Privacy Policy

Last Updated: March 2026

dear heir · dearheir.com · Mind Turf Private Limited

Dear Heir is operated by Mind Turf Private Limited (“we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit dearheir.com or use our Digital Estate Organisation and Documentation Services. By using our website or booking a session, you agree to the terms of this Privacy Policy.

We are not a law firm, financial advisor, or technology support service. We are a documentation and organisation consultancy that delivers services via audio-only Google Meet sessions. Our services are available to adults aged 18 and over in the United States only.

1. Who We Are and How to Contact Us

Business Name: Dear Heir (operated by Mind Turf Private Limited | 419 4th Floor, Sant Nagar, East of Kailash, New Delhi, 110065, India)

Website: dearheir.com

Email: privacy@dearheir.com

Service territory: United States of America (all 50 states)

Delivery method: Audio-only Google Meet consultations

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us at privacy@dearheir.com. We will respond within 10 business days.

2. Information We Collect

a. Information You Provide Directly

We collect information you give us when you:

Download our free Digital Legacy Checklist (name, email address)
Book a Discovery Call or paid session (name, email address, phone number if provided)
Complete a pre-session questionnaire (information about your devices, account types, and family situation)
Communicate with us by email (any information contained in that correspondence)
Make a payment (name and billing address – we do not store card numbers; payments are processed securely by our payment processor)

b. Information Collected Automatically

When you visit dearheir.com, our systems automatically collect:

IP address (anonymised – we use Google Analytics with IP anonymisation enabled)
Browser type and version
Device type (mobile, tablet, desktop)
Pages visited and time spent on each page
Referring URL (how you found our website)
General geographic location (country and state level only – not precise location)

We use cookies for website functionality and anonymised analytics only. We do not use advertising cookies or cross-site tracking cookies. See Section 8 (Cookies) for full detail.

c. Information NOT Collected - Ever

We want to be explicit about what we do not collect, because we understand this is your primary concern:

Passwords, PINs, or account credentials of any kind
Account recovery codes or two-factor authentication codes
Financial account numbers or investment account details
Social Security numbers or government identification numbers
Cryptocurrency seed phrases or private keys
Any audio or video recording of Google Meet sessions (recording is disabled before every session)

3. How We Use Your Information

We use the information we collect only for the following purposes:

To deliver the specific services you have booked and paid for
To send you the Digital Legacy Checklist or other resources you requested
To send booking confirmations, Google Meet links, session reminders, and post-session summaries
To communicate with you about your session, answer your questions, and provide support
To send our email nurture sequence (maximum 5 emails after checklist download – you can unsubscribe at any time)
To process your payment securely
To improve our website and services using anonymised analytics data
To comply with applicable US federal and state laws

We will never use your information for purposes incompatible with those listed above without obtaining your explicit consent first.

4. Legal Basis for Processing (CCPA and General US Privacy Law)

Under the California Consumer Privacy Act (CCPA) and applicable US privacy standards, we process your personal information on the following bases:

Contract: Processing necessary to deliver the services you have purchased
Legitimate interest: Improving our website and services using anonymised data; sending follow-up emails to checklist downloaders (you may opt out at any time)
Legal obligation: Retaining records for tax compliance and legal requirements
Consent: Where we have asked for and received your explicit consent (e.g. email list subscription)

5. Your Digital Account Information - Special Category

During our Google Meet consultation sessions, you may share information about your digital accounts, account types, and family succession arrangements. We handle this information with the highest level of care:

Specialists NEVER ask for passwords, credentials, or login information of any kind
Specialists NEVER type anything into your accounts or access them on your behalf
Sessions are audio-only – no recording is made under any circumstances
Session notes contain only account names, platform types, and succession status – never credentials
Your Digital Succession Portfolio is password-protected by you in the final session – we never know the password
No session notes or client documents are shared with any third party

6. Sharing Your Information

We do not sell, rent, trade, or share your personal information with third parties for marketing purposes. Ever. We share limited information only in the following circumstances:

a. Service Providers (Data Processors)

We use the following third-party services to operate our business. Each acts as a data processor under our instructions and has its own privacy policy:

Google Meet – for delivering consultation sessions
Our payment processor – for processing payments securely. We do not store card numbers. Our processor does not share payment data with us beyond name and billing address.
Brevo – for sending emails and managing our subscriber list
Google Analytics – for anonymised website analytics (IP anonymisation is enabled)
Cal.com – for booking session appointments
Termly – for cookie consent management

b. Legal Requirements

We may disclose your information if required to do so by law, court order, or regulatory authority, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.

c. Business Transfer

In the unlikely event of a merger, acquisition, or sale of all or substantially all of our assets, your information may be transferred as part of that transaction. We will notify you by email before your information becomes subject to a different privacy policy.

