You're writing something
personal. We know.

A letter to your future self is not a password reset or a shipping address. It's the thing you're thinking at 11pm on New Year's Eve, or the morning before a move, or the week after a diagnosis. It deserves to be handled like what it is.

Here's what happens to it.

The moment you hit save, your letter is encrypted. The original text is gone — what sits in our database is a locked box that can only be opened with a key we hold separately. The box is only opened once: on the morning of your delivery date, for the few seconds it takes to generate the printed page. Then the unlocked text is discarded from memory. It's never written to a file, never backed up in plain form, never emailed to anyone.

We should be honest about one thing: we hold the key. That means we could, in theory, open the box early. We don't — the system is designed so that a single person can't do it without leaving traces. But the trust here is real, and we'd rather name it than pretend it doesn't exist. If you're writing something that absolutely cannot be seen by another human being under any circumstances, a sealed envelope in your own drawer is safer than any digital service, including ours.

This is the part most people care about most. The moment you pay, your letter is queued with our UK print partner. They hold the delivery schedule — the date, the print job, the address. Their system is the one that triggers the print and posts the envelope.

If writeself.org goes offline tonight, your letter still arrives on the morning you chose. That's not a marketing promise. It's how the system is built. The print partner's queue is the durable record. We're the front door, not the vault.

Stored encrypted, right alongside the letter. Used once — to print the envelope. Deleted after delivery if you ask. We have no mailing list, no address book, no reason to keep it a day longer than we need to. We don't sell data. We don't share it. We barely look at it.

We use your email for three things: the magic sign-in link, purchase confirmations, and a quiet quarterly check-in ("your letter is still waiting — here's the countdown"). That's it. No newsletters. No marketing. Unsubscribe the check-ins with one click if they bother you.

You can delete your account from your dashboard. We cancel any unsent letters, refund anything that hasn't been queued at the printer, and remove your data within 30 days. Letters already at the printer will still mail — their system is independent of ours, and that's the point.

UK GDPR applies. You can access, export, correct, or delete your data at any time. Email hello@write-self.org and we'll respond within a week.