← Back

Privacy

Your family's memories deserve to be treated carefully.

This is what LifeStoree collects, how we use it, and the rights you have over it. Plain language, no tricks. Last updated April 2026.

Who we are

LifeStoree is an Australian business that helps families build AI-composed memorial pages for people they have lost. The data controller is LifeStoree Pty Ltd (registered in Australia). We can be reached at hello@lifestoree.com.

What we collect

When you create an account and a memorial, we collect:
  • Your name and email address (for the account that owns the memorial)
  • Photographs you upload, and the AI analysis derived from them (face boxes, era, tone, colour palette)
  • The eulogy text, story notes, and biographical details you provide about the person being remembered
  • Payment information processed by Stripe (we never see card numbers; Stripe returns a token)
  • Guestbook entries and visitor candles left by others on the published memorial
  • Basic usage data: IP address, referrer, country code, page views on the public memorial (no cross-site tracking, no advertising cookies)

How we use it

  • To compose, display and keep hosting the memorial page for the family that created it
  • To run our AI composition pipeline (Anthropic models analyse photos and extract story structure from the eulogy)
  • To process payments, send the necessary receipts, and notify the owner about relevant account activity
  • To moderate guestbook submissions against spam and abusive content
  • To keep the service working: error monitoring, performance tuning, fraud prevention

We do not sell memorial data. We do not run advertisements against it. We do not use it to train AI models.

Who we share it with

We use a small number of trusted processors, each bound by contract to handle your data securely:
  • Supabase (US/EU) — database, auth, object storage for your content
  • Cloudflare (global) — hosting, media CDN, DNS
  • Anthropic (US) — AI models that analyse photos and extract story structure. Anthropic does not retain content sent via their API for training
  • Stripe (US/AU) — payment processing
  • Resend (US) — transactional email delivery
  • Google — only if you sign in with Google, we receive your Google email and name

Public memorial pages are, by default, public. Anyone with the link (or who scans the QR plaque) can view them. You can change this in the dashboard.

How long we keep it

Memorials are kept for at least twenty years from the date you publish them, as committed in our permanence promise. Accounts and their memorials can be deleted at any time from the dashboard. Billing records are retained for seven years as required by Australian tax law.

Your rights

You can, at any time:
  • Download a complete archive of any memorial from the dashboard
  • Correct or edit any content in the memorial, including biography, photos and story chapters
  • Delete the memorial, your account, and associated data
  • Ask us what personal information we hold about you, and request a copy
  • Raise a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have mishandled your information

Security

We use encrypted connections (TLS) for all traffic, hashed passwords, Row Level Security on the database, and least-privilege service credentials. No system is invulnerable, but we take the weight of the content we hold seriously. If a data breach ever affects your memorial, we will notify you directly and follow the Notifiable Data Breaches scheme.

Children

LifeStoree is not designed for use by children under 16. Accounts must be created by an adult. If the memorial is for a child, the account owner must be a parent or legal guardian.

Changes to this policy

We update this policy when the service changes. Material changes are announced on the dashboard and by email. Older versions are kept on request.

Questions? Email hello@lifestoree.com.

Last updated: April 2026.