Legal

Privacy Policy

Last updated: May 2026

1. What We Collect

We collect only what we need to operate the service:

  • Email address — used for authentication and to send unlock notifications
  • Capsule content — audio and video files you upload, stored securely in Cloudflare R2
  • Capsule metadata — title, unlock date, recipient emails
  • Payment data — processed entirely by Stripe; we store only a payment reference ID, never card details

We do not run analytics, serve ads, or sell your data to third parties.

2. How We Use Your Data

  • To authenticate you and manage your account
  • To store your capsule content and deliver it on the unlock date
  • To send transactional emails (magic links, unlock notifications)
  • To process payments via Stripe

We never access your capsule content for any purpose other than delivering it.

3. How We Store Your Data

Your media files are stored in Cloudflare R2 as private objects. Files are never publicly accessible — they are only served via time-limited signed URLs generated at the moment of access, and only after the unlock date has passed.

Account and capsule metadata is stored in Supabase (PostgreSQL) with row-level security enabled — your data is only accessible to you.

4. Third-Party Services

We use the following sub-processors to operate the service:

  • Supabase — authentication and database (supabase.com)
  • Cloudflare R2 — media file storage (cloudflare.com)
  • Stripe — payment processing (stripe.com)
  • Resend — transactional email delivery (resend.com)
  • Vercel — hosting and infrastructure (vercel.com)

Each of these services has its own privacy policy and data processing agreements.

5. Recipient Data

When you add recipients to a capsule, we store their email addresses solely for the purpose of delivering the unlock notification. Recipients are not contacted until the capsule unlocks. We do not use recipient emails for marketing or share them with third parties.

6. Data Retention

We retain your data for as long as your account is active. Locked capsules are retained for the duration of the lock period and for a reasonable time after unlocking to allow recipients to view the content.

Unpaid draft capsules may be automatically deleted after 30 days of inactivity.

7. Your Rights

You have the right to access, correct, or delete your personal data at any time. You can delete your account by contacting us. Where applicable (EU/UK residents), you also have the right to data portability and the right to object to processing.

To exercise any of these rights, email us at hello@thelocket.app

8. Cookies

We use a single session cookie for authentication, set by Supabase. We do not use tracking cookies or third-party advertising cookies.

9. Changes to This Policy

We may update this policy as the service evolves. We will notify you of material changes by email. The date at the top of this page reflects the most recent update.

10. Contact

Questions or concerns about your privacy? Email us at hello@thelocket.app

Read our Terms of Service →