Legal

Privacy Policy

Last updated: April 2026

Your family's financial and estate information is sensitive. We treat it that way. We do not sell your data, share it with advertisers, or use it for anything other than running Sema Legacy for you.

1. Who We Are

Sema Legacy ("we", "our", or "us") operates the website at www.semalegacy.com and the Sema Legacy application. We provide tools to help individuals and families assess and improve their estate and financial planning readiness.

For privacy questions, contact us at privacy@semalegacy.com.

2. Information We Collect

Account information — your name and email address when you register.

Assessment responses — answers to our planning questions across topics like estate planning, Medicare, Social Security, and retirement. This is stored to calculate your protection score and generate personalised guidance.

Documents — files you upload to the Document Vault. These are stored securely and are only accessible by you.

Payment information — if you subscribe, payment is processed by Stripe. We receive a subscription status and customer ID but never see or store your card details.

Usage data — pages visited, features used, and errors encountered, used to improve the service. We do not use this for advertising.

3. How We Use Your Information

We do not use your information for advertising, profiling, or selling to third parties.

4. Sharing Your Information

We do not sell, rent, or share your personal information with third parties for marketing purposes. We share data only with:

5. The Advisor Share Feature

If you generate an advisor share link, it creates a read-only view of your protection summary accessible to anyone with that link for up to 30 days. You can revoke this link at any time from your account settings. Only share this link with a trusted financial advisor or attorney.

6. Data Security

We take reasonable technical measures to protect your data, including passwords stored as salted scrypt hashes, HttpOnly SameSite session cookies, optional two-factor authentication, HTTPS in production, MIME-type validation on file uploads, and rate limiting on authentication endpoints. If you discover a security issue, contact security@semalegacy.com.

No system is perfectly secure. While we follow industry practices, we cannot guarantee absolute security, and you should retain your own copies of any critical estate-planning documents.

7. Data Retention

We retain your data for as long as your account is active. You can delete your account at any time from Settings → Account → Delete Account, which permanently removes your profile, assessments, documents, and all associated data.

8. Your Rights

Depending on your location, you may have the right to access, correct, delete, or export the personal data we hold about you. To exercise any of these rights, email privacy@semalegacy.com. We will respond within 30 days.

9. Cookies

We use a single session cookie (HttpOnly, SameSite=Strict) to keep you logged in, and localStorage for your theme preference only. We do not use tracking or advertising cookies.

10. Children's Privacy

Sema Legacy is not intended for use by children under 18. If you believe we have inadvertently collected information from a minor, contact us to have it removed.

11. How AI Processes Your Information

Some Sema Legacy features use artificial intelligence (AI) provided by Anthropic to generate summaries, recommendations, or personalised guidance. When you use these features, the inputs you supply — along with relevant context from your account (such as assessment answers or a document you ask us to summarise) — are transmitted to Anthropic's API.

Per Anthropic's commercial terms, inputs and outputs from their API are not used to train their models. Anthropic may retain API traffic for a limited period for abuse monitoring and legal compliance. You can review their policy here: anthropic.com/legal/privacy.

AI output is not legal, medical, or financial advice. The personalised guidance generated by Sema Legacy — including checklists, plain-English explanations, and topic summaries — is informational. It is generated by a language model and can contain errors or omit material facts specific to your situation. For decisions with significant financial, tax, medical, or legal consequences, consult a licensed professional.

If you want to avoid any AI processing of your inputs, do not use the AI-powered features (e.g., the plain-English translator, checklist generator, or document summariser). The core assessment, scoring, and document storage features do not use AI.

12. HIPAA and Medical Information

Sema Legacy is not a HIPAA-covered entity and does not provide medical advice. While our service helps you plan around health-related decisions (Medicare enrollment, long-term care funding, advance directives, special-needs planning), any information you enter — including references to health conditions, medications, or care needs — is treated as general personal information under this policy, not as Protected Health Information ("PHI") under HIPAA.

You should not upload actual medical records (physician notes, lab results, insurance EOBs containing diagnosis codes) to the Document Vault. The Vault is intended for estate-planning documents such as wills, powers of attorney, advance directives, trust paperwork, beneficiary designations, and Letters of Intent.

If you need to share PHI with a family member, use a HIPAA-compliant tool or your healthcare provider's patient portal — not Sema Legacy.

13. Changes to This Policy

We may update this policy from time to time. We will notify registered users of material changes by email. The "last updated" date at the top reflects the most recent version.

14. Contact

Questions about this Privacy Policy? Email us at privacy@semalegacy.com.