Privacy Policy

1. Information We Collect

We collect information you provide when creating an account, adding memorials, uploading photos, and using location services. This includes names, dates, GPS coordinates, photos, and contact information.

2. How We Use Your Information

Your information is used to provide our memorial services, enable location-based features, send notifications about visits and family activity, and improve our platform.

3. Location Data

GPS coordinates are central to our service. We use location data to pin memorial sites, detect visits, enable cemetery navigation, and deliver FootPrints messages. Location tracking can be disabled in your device settings at any time.

4. Data Sharing

We do not sell your personal information. Memorial data is shared only with family members you explicitly invite. Public memorials are visible to anyone with the link. B2B partners (cemeteries, funeral homes) can view memorials created through their organization.

5. Data Storage & Security

Your data is stored securely using Supabase infrastructure with encryption at rest and in transit. Photos and media are stored in secure cloud storage. Death certificates and sensitive validation documents are stored in access-restricted storage.

6. Your Rights

You can access, export, or delete your data at any time through your account settings. Memorial data can be transferred to another family member before deletion.

7. Your Right to Erasure (GDPR Article 17)

You may permanently delete your account from Settings → Danger zone → Delete account. Deletion is immediate and irreversible — there is no waiting period, no recovery window, and no soft-delete shadow record. The moment you confirm, the following happens in a single transaction:

• Your authentication record (auth.users) is removed.
• Your profile, memorials you created, photos, visits, family connections, FootPrints, Legacy Letters, and any organization memberships are deleted via cascading foreign keys. We retain no shadow copies of the deleted rows.
• Public-facing memorial pages you owned stop resolving immediately. Cached copies on the public internet (search engines, social previews) are outside our control and may persist for as long as those caches hold them.
• Your active session is invalidated before the underlying row is removed, so no signed-in cookie can outlive your account.

After deletion completes, we send a one-time confirmation email to the address that owned the account. This is solely so you can detect an unauthorised closure of your account — if you receive this email and did not request the deletion, contact security@thememorialcollective.com immediately. The email contains no marketing content and no recovery link (the data is already gone).

Some narrow exceptions to immediate erasure exist where retention is required by law (e.g. payment records held by Stripe for tax/audit purposes, server access logs retained for a short security window). These exceptions are documented in our records of processing and do not include any content you created.

8. Contact

For privacy inquiries, contact us at privacy@myfinalrestingplace.com.