Skip to main content

Privacy Policy

Last updated: February 2026

Our Commitment to Privacy

At allme.life, privacy is at the core of everything we do. We believe your family's data should remain private, secure, and under your control. This policy explains how we handle information when you interact with our website and services.

Information We Collect

Pre-launch (Current): We collect email addresses from users who voluntarily sign up to be notified when beta registration opens. We also collect basic, cookie-free analytics data (page views, referrer, browser type) to improve our website. No personally identifiable information is stored by our analytics system.

After Launch: Our platform uses end-to-end encryption with zero-knowledge architecture, meaning your family's documents, communications, and personal data are encrypted on your device before being stored. We cannot read or access your encrypted data.

How We Use Your Information

  • To notify you when beta registration opens
  • To send important updates about our service (with your consent)
  • To improve our website and service through anonymised, cookie-free analytics
  • To detect and prevent abuse of our signup system

Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Consent: When you sign up for beta notifications, you consent to receiving communications from us.
  • Legitimate Interest: We use anonymised analytics to improve our website and services.
  • Contract: When you use our platform (post-launch), processing is necessary for service delivery.

Cookies and Analytics

We practice what we preach. allme.life uses absolutely zero cookies and zero third-party tracking. We do not use Google Analytics, Facebook Pixel, or any external analytics service. Our analytics are entirely self-hosted on our own servers using our own database. This means:

  • No cookies of any kind are set on your device
  • No third-party scripts are loaded for tracking
  • No cross-site tracking occurs
  • No personal data is shared with any analytics provider
  • Your browsing data never leaves our infrastructure
  • No cookie consent banner is needed — because there are no cookies

What we collect: Our self-hosted analytics record anonymised page view counts, referrer URLs, and browser type. We also derive your approximate country and city from your IP address using a local database on our servers. Your IP address is not stored. Visitors are counted using a daily-rotating anonymous hash that cannot identify individuals and is not stored persistently.

Local storage: We use your browser's localStorage (not cookies) for preferences such as dark mode. This data stays entirely on your device and is never transmitted to our servers.

Data Retention

We retain your beta signup email address until the beta programme concludes or until you request deletion, whichever comes first. Analytics data is retained for 14 months in an anonymised, aggregated form with no personal identifiers. Post-launch, encrypted user data is retained for the duration of your account and deleted within 30 days of account closure.

Data Processors

We minimise third-party data sharing. The only external processor we use is:

No analytics processors: Unlike most websites, we do not share any browsing data with Google, Facebook, or any other analytics provider. All analytics are processed and stored on our own infrastructure.

Your Rights (GDPR — EU/UK Users)

Under the UK GDPR and EU GDPR, you have the following rights:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate personal data.
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Object: Object to processing based on legitimate interests.
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

Your Rights (CCPA — California Users)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request disclosure of what personal information we collect, use, and share.
  • Right to Delete: Request deletion of your personal information.
  • Right to Opt-Out: Opt out of the sale of personal information. Note: we do not sell personal information.
  • Right to Non-Discrimination: You will not be penalised for exercising your CCPA rights.

International Data Transfers

We primarily process data within the UK and EU. Where data is transferred outside these regions (e.g., email delivery infrastructure), we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

Children's Privacy

Our beta signup is not intended for children under 16. We do not knowingly collect personal information from children under 16 without parental consent. Post-launch, family accounts with child members will have enhanced privacy protections in compliance with the UK Age Appropriate Design Code.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes via email or a prominent notice on our website.

Contact Us

If you have questions about this privacy policy or wish to exercise any of your rights, please contact us at:
Data Protection Contact: privacy@allme.life
General Enquiries: hello@allme.life
Location: Oxford, United Kingdom

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Back to Home