SafeKey Mobile Privacy Policy

SafeTech B.V.
Witte Patersstraat 4
1040 Brussels
Belgium
Business number: BE-0704.931.167
Contact email: [email protected]

Protecting Your Information

The core of our service is to protect the privacy of our users and their data. This Privacy Policy explains the way SafeTech B.V. (“SafeTech”, “we”) handles your information with the SafeKey Mobile application (“Application”, “SafeKey Mobile” or “SafeKey Mobile App”).

SafeKey Mobile is a SafeTech solution that enables you to securely store your Inheriti plan shares on a mobile device. Inheriti is a decentralized data protection solution for managing and transferring digital access data, also known as “Secret Data”, in a digital recovery or inheritance plan. Users, including owners, beneficiaries, and merge authorities of an Inheriti protection plan, may utilize either SafeKey Mobile or a SafeKey Pro hardware device to securely store their encrypted plan shares.

We are strongly committed to protecting the confidential security and integrity of any information in accordance with this Privacy Policy.

We reserve the right to modify this Privacy Policy at any time. Any modifications will come into effect on the communicated date. In the event of updates, we will inform you via email about changes. The next time you login to your SafeKey Mobile App, you will be requested to confirm reading the updated Privacy Policy. The email associated with your SafeID login will be used for all communications.

Former versions of the Privacy Policy will be made available at the bottom of this page, including a registration of the history of changes.

Please read this Privacy Protocol carefully and in conjunction with SafeKey’s Mobile Terms of Use.

Your User Rights

Request for access to personal data

In accordance with applicable data protection laws, you have the right to request access to the personal data that we hold about you. This includes the right to obtain a copy of the data, and to be informed of the categories of personal data we process, the purpose of processing, and the recipients (or categories of recipients) of your personal data. You can sending an email with a detailed request to [email protected].

Please note: SafeTech has no access to your Inheriti plan shares and the Secret Data stored in an Inheriti plan.

Rectification of personal data

You have the right to rectify inaccurate or incomplete personal data. To do so, you can make changes to your personal information in the SafeKee Mobile app. If you encounter any difficulties, you can visit our Inheriti Support for assistance.

Erasure of personal data

You have the right to have your personal data erased. You can delete personal information using the SafeID and/or SafeKey Mobile app. If you encounter any difficulties, please visit our Inheriti Support for assistance. Please note that we may be required by law to keep certain personal data for compliance with relevant laws and regulations (Article 17 of the GDPR).

Restriction of the processing

You have the right to request a restriction on the processing of your personal data in certain circumstances, such as when you contest the accuracy of your personal data or when the processing is unlawful.

Objection to processing

You have the right to object to the processing of your personal data for reasons relating to your particular situation, unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms. Please note that SafeKey Mobile cannot provide its service without the availability of certain personal data.

You also have the right to object to the processing of your personal data for direct marketing purposes.

Data portability

We are not able to offer data portability, nor can we transmit data to another party, for security reasons, even if you have given your consent. We will ensure the security and confidentiality of your personal data in our service in accordance with applicable laws and regulations.

Withdraw of consent

You have the right to withdraw your consent for the processing of your personal data at any time. You can delete your SafeID account, Inheriti account and Inheriti plans at any time you like on the designated services. This will not affect the lawfulness of processing based on consent before its withdraw.

Procedure to exercise your rights

To exercise your rights, you can use the possibilities offered on the SafeKey Mobile app and SafeID app. If you need any help, you can visit Inheriti Support. Please note that some requests may be subject to certain limitations or exceptions under applicable laws.

Legal Grounds for Data Processing and Transfer

In order to process personal data and transfer to other parties such as heirs or trusted third-parties, SafeTech relies on several legal grounds:

Consent. Consent for processing and transferring is obtained from you upon creation of an account, and can be withdrawn at any time.
Necessary for the performance of the contract. The processing and transferring of personal data is necessary for the execution of the contract between SafeTech and the user, specifically for dividing and merging plan shares with encrypted and fragmented Secret Data.
Legitimate Interest. SafeTech has a valid reason for processing and transferring personal data, such as improving its services or preventing fraud.

Data Collection and Data Management

The overview shows what data is collected and processed by both the SafeID app (used to login to the SafeKey Mobile App) and the SafeKey Mobile App.

SafeID Data	Data associated with the SafeID account, used as login for the SafeKey Mobile App.

