Security & Privacy
Honest answers about how we protect your data.
EmberKeep holds some of the most sensitive information a family has — estate documents, account details, wishes, passwords. This page tells you exactly what we do, what we use, and what we’re still working toward.
Last updated: June 5, 2026 · Anthropic DPA response received Jun 4 — see AI section
What’s in place today
Encryption in transit
All data between your browser and EmberKeep travels over TLS 1.3. No plaintext transmission.
Encryption at rest
Vault data is stored in Supabase on AWS infrastructure with AES-256 encryption at the storage layer.
Row-level security
Each vault is isolated at the database level using Supabase Row-Level Security policies. Your data cannot be accessed by another user even if the application layer were compromised.
Authentication — Clerk
Sign-in, session management, and multi-factor authentication are handled by Clerk, which holds SOC 2 Type II certification. EmberKeep does not store passwords.
Access control
Vault contents are only accessible to the vault owner and the people they explicitly designate as readers. Partner firms see vault completeness status only — never the contents.
Vercel infrastructure
The EmberKeep application runs on Vercel, which maintains SOC 2 Type II and ISO 27001 certifications for its platform infrastructure.
AI services and your data
EmberKeep uses one AI service today. Here’s what it does and how your data is handled.
Section status — Anthropic DPA in place. Anthropic confirmed (Jun 4, 2026) that its Data Processing Agreement and Standard Contractual Clauses are auto-incorporated by reference into the Anthropic Commercial API Terms of Service. EmberKeep is covered as a commercial API customer with no additional signature event required. Subprocessors are published at the Anthropic Trust Center. Despite the DPA being in place, attorneys evaluating EmberKeep should continue to treat AI document analysis as an administrative function, not a privileged-communication channel. The privilege posture is pending separate legal review and may be revisited.
Claude (Anthropic)
ActiveWhat it’s used for
AI Guide conversations and document analysis — extracting provisions, identifying gaps, answering vault questions.
Data handling
Anthropic’s Data Processing Agreement and Standard Contractual Clauses are auto-incorporated by reference into the Anthropic Commercial API Terms of Service — EmberKeep is covered as a commercial API customer with no additional signature step. Under those terms, data submitted via the API is not used to train Anthropic’s models by default. Subprocessors are published at the Anthropic Trust Center. One operational guardrail: the no-training default does NOT apply to content submitted via bug reports or feedback to Anthropic, so EmberKeep does not include customer or vault content in any bug report or feedback submission.
Anthropic Privacy Policy →Attorney-client privilege note: Document content is processed by Anthropic and Google APIs as described above. Anthropic’s DPA is in place via the Commercial API Terms of Service (Jun 4, 2026); the Voyage AI DPA remains in progress. Regardless of DPA status, we recommend treating AI document analysis as an administrative function rather than a privileged communication channel pending separate legal review of the privilege posture. Questions? michael@emberkeep.ai
What we’re working toward
We’re an early-stage company. Here’s what’s on the security roadmap.
| Item | Target |
|---|---|
SOC 2 Type II audit | Q3 2026 |
Penetration test | Q2 2026 |
Data Processing Agreement — Anthropic | Done |
Field-level encryption for passwords & credentials | Q2 2026 |
Formal data retention and deletion policy | Q2 2026 |
Vault access audit log | Q3 2026 |
Your data, your vault
You own it
EmberKeep does not sell, license, or share your data with third parties for any commercial purpose.
You can export it
Full vault data export is on our Q2 2026 roadmap. Until then, contact michael@emberkeep.ai for a manual export.
You can delete it
You can delete your vault and all associated data at any time from your account settings. Deletion removes your data from our active systems immediately; backup purge cadence is being formalized as part of our data retention policy (on the roadmap below).
Questions about security?
Attorneys and wealth managers evaluating EmberKeep are welcome to a security review call.
Email michael@emberkeep.ai →