Security Questions to Ask Before Storing Family Videos Online
Before you upload deeply personal family recordings to any platform, you deserve straight answers to seven fundamental security questions — about how your files are encrypted, who can access the decryption keys, what happens to your data when delivery links expire, and what the plan is if the service ever shuts down. No platform can offer perfect guarantees, but the right answers to these questions will tell you whether a service deserves your trust.
Why Security Matters for Personal Videos
A final message to your children. A wedding anniversary tribute. A recording you made when you were first diagnosed with a serious illness. Family videos sit in a category of their own — they are among the most private things you own, more intimate in many ways than financial documents or medical records.
Unlike a bank statement, a personal video cannot be reissued if it is compromised. The harm is not just practical; it is emotional and irreversible. Footage of a deceased loved one appearing in a data breach, being indexed by a search engine, or simply being accessible to people it was never intended for is a profound violation.
This is why the security posture of a digital legacy platform is not a secondary concern. It is the primary one. The questions below are designed to help you evaluate any service — including ours — before you trust it with content that cannot be replaced.
The 7 Security Questions to Ask Any Platform
Ask these questions directly, or look for clear answers in a platform’s security documentation. Vague answers are themselves informative.
-
Question 1
How are videos encrypted?
Look for AES-256 encryption at rest combined with TLS in transit as a minimum baseline. Ideally, a platform uses client-side or end-to-end encryption, meaning the video is encrypted on your device before it ever reaches the server and the service provider never holds the plaintext. If a provider only says “we use HTTPS,” that covers transit but tells you nothing about how data is stored on their servers. -
Question 2
Who can access the encryption keys?
This is the question most services would prefer you not ask. When a provider manages the encryption keys (server-side key management), staff with the right permissions can — in principle — decrypt your content. The alternative is user-controlled key management or envelope encryption where keys are derived from a passphrase only you hold. Ask explicitly: does your engineering or support team have a technical path to decrypting a specific user’s stored video? -
Question 3
Are delivery links time-limited?
When a video is delivered to a recipient, how is it shared? A raw, permanent URL is a significant risk — it can be forwarded, indexed, or accessed years after delivery. Strong platforms issue signed, time-limited URLs that expire after a defined window (e.g., 24–72 hours) and require re-authentication to regenerate. Ask how long delivery links remain valid and whether they can be revoked. -
Question 4
What happens to my data if the service shuts down?
Digital businesses close. Ask what the platform’s wind-down policy is: will you receive advance notice? Will you be able to export your original files? Will data be securely deleted rather than sold or handed to another company? The absence of a documented answer here is a serious warning sign — especially for a service holding content intended for posthumous delivery. -
Question 5
Is there an audit trail of who accessed what?
Reputable platforms maintain access logs that record which accounts or system processes accessed which files, and when. This does not prevent inappropriate access, but it creates accountability and enables detection. Ask whether access logs exist, who can read them, and for how long they are retained. A service that keeps no logs cannot tell you if your data was accessed without authorisation. -
Question 6
How are account credentials protected?
Your account is the front door. Ask whether the platform supports two-factor authentication (2FA), how passwords are stored (look for bcrypt, scrypt, or Argon2 — never plaintext or simple MD5/SHA1), and whether there are protections against brute-force login attempts. Also ask: if a recipient has never used the platform, how are they authenticated in a way that prevents an attacker from intercepting delivery? -
Question 7
What is the data retention and deletion policy?
Understand both sides: how long does the platform retain your data by default, and — critically — what happens when you request deletion? Data should be purged from all backups within a defined window, not merely hidden from your dashboard. Ask how long deletion propagates through storage and backup infrastructure. Deletion that takes effect in six months is not the same as one that takes effect immediately.
How MyFinalMessage Answers These Questions
We believe you should be able to apply the questions above to us just as you would to any other service. Here are honest answers — including where we have limits.
Q1 — Encryption method
Videos are stored using AES-256 encryption at rest and transmitted over TLS. We use server-side key management via our cloud infrastructure provider’s key management service. We do not currently offer client-side or user-held key encryption, which means the encryption keys are managed by us — not by you personally.