7. Data Retention

We retain your personal information only for as long as necessary:

Booking and payment records: 7 years (US federal tax compliance requirement)
Signed service agreements: 7 years (contract record requirements)
Email correspondence: 3 years from last contact
Session notes and post-session summaries: Deleted within 30 days of project completion unless you are an active Guardian Plan client
Photo project shared folders: Deleted on the same day as confirmed delivery to your cloud account. Written deletion confirmation is emailed to you.
Email subscriber list: Until you unsubscribe. Unsubscribe links are present on every email.
Website analytics data: 26 months (Google Analytics default, anonymised)

You may request deletion of your personal information at any time by emailing privacy@dearheir.com. We will respond within 30 days.

8. Cookies

a. What We Use Cookies For

Our website uses the following types of cookies:

Essential cookies: Required for the website to function (session management, security). Cannot be disabled without breaking the site.
Analytics cookies: Google Analytics (anonymised). Track page views, visit duration, and referral source. No personally identifiable information is collected.

We do NOT use:

Advertising or retargeting cookies
Social media tracking cookies
Cookies that follow you across other websites

b. Managing Cookies

You can control cookies through your browser settings at any time. You can also use our cookie consent banner (powered by Termly) to accept or decline non-essential cookies. Declining analytics cookies will not affect your ability to use our website or services.

9. Your Privacy Rights

a. California Residents (CCPA)

Under the California Consumer Privacy Act, California residents have the right to:

Know what personal information we collect, use, share, or sell
Delete personal information we have collected (subject to certain exceptions)
Opt out of the sale of personal information (we do not sell personal information)
Non-discrimination for exercising your CCPA rights

To exercise any of these rights, email privacy@dearheir.com with the subject line “CCPA Request.” We will respond within 45 days.

b. All US Residents

Regardless of your state, you may at any time:

Unsubscribe from our email list using the unsubscribe link in any email
Request access to the personal information we hold about you
Request correction of inaccurate information
Request deletion of your information (subject to legal retention requirements)
Withdraw consent where processing is based on consent

c. European Residents

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) including the right to data portability and the right to lodge a complaint with your local supervisory authority. To exercise any GDPR rights, contact privacy@dearheir.com. As our services are available to US residents only, we do not actively market to or process data from EU residents. If you have reached this website from outside the US, please note our services are not available in your region.

10. Children's Privacy

Our services are intended for adults aged 18 and over in the United States. We do not knowingly collect personal information from anyone under the age of 18. If you believe we have inadvertently collected information from a minor, please contact us immediately at privacy@dearheir.com and we will delete it promptly.

11. Security

We implement reasonable administrative, technical, and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

All email communications are sent via authenticated channels (SPF, DKIM, and DMARC configured via Brevo)
Payment processing is handled by our payment processor – we do not store card numbers, bank account details, or billing credentials on our systems
Google Analytics is configured with IP anonymisation enabled
Session notes and client documents are stored in access-controlled environments and deleted per our retention schedule (see Section 7)
Our website uses HTTPS encryption for all connections
No method of transmission over the internet or method of electronic storage is completely secure. While we take reasonable precautions, we cannot guarantee absolute security. If you have reason to believe your personal information has been compromised, contact us immediately at privacy@dearheir.com.

12. Third-Party Websites

Our website may contain links to third-party websites including Apple Support, Google Support, and others referenced in our educational blog content. This Privacy Policy applies only to dearheir.com. We are not responsible for the privacy practices of any third-party website.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last Updated” date at the top and, where changes are significant, notify active clients by email at least 30 days before the changes take effect. Continued use of our services after any change constitutes your acceptance of the updated policy.

14. Brand Disclaimer

Dear Heir is not affiliated with, endorsed by, or in any way officially connected with Apple Inc., Google LLC, Meta Platforms Inc., or any other company or platform mentioned on this website or in our services. All trademarks belong to their respective owners.

15. Contact