We Know What You're Trusting Us With
You're putting your family's most sensitive information in one place. That takes courage. Here's exactly what we do to honor that trust — no vague promises, just specifics you can verify.
Security wasn't bolted on after the fact — it was the starting point. Every protection described below is live and active today in your vault. We also tell you honestly what's still being built, because trust starts with transparency.
What's Protecting Your Vault Right Now
Nine layers of security — all live, all active, all included from day one.
End-to-End Encryption
Every document and data field is encrypted at rest using AES-256 and in transit using TLS 1.3 — the same standards required by banks, hospitals, and government systems.
Two-Factor Authentication
Built in from day one — not bolted on as an afterthought. TOTP-based 2FA requires a second verification step every login. Trusted devices can be remembered for 30 days.
Recovery Codes
Lose access to your authenticator? Recovery codes let you regain account access without compromising security. Generate them once, store them safely.
Five-Tier Access Control
Owners, co-trustees, advisors, beneficiaries, and emergency contacts each see only what their role requires. No one has more access than they need — ever.
Emergency Access Protocol
Designate trusted individuals who can request vault access under predefined conditions. Requests are logged, time-delayed, and require identity verification — no backdoors.
Full Audit Trail
Every vault action — logins, document views, edits, beneficiary changes, advisor access — is logged with timestamps, IP addresses, and user identity. Nothing happens without a record.
Brute-Force Protection
Rate-limited login attempts, progressive delays, and automatic account lockout after failed attempts. Attackers can't guess their way in.
New Device Detection
When someone logs in from an unrecognized device, you receive an email alert immediately. You control whether login notifications are enabled in Settings.
Advisor Compliance Logging
Every advisor page view, document access, and download is recorded with FINRA-ready audit trails. Vault owners can download compliance reports at any time.
AI You Can Trust With Sensitive Information
Our AI assistant helps you navigate your vault — not make decisions for you. Here's how we keep it safe.
Your vault data stays in your vault.
The AI assistant reads your vault context to give personalized answers, but your data is never used to train models, shared with third parties, or stored outside your account.
Role-based AI access.
The AI only surfaces information the current user is authorized to see. An advisor's AI view is different from an owner's. A beneficiary sees only what you've permitted.
Automatic escalation.
When the AI detects questions about investment advice, legal strategy, tax optimization, or healthcare decisions, it immediately surfaces a disclaimer and recommends a qualified professional.
No financial advice. Ever.
The AI helps you locate information, explain structures, and organize continuity plans. It will never recommend investments, suggest legal strategies, or provide tax guidance.
Conversation privacy.
Your AI conversations are stored in your vault, visible only to you. Advisors, co-trustees, and beneficiaries cannot see your conversation history.
Your Data Belongs to You
No ambiguity. No fine print. Your vault data is yours — not ours, not our investors', not our partners'.
Your data is yours.
We never sell, share, license, or monetize your information — to anyone, for any reason, under any circumstance.
US-hosted infrastructure.
All data is stored in encrypted cloud infrastructure hosted in the United States. We do not store data offshore.
Export anytime.
You can generate comprehensive PDF reports of your entire vault from the Reports page. Your uploaded documents are downloadable at any time. You are never locked in.
No hidden data collection.
We don't embed third-party trackers, sell behavioral data, or use your vault contents for advertising. Our business model is the platform — not your personal information.
90-day shutdown guarantee.
If Legacy on Chain ever ceases operations, we commit to a minimum 90-day notice period with full data export capabilities. This is written into our operating agreement.
What We Will Never Do
Transparency isn't a feature — it's a requirement. These aren't aspirational statements. They are commitments.
- We never sell, share, or monetize your data — period.
- We don’t have a “master key” to view your documents. Encryption means even our team cannot read your files.
- We don’t store your passwords in plain text. All credentials are cryptographically hashed.
- We will never email you asking for your password or 2FA codes. If someone does, it’s not us.
- We don’t claim features that aren’t built yet. We tell you what’s live and what’s on the roadmap.
- We never hold custody of your money, crypto, or private keys. We are a record-keeping platform, not a custodian.
- We don’t use your vault data to train AI models or improve products for other customers.
- We will never make changes to your vault without your explicit action. No automated edits, no background modifications.
Who Sees What — And Why It Matters
Every role has defined boundaries. No exceptions.
| Capability | Owner | Co-Trustee | Advisor | Beneficiary | Emergency |
|---|---|---|---|---|---|
| View all assets | ✓ | ✓ | Assigned only | ✓ | ✓ |
| View dollar values | ✓ | ✓ | ✓ | If enabled | ✗ |
| Edit assets | ✓ | ✓ | ✗ | ✗ | ✗ |
| Upload documents | ✓ | ✓ | ✓ | ✗ | ✗ |
| View beneficiaries | ✓ | ✓ | ✗ | Own record | ✓ |
| Manage users | ✓ | ✗ | ✗ | ✗ | ✗ |
| View audit trail | ✓ | ✗ | ✗ | ✗ | ✗ |
| Use AI assistant | ✓ | ✓ | ✓ | ✓ | ✗ |
| Delete vault data | ✓ | ✗ | ✗ | ✗ | ✗ |
A Legal Structure Behind the Technology
Legacy on Chain is organized as a Wyoming DAO LLC (Filing ID 2026-001918748). This isn't just a tech company with a privacy policy — it's a legally recognized entity under Wyoming's pioneering DAO legislation, providing a framework for transparent governance, member protections, and accountability that most startups don't have.
Wyoming-registered entity with public filing ID
Operating agreement with data ownership guarantees
Built-in governance framework for long-term accountability
What's Coming Next
These features are on the roadmap. We'll be transparent about their status as development progresses.
Tamper-Proof Audit Trail
Periodic cryptographic hashes of your audit log will create a tamper-proof, independently verifiable history that no one — including us — can alter after the fact.
Automated Succession
Succession rules defined today in your vault will be enforceable by audited automation — removing human error and delays from the wealth transfer process.
Decentralized Governance
As a Wyoming DAO LLC, our structure is designed for advanced governance. Multi-signature approvals and proposal voting will move from simulated to fully automated.
Security Tips for Vault Owners
Practical steps to keep your vault secure — especially if a device is lost, stolen, or compromised.
What If I Lose My Phone?
Your phone being stolen does not give anyone access to your vault. They'd still need your email, password, and your authenticator code. 2FA actually protects you here.
To regain access:
- Log in with your email + password
- Click “Lost your phone? Use a recovery code”
- Enter one of the recovery codes you saved during 2FA setup
- Once logged in, go to Settings → disable 2FA → set it up again on your new device
- Generate fresh recovery codes and store them safely
Recovery Codes — Your Backup Key
When you enable 2FA, Legacy on Chain prompts you to generate 10 one-time recovery codes. These are your lifeline if you can't access your authenticator.
Private Keys vs. Your Vault Login
Legacy on Chain tracks and documents your assets — it doesn't hold custody of crypto private keys. These are two separate things:
🔐 Vault Login
Email + Password + 2FA. Protected by recovery codes. Managed here in Legacy on Chain.
🔑 Crypto Private Keys
Keys to your actual wallets. Use a hardware wallet (Ledger, Trezor). Store seed phrases offline in a safe.
Emergency Access for Trusted Contacts
In a worst-case scenario, your designated emergency contacts can request temporary read-only vault access. There's a waiting period, you're notified by email, and you can approve or deny the request. If you don't respond, access is granted automatically after the waiting period. It's a safety net — not a backdoor.
Your Questions Deserve Real Answers
Security isn't something we hide behind jargon. If you have questions about how your data is protected, we're happy to walk you through it personally.