Legal

Privacy Policy

Effective Date: April 8, 2026

Our Core Commitment

TrustArchive is designed from the ground up to keep your data on your machine. We do not collect, transmit, store, or have access to any of the trust data, financial records, beneficiary information, or documents you manage in TrustArchive. This is not a policy position — it is an architectural reality. The software has no cloud backend and makes no connection to our servers during normal operation.

1. What Data We Collect

Purchase and account data
When you purchase a license, our payment processor (Stripe) collects your payment information. We receive your email address and the license tier you purchased. We do not store your payment card details.
License and activation data
When you activate TrustArchive, we store a hardware fingerprint — a one-way hash of your machine identifiers — associated with your license key in our license database (Supabase). This is used solely to enforce the machine activation limit on your license. The fingerprint cannot be reversed to identify your hardware.
Email communication
We use your email address to deliver your license key, send renewal reminders, and respond to support requests. We do not send marketing email without your consent.

2. What Data We Do Not Collect

We do not collect, transmit, or have access to any of the following — this is an architectural reality, not just a policy position:

  • Any trust data, financial records, or accounting entries you create in TrustArchive
  • Beneficiary names, contact information, or distribution records
  • Document contents or uploaded files
  • AI Assistant queries or responses
  • Any data from within the application during normal use

3. Local AI Processing

The TrustArchive Agent Assistant runs entirely on your device using locally installed AI models via Ollama. Your queries, your trust data, and the AI's responses never leave your machine. We have no visibility into your AI usage.

4. Third-Party Services

Stripe
Processes payments and manages subscription billing. Stripe receives your payment details and billing information during checkout. Their privacy policy governs data collected during checkout and billing.
Supabase
Hosts our license database. Supabase stores your email address, license key, license tier, and hardware activation fingerprint. This data is used solely to manage your license and is not used for any other purpose.
Resend
Delivers transactional emails including your license key, renewal reminders, and support replies. Email content is limited to license and billing information.

We do not use advertising networks, analytics platforms, or tracking pixels on our website or in the software.

5. Data Security

All trust data is encrypted at rest using SQLCipher, an industry-standard encrypted database. The encryption key is derived from your master password and is never transmitted anywhere. We do not have the ability to decrypt your data even if compelled. Your license and account data stored in Supabase is encrypted at rest and in transit.

6. Data Retention

We retain your email address and license record for as long as your subscription is active and for up to 3 years after cancellation for billing and support purposes. You may request deletion of your account data by contacting us.

7. Your Rights

You may request a copy of the personal data we hold about you (email address, license record, activation fingerprint), request correction of inaccurate data, or request deletion of your data by contacting support@trustarchive.co. We will respond within 30 days.

8. Children

TrustArchive is not directed at children under 13 and we do not knowingly collect data from children.

9. Changes to This Policy

We will notify you of material changes to this policy via email at least 30 days before they take effect.

10. Contact

Privacy questions: support@trustarchive.co