Data Category	Data	Purpose	Source	Obliged / optional to use the App	Consequence	Legal ground
Account information	Name Email	Identification of the user: account login, personalizing emails, payment and invoicing. Communication with the user; account login, password recovery, notification option after trigger activation, payment and invoicing, contact and communication (support, updates, etc).	User	Obliged	Not providing this information will result in not being able to create a SafeID account and use the SafeKey Mobile App.	Consent
Social logins Information	X account Facebook account Google account	Account login possibility via social accounts.	User	Optional	Not providing this Information results in not being able to login in with social media accounts.	Consent
Device information	IP address, ASN, country (based on IP), user agent	Performance optimization, security enhancement, analytics and reporting, troubleshooting, compliance.	Cloudflare	Obliged	Not providing this information results in not being able to use the SafeKey Mobile App	Legitimate interest
Device information	IP address	We track events (login, logout, register, forgot password, verify account, token retrieve, custom required action) where username and Client public IP are recorded. SafeID also logs active sessions with the IP addresses. All of the above data is stored due to troubeshooting and analytical reasons.	SafeID	Obliged	Not providing this information results in not being able to use the SafeKey Mobile App	Legitimate interest

Security	SafeID Data is highly secured, encrypted and stored in a database which is secured by multiple comprehensive security measures to protect from unauthorized access, data loss, and other security risks. The user can enhance the security of its SafeID account by enabling 2FA using a SafeKey or other FIDO/FIDO2 security keys. SafeID Data is stored separately from the SafeKey Mobile App to create optimal security. SafeID’s Privacy Policy can be found on.

Adjustments	SafeID Data can be modified at any time in your SafeID account.

Erasure	Your SafeID account can be deleted by sending an email request to [email protected]. The email address used must be the email address you are registered with in your SafeID account. In response to your email, you will be asked to confirm the request for the deletion of your SafeID account. After confirmation, the SafeID account will be deleted within 5 business days. All data stored in your SafeID account will be permanently deleted and you will no longer be able to access or re-activate your account. PLEASE TAKE NOTE: WHEN YOU DELETE YOUR SAFEID ACCOUNT, YOU LOSE THE ACCESS TO THE SAFEKEY MOBILE APP AND THE ABILITY TO MERGE ESTABLISHED INHERITIÆ PLANS AND RELEASE THE SECRET DATA STORED BY THE PLAN CREATOR. YOU MAY ALSO LOSE ACCESS TO OTHER SAFE HAVEN AND SAFETECH PRODUCTS THAT USE SAFEID AS SECURE LOGIN.

SafeKey Mobile Data	Data that is collected, stored and processed with the SafeKey Mobile App.

Data Category	Data	Purpose	Source	Obliged / optional to use the Service	Consequence	Legal ground
Inheriti plan shares	Fragmented encrypted plan share	The management and / or transfer of this data is the purpose of creating an Inheriti plan.	Inheriti solution	Obliged	Not providing this information has no effect on the service.	Consent
Device information	IP address, ASN, IP country code, user agent	Performance optimization, security enhancement, analytics and reporting, troubleshooting, compliance.	SafeKey Mobile App	Obliged	Not providing this information results in not being able to use the SafeKey Mobile App.	Legitimate interest

Security	SafeKey Mobile Data is highly secured by multiple comprehensive security measures to protect from unauthorized access, data loss, and other security risk: The Secret Data is encrypted using a military-grade and NSA-approved encryption standard, and split into shares using Inheriti’s proprietary SSDP technology, which prevents any single owner from decrypting the data, and requires a minimum threshold of shareholders to come together for the data to be decrypted. The merging of shares can only be initiated by the Merge Authority. Once all predetermined triggers set by the plan owner are validated, the actual merge can commence. The merger will only be completed if the set minimum number of shares are contributed to the merge. In an unexpected situation where a beneficiary cannot or will not participate, recovery shares can be utilized for enhanced security measures. SafeKey Mobile uses an additional PIN code form claiming and releasing shares, The shares to be stored on SafeKey Mobile gain an extra layer of security with additional encryption and the need to verify share ownership while the share is being claimed. Only beneficiaries with proper authentication can download the specific plan share. SafeTech does not have access to your plan share or the Secret Data and we never store your Secret Data anywhere in the Service, databases or any other centralized instances. Learn more: <link to recent Red4Sec audit report>

Adjustments	SafeKey Mobile shares cannot be adjusted. If adjustments are required after the plan has been established, a new Inheriti plan must be created.

Erasure	Information stored on SafeKey Mobile can be deleted by removing the data via the settings of the app or by removing the app from your phone. PLEASE TAKE NOTE: IF YOU CHOOSE TO NOT KEEP A BACKUP AFTER CLAIMING, THE SHARES WILL NOT BE ACCESSABLE ANYMORE IF YOUR MOBILE DEVICE IS LOST OR DAMAGED. PLEASE TAKE NOTE: WHEN YOU DESTROY AN INHERITI PLAN, YOU LOSE THE ABILITY TO MERGE SHARES AND UNLOCK ESTABLISHED INHERITI PLANS.

