LegacySpoken
Your recordings belong to your family. We are the vault, not the owner.

Privacy Policy

Last updated: April 11, 2026

LegacySpoken exists to preserve your family's most precious recordings. That mission only works if you trust us completely. This page is written in plain language so you can read it once and know exactly what we do — and what we will never do — with the voices in your vault.

1. What we collect

We collect only what we need to deliver the service:

  • Names and phone numbers of grandparents and grandchildren you add
  • Voice recordings captured during the daily morning call and reply line
  • Time zones and quiet windows you set
  • Billing email and payment information (handled by Stripe — we never see card details)
  • Behavioral signals from each call — duration, mood signals, missed-call counts

2. Why we collect it

Every piece of data above exists to make the service work. Phone numbers are used to place calls and send SMS notifications. Recordings are saved to your family vault so the family can listen forever. Mood signals power the optional wellness radar that gently flags long stretches of silence to the family.

3. Who owns the recordings

Your family owns every recording, always. LegacySpoken is the storage and delivery mechanism, not the rights holder. You can request a complete download of every recording at any time, and we will deliver it within seven days.

4. How long we keep your data

For as long as you have an active subscription, we store your vault indefinitely. If you cancel, we keep the vault accessible for 30 days so you can download every recording. After 30 days, on your written request, we will permanently delete your vault from our servers and from Cloudflare R2 storage.

5. Children under 13 (COPPA)

We comply with the Children's Online Privacy Protection Act. If a grandchild is under 13, the billing parent is the COPPA verified guardian and is responsible for adding that child to the system. We will never collect recordings from a child under 13 without explicit parental consent documented in their account.

6. Voice recording consent

Several states require all parties to a recorded call to consent to being recorded. These states include California, Florida, Illinois, Washington, Connecticut, Maryland, Nevada, Oregon, and Pennsylvania. Our onboarding flow includes a verbal consent step at the start of the first call. Each grandparent gives explicit verbal consent before any recording begins, and that consent is logged with a timestamp.

7. SMS consent (TCPA)

The Telephone Consumer Protection Act requires explicit written consent before any SMS message is sent. During onboarding, the billing parent checks an explicit consent box covering all SMS notifications for the family. Reply STOP to any LegacySpoken SMS to unsubscribe immediately. Message and data rates may apply.

8. Data security

All voice recordings are encrypted at rest in Cloudflare R2 storage. Recordings are served exclusively through signed URLs that expire in 7 days, never publicly indexed. Customer data in our application database is encrypted in transit and at rest. We use bcrypt-equivalent hashing for any passwords and never store API keys or card numbers in our application.

9. Your rights

You have the right to:

  • Request a complete download of every recording in your vault
  • Correct any information stored about your family
  • Permanently delete your account and all associated data
  • Opt out of any non-essential communications
  • Receive an explanation of how your data is used in any specific feature

To exercise any of these rights, email privacy@legacyspoken.com. We respond within 7 business days.

10. Contact

Questions, concerns, or rights requests: privacy@legacyspoken.com