Everian Privacy Policy

1. Storing Data

Everian is a web-based service. We store only as much data as is necessary to provide our services. That includes your name, e-mail address, business name, postal address, timezone, some device information (like browser name and version and IP address).

When you upload a death certificate, that file is never visible to any of our customers (including you). We encrypt this file as soon as the file is uploaded, and we only retain an electronic copy of the file until it is sent to the Credit Reporting Agencies. Then the death certificate (and any personal information extracted from the death certificate) is permanently deleted from our systems.

2. Sharing Data

We never share your data with ourside third-parties except as necessary to deliver our services. For instance, we share information with the consumer credit reporting agencies (Equifax, Experian and TransUnion) to place notification of death on the deceased's credit files.

We may disclose your information in response to subpoenas, court orders, or other legal requirements; to exercise our legal rights or defend against legal claims; to investigate, prevent, or take action regarding illegal activities, suspected fraud or abuse, violations of our policies; or to protect our rights and property.

In some cases, we may request access to your personal data stored by other companies. This can make the Everian service easier to use. For instance, Everian allows users to log in with their Google or Microsoft accounts. When you select this login option, we have access to a some information you've shared with those companies, including your name and e-mail address.

3. Deleting data

We remove data personal information from our systems as soon as it is no longer needed. For death certificates (and any information extracted from death certificates other than the name of the deceased), the information is deleted from our systems as soon as we confirm that the deceased's credit file is frozed. We retain the name of the deceased and the name and (optional) e-mail address of the contact (e.g. next of kin) so that users can identify past orders.

If you would like to permanently delete your account (and all information associated with it), contact Everian customer support. The content of deleted accounts (including the user name, e-mail address, and all recipes) is removed on our servers. However, some account data may exist in our backups or application logs.

4. Contacting You

We offer opt-in services, including some services which use e-mail communication. We may also send occasional updates about Everian's services. You can subscribe or unsubscribe at any time from the services offered by Everian.

Otherwise, we will only send you email for the following purposes:

5. Contacting Us

If you have any questions or concerns regarding this privacy policy or the security of your Everian account, please contact us at help@everian.com.

6. Security

Because security of your data is important, we only store sensitive information when it's needed to deliver our services. We store all sensitive information in manner that exceeds industry standards for administrative, physical and technical information security.

The sensitive data we collect includes falls into three categories:

Your personal information: Your personal information includes your name, contact information (such as e-mail address or telephone number), and information about the device(s) you use to access our services. This information is stored securely (as described below), is never shared with partners unless you explicitly request it, and is deleted from our systems when your account is closed.

Information from death certificates: Death certificates contain the name of the deceased and may contain additional identifying information including Social Security Number, date and place of birth, and parents' names. This information is stored securely (as described below), and all identifying information other than name and date of death are deleted from our systems after the information is forwarded to the Credit Reporting Agencies. The deceased's name is retained for five years, or until the company that uploaded the death certificate terminates their relationship with Everian.

We may use automated image processing technology to extract information from images of death certificates. That requires sharing death certificate images with a partner. We ensure that the data privacy and security policies of the partner are at least as rigorous as our own. We currently use Google for this service. The relevant terms of service and data privacy policies are available for public review.

Payment information:: Payment information is necessary to bill our customers for services we've provided. This includes credit card numbers and expiration dates. Although payment information is entered into Everian's user interface, the data never traverses our systems. We use Stripe to handle payment information storage and payment processing. We selected Stripe because of their dedication to customer data security. You can see Stripe's security policy here.

7. The Future

We have no plans to sell our company, but plans can change. We reserve the right to sell to, buy, merge with, or partner with other businesses. In such transactions, user information may be among the transferred assets. If it is, we will state so publicly, and offer you the opportunity to delete your account.

We reserve the right to modify this privacy policy. If we do, we will post the updated privacy policy at this URL (https://everian.com/privacy/), notify our customers and update the modification date below.

This policy was last modified on 10 September, 2017.