message content is strictly limited to the intended delivery process.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the site. Continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or how we use your data, please contact:

Email: [email protected]