Is 'When I Die' secure?

The data that will be stored in the 'When I Die' app is personal and often sensitive information that no other eyes should see other than the ones you intended it for.

To provide this layer of security:

• Multi‑Factor Authentication (MFA) is required to log in. This combines your password with a time‑based one‑time code (OTP) generated by an authentication app.
• Encrypted DatabaseThe database is encrypted, so stored data cannot be read without the proper keys.
• Anti‑Forgery TokensAll communication with the server is protected by anti‑forgery tokens, which help ensure that requests cannot be altered or impersonated.
• Encrypted TransportData sent between your device and the server is encrypted using secure transport protocols.
• Encrypted UploadsFiles, documents, and images are encrypted before being uploaded, adding protection beyond transport encryption.
• Encrypted Sensitive FieldsSensitive fields such as passwords, PIN codes, and cryptographic keys are encrypted before being stored or retrieved, so they are never handled in plain text.