Q2 — Who can access keys
Our architecture is designed with restricted staff access. A small number of authorised engineers can access key management systems under documented operational procedures. We cannot honestly claim it is technically impossible for all staff to access stored content — that would require a system architecture we do not yet have. What we can say is that access is role-restricted, logged, and reviewed.
Q3 — Delivery link expiry
Delivery links generated for recipients are time-limited and signed. Links are not permanent URLs and are designed to expire after a defined window. Recipients who need to re-access content must re-authenticate. The exact expiry window is configurable within your account settings.
Q4 — Service shutdown
We maintain a wind-down policy committing to providing users with advance notice and an export window if we were to close. We encourage every user to retain source copies of all recordings they consider irreplaceable — on an external hard drive, in a separate cloud account, or both. No service can guarantee its own continuity forever, and we think that is worth saying plainly.
Q5 — Audit trail
Access to stored video files is logged at the infrastructure level. Logs record which system processes and account actions result in file access. These logs are retained for a defined period and are reviewable by our engineering team. We do not currently expose access logs directly to end users in a self-service interface.
Q6 — Account credential protection
Passwords are hashed using a strong one-way algorithm. We support two-factor authentication and recommend it for all accounts. Login attempts are rate-limited. Recipient delivery uses a separate authentication flow designed to verify identity without requiring a full account, while resisting interception.
Q7 — Retention and deletion
When you delete content or close your account, files are removed from our primary storage. Complete propagation through backup infrastructure occurs within a defined window set out in our Privacy Policy. We do not retain deleted content beyond that window. We do not sell user data.
Red Flags to Watch For in Any Service
When evaluating any platform for storing personal family content, treat these as prompts to dig deeper — or walk away:
- ❌ Vague or absent security documentation. If a service does not publish a clear explanation of how it stores and protects data, that absence is itself an answer.
- ❌ Claims of “100% guaranteed delivery” or “impossible for anyone to access.” No honest system can make these claims. They signal either a misunderstanding of the technology or a willingness to overpromise.
- ❌ No mention of encryption standard. “We take security seriously” is a marketing phrase, not a security posture. Any credible service should be able to name the encryption algorithm and mode it uses.
- ❌ Permanent, shareable delivery links. If a recipient can forward a link to your private video indefinitely without it expiring, that video is no longer under your control the moment it is delivered.
- ❌ No documented wind-down or data portability policy. A service storing content intended for delivery years in the future should have a plan for what happens if it does not survive that long.
- ❌ No two-factor authentication option. If a single compromised password is all it takes to access years of personal recordings, that is an unacceptable risk surface.
- ❌ Instant, irreversible deletion with no audit trail. A service that deletes instantly and keeps no logs cannot demonstrate it complied with a deletion request, and cannot identify if data was accessed before deletion was requested.
Frequently Asked Questions
Is AES-256 encryption enough for personal family videos?
AES-256 is the current industry standard and is considered very strong for data at rest. However, encryption at rest is only part of the picture. You also need encrypted transmission (HTTPS/TLS), strong key management so the keys themselves are protected, and — ideally — client-side or end-to-end encryption so that only you and your recipients can decrypt the content. AES-256 alone is necessary but not sufficient.
What does “end-to-end encrypted” actually mean for video storage?
True end-to-end encryption means your video is encrypted on your device before it is transmitted, and can only be decrypted by the intended recipient. The service provider never holds the decryption key. Many services use the term loosely to mean “encrypted in transit,” which is not the same thing. Always ask which definition a platform is using when they make this claim.
Can MyFinalMessage staff access my uploaded videos?
MyFinalMessage is designed with restricted staff access. Our architecture limits who can access stored content and under what conditions. No system can honestly claim it is technically impossible for all staff to ever view data — that would require true client-side encryption with user-held keys. What we can say is that access is logged, restricted by role, and reviewed as part of our operational practices.
What happens to my videos if MyFinalMessage shuts down?
We maintain a documented wind-down policy committing to advance notice and an export window if we were to close. That said, no service can guarantee continuity forever, which is why we encourage all users to keep source copies of recordings they consider irreplaceable — on a local drive, a separate cloud account, or both. Your content should never be hostage to our continued operation.
Ready to store your messages securely?
MyFinalMessage gives you a clear, honest answer to each of these security questions. Start your first recording today — free to try, no credit card required.
Create your first message →Back to all articles