Privacy Policy
Last updated: 15 June 2026
LiMorial is a service for honouring the people and pets you love. We treat the data you trust us with as carefully as the memorials you build on it. This page explains what we collect, why, where it lives, and your rights over it.
1. Who we are
The LiMorial service is operated by Jorgen Molen as an individual data controller, contactable at privacy@limorial.com. The service is reachable at limorial.com on the web and as the LiMorial app on iOS and Android.
2. What we collect
We only collect data that is necessary to provide the service:
- Account data: your username, optional display name, optional email address, hashed password, language preference, optional phone and address you choose to add.
- Memorial content you create or upload: names, dates, biographies, photos, videos, audio, documents, events, stories, comments, tributes, location metadata, and links you add to memorials you own or have been granted write access to.
- Permissions and relationships: who you have shared a memorial with, who is connected to a memorial (e.g. relations), group memberships, invite history.
- Photo metadata: when you upload a photo, we automatically extract any embedded EXIF date and GPS coordinates to help you place the item on the timeline and the map. We strip GPS and other EXIF data from the derivative we serve to viewers so the location stays private to the original uploader. Original files remain stored as you uploaded them and are only served to authenticated callers with permission.
- Search queries: when you use the search feature, the query terms are processed to return matches and written to our event log without being linked to your personal identity.
- Technical data: your IP address (held in short-term logs for rate-limiting and abuse prevention), browser or app version, and crash / performance diagnostics.
- Payment data (if you purchase a storage tier): handled by Stripe. We never see or store your card details — we only receive a Stripe customer token to identify your subscription.
3. Why we use it
- To run the service: render the memorials, authenticate sessions, send the emails you opt into (verification, password recovery, comment notifications you subscribed to), and let you collaborate with the people you share a memorial with.
- To prevent abuse: rate-limit login and signup, detect suspicious patterns.
- To keep your data safe: scheduled backups, integrity checks, error and performance monitoring.
We do not use your data for advertising, profiling, or training third-party AI models. There is no behavioural tracking across other apps or websites.
4. Who can see your content
You decide. Every memorial has a visible and a searchable flag plus per-item visibility you can flip between public and private. Public items are visible to anyone who reaches the memorial; private items are only visible to the owner, appointed admins, and any user you explicitly granted access. We never sell, rent, or share your content with marketing partners.
5. Sharing with third parties
We share data only with the service providers we depend on to run LiMorial:
- Linode (Akamai) — server hosting in the European Union.
- Stripe — payment processing for storage tier purchases. Stripe receives only the data needed to process the transaction.
- OpenStreetMap / Nominatim — used for looking up place names you type into the geocoding fields. Only the query string is sent.
- SMTP relay — sends transactional emails you opt into.
- Apple / Google — when you install the mobile app via TestFlight, the App Store, or Google Play. Their stores have their own privacy policies.
6. Where data is stored
All user data — accounts, content, uploads, backups — is stored on servers physically located in the European Union. Database and file storage are isolated from public network access. Backups are encrypted at rest.
7. How long we keep it
For as long as your account exists. When you delete your account (Settings → Delete my account, both on the web and in the mobile app), your account, your owned memorials, and their uploaded media are permanently deleted within 30 days, along with derivative data such as thumbnails, comments authored by you, and tributes you placed. Some aggregate-only logs (e.g. anonymous event counts) may persist.
8. Your rights
You can, at any time:
- Access your data — log in to your account.
- Correct your data — edit it from the app.
- Export your data — request a machine-readable backup at privacy@limorial.com.
- Delete your data — Settings → Delete my account.
- Restrict or object to processing — email us; we will stop processing within 30 days unless required to keep records for legal reasons.
If you believe we are mishandling your data, you have the right to complain to your national data protection authority.
9. Cookies
The web app uses one cookie, lim_session, set when you sign in. It contains a signed session identifier only — no tracking, no third-party scripts. The cookie is marked HttpOnly, SameSite=Lax, and Secure in production.
10. Children
LiMorial is not directed at children under 13. If you believe a minor has registered an account, contact us at privacy@limorial.com and we will remove it.
11. Changes to this policy
We will update the date at the top of this page when we make material changes and notify registered users by email when the change affects how their data is handled.
12. Contact
Questions, requests, or concerns: privacy@limorial.com.