Held is a diary application. You write entries, optionally by voice, and choose how long each one lasts — from 5 minutes up to 24 hours — before it's permanently and automatically deleted. Held is operated by [YOUR LEGAL ENTITY / NAME] ("we," "us"). You can reach us at diary@heldthoughts.com.
You're responsible for keeping your passcode confidential — it's also your encryption key, and we have no way to recover it for you. If you forget it, we can send a new one to the email on file, but any entries written under the old passcode become permanently unreadable in the process. That's not a bug we can fix on request; it's a direct consequence of how the encryption works, and it's why the passcode reset flow warns you about it before you use it.
You're responsible for the accuracy of the email address you provide, since it's how account recovery and disappearance notifications reach you.
Held's core feature is permanent, automatic, unrecoverable deletion of your entries on a timer you set. We do not keep backups of entry content for recovery purposes, and we cannot retrieve an entry after it has expired, regardless of the reason you might want it back. By using Held, you accept that anything you write will genuinely be gone when its timer runs out.
The same is true of account deletion: if you delete your account, that action is immediate and irreversible, on your end and on ours.
Held administrators can trigger a passcode reset for an account. They cannot read entry content, cannot see the passcode they're resetting (it's generated by the server and emailed directly to the account's address on file), and only see a masked version of that email address as confirmation. Administrators have no technical path to entry content, under any circumstance, including in response to a support request or legal process directed at us — because the decryption key never exists on our servers to begin with.
Don't use Held to store or transmit anything illegal, to harass or threaten another person, or to attempt to interfere with the service (including trying to bypass the encryption, rate limits, or authentication). We may suspend or terminate an account that violates this, or that we reasonably believe poses a security risk to the service or its other users.
Held is provided "as is," without warranties of any kind, express or implied, including any warranty of merchantability, fitness for a particular purpose, or non-infringement. We don't guarantee the service will be uninterrupted, error-free, or perfectly secure — no service can honestly promise that.
To the maximum extent permitted by law, [YOUR LEGAL ENTITY / NAME] will not be liable for any indirect, incidental, special, or consequential damages arising from your use of Held, including loss of data — which, given the product, is expected to happen by design and on your own schedule. [This section needs a lawyer's input on your specific liability cap and any carve-outs required in your jurisdiction.]
You may stop using Held and delete your account at any time. We may suspend or terminate accounts that violate these terms or for security reasons, with notice where practical.
We may update these terms from time to time. Material changes will be reflected by updating the date at the top of this page. Continuing to use Held after a change means you accept the updated terms.
[INSERT: governing law and jurisdiction — this varies by where your business is formed/operates and needs a lawyer's input, not a default.]
Questions about these terms: diary@heldthoughts.com.