Data Sharing

SafeTech prioritizes the protection of customers’ data connected to SafeKey Mobile App. We only share this data with a select few third-party services, keeping the number of partners to a minimum.

Please be aware that the third-parties may have residence in countries outside the European Union and/or are an international organization and might operate under different privacy regulation. Please check their privacy protocol for more information.

Third-party	Data	Purpose	Obliged / Optional to use the Service	Legal Ground	Country / GDPR / Policy
Cloudflare (SafeID)	IP address, ASN, IP country code, user agent	Performance optimization, security enhancement, analytics and reporting, troubleshooting, compliance.	Obliged	Legitimate interest	USA GDPR compliant Privacy policy: https://www.cloudflare.com/en-gb/privacypolicy/
Amazon Aws (SafeID)	IP address, ASN, IP country code, user agent	Performance optimization, security enhancement, analytics and reporting, troubleshooting, compliance.	Obliged	Legitimate interest	Amazon Aws’ servers in Ireland GDPR compliant Privacy policy: https://aws.amazon.com/privacy/
Stripe payment service (SafeID)	Name, email	Payment and invoicing	Obliged	Performance of a contract	EU and USA GDPR compliant Privacy policy: https://stripe.com/privacy
Stripe payment service (SafeID)	IP address	Performance of the service	Obliged	Performance of a contract
Chatwoot (SafeKey Mobile App)	Name, email, IP-address, chat content	Customer service, technical support, analysis of customer behavior	Optional	Consent	USA GDPR compliant self-hosted version Privacy policy: https://www.chatwoot.com/privacy-policy

Data Retention

The data will be retained for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.

As long as the SafeID account is not actively terminated, the SafeID data will be retained and kept accessible. In the event of user-initiated account termination, all deleted data will be securely deleted or anonymized within 30 (thirty) days to prevent unauthorized access and safeguard personal privacy.

We may retain and use your information to resolve disputes. After the dispute is resolved, any personal information that is no longer necessary for the purpose for which it was collected will be deleted or anonymized. We will also ensure that any third-parties with whom we shared your data during the dispute resolution process will also delete or anonymize your personal data in a timely manner. Please note that certain data may be retained if necessary for legal or regulatory compliance, or to exercise or defend legal claims. In these cases, we will ensure that appropriate security measures are in place to protect your personal data.

Declaration of Privacy Protection and Control

Given the fact that no automated decision-making and profiling is used in the process, we hereby declare that the owners of the plan are fully in control and that the plan only comes into effect upon predefined triggers or a ‘dead man switch’. We ensure that the privacy of individuals is respected at all times in accordance with applicable privacy laws, including GDPR.

GDPR specifics

Controller – Processor

Under the European General Data Protection Regulation (GDPR), SafeTech is defined as a controller and a processor. SafeTech decides which personal data is collected, for what purpose, and how it is processed, and are responsible for technical and organizational measures to protect the personal data. SafeTech also processes information in the provision of services to the user, including collecting, storing, using, and deleting personal information, in compliance with relevant laws and regulations.

Data Protection

The responsibility for protecting the rights and privacy of individuals and ensuring the organization’s compliance with data protection laws is assigned within SafeTech’s organization at Board level:

monitoring the organization’s handling of data protection and privacy compliance;
conducting audits and assessments;
handling data breach incidents;
acting as a point of contact for data protection authorities and individuals whose data is being processed.

Cookies Policy

Cookies are small text files that are placed on your computer or mobile device when you visit use the application. They are widely used in order to make applications work more efficiently, as well as to provide information about the use of the site.

More information about the type of cookies that are used can be found in SafeKey Mobile Cookie Policy.

Non-Disclosure

SafeTech has a non-disclosure policy. We will not respond to any requests from authorities regarding information about users, logs, data or similar. We do not comply with any non-governmental or government agency’s request to disclose information unless backed up by applicable court orders, which all businesses must comply with.

Language

All communication with SafeTech will be conducted exclusively in English. This includes any customer support inquiries, notices, and updates related to the use of our applications or services. Any translations provided are for convenience only and the English version shall prevail in case of any discrepancies.

Customer support

If you have questions, ideas or comments, please contact us at Inheriti® Support. We may need to verify your identity before processing any requests. We will respond to your requests without undue delay and in accordance with applicable data protection laws within 30 (thirty) business days.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	11 months	This cookie is used to store the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Privacy Policy SafeKey Mobile

For Individuals

For Crypto

For Business

Products

SafeKey Tools

Learn

Company

Privacy Policy SafeKey Mobile

The SafeKey website uses cookies