Security & Privacy at MemoryShield

We delegate all identity checks to Google Firebase Authentication. Passwords are never stored on our servers, and tokens are signed with Google-managed keys, then auto-rotated to stop session hijacking.

Yes—SMS 2-Factor Authentication is one click away in your profile. Each login then requires your password and a one-time code sent to your phone, blocking the vast majority of credential-stuffing attacks.

Absolutely. All traffic is shielded by TLS 1.3 to prevent man-in-the-middle snooping, and every Firestore record is automatically wrapped in AES-256 before it touches disk on Google Cloud.

No. Today your data is server-encrypted, and our schema is already prepared for full client-side, zero-knowledge encryption so only you hold the key—never us.

Least-privilege Firestore rules. Regular users can read/write only their own /users/{uid}/… paths, while a single hard-coded admin has read-only analytics access. All other requests are denied by default.

Your export is zipped and emailed solely to your verified address. Links self-destruct after a single download and we display strong warnings about handling sensitive files.

We never touch card numbers. Paddle processes all payments and signs every webhook with an HMAC key; we verify that signature against the secret stored in Google Secret Manager before saving any event.

You appoint trustees. They must confirm identity via a single-use, cryptographically signed link, and they see nothing until our Life-Check system plus a manual review confirms access is warranted—fully aligned with the Revised Uniform Fiduciary Access to Digital Assets Act.

SMS codes stop most automated attacks, but they’re vulnerable to SIM-swaps; hardware keys (WebAuthn/FIDO2) remove that risk entirely. We are already prototyping this upgrade.