You have accounts, passwords, and digital assets that only you know about. If something happens to you — an accident, a sudden illness, death — that information disappears with you. Your family can't access your bank account. Your business partner loses the server credentials. Your loved ones never find the crypto wallet you've been building for years.
A dead man's switch solves this. It's a mechanism that triggers an action unless you periodically confirm you're still alive and in control. Originally a physical safety device on trains and heavy machinery, the concept has found a new home in the digital world.
How a digital dead man's switch works
The principle is simple: you check in on a schedule — weekly, monthly, or whatever interval you choose. As long as you keep checking in, nothing happens. If you miss your check-in and a grace period passes without contact, the switch fires.
- You set a check-in interval (e.g., every 30 days)
- The system sends reminders as your deadline approaches
- If you miss the deadline and grace period, your designated trustees are notified
- Secrets you've assigned to trustees become accessible to them
Two types of triggers
Most modern dead man's switches support two trigger modes:
- Inactivity trigger — fires after you miss check-ins, suitable for 'I've been incapacitated' scenarios
- Death certificate trigger — a trustee uploads a certified document; an admin verifies and manually activates the vault
You can assign each secret to one trigger type or both, giving you fine control over what gets revealed under which circumstances.
What you should protect with it
The most common categories people secure:
- Passwords to bank, email, and investment accounts
- Cryptocurrency wallet seed phrases and private keys
- Password manager master passwords
- Business server credentials and API keys
- Encrypted files — legal documents, personal letters
- Social media account credentials (for memorial management)
The encryption question
The critical issue with any dead man's switch is: who can read your data while you're alive? Testamently encrypts everything in your browser using AES-256-GCM before sending it to the server, and stores only ciphertext. You choose a protection level per secret: Regular secrets use a vault key that stays recoverable so your trustees can inherit them; Premium and Gold add a master password run through PBKDF2 or Argon2id that we never receive; and the Zero-Knowledge tier wraps a secret only to your chosen trustees, so not even the service provider can ever read it. After the trigger fires, your trustees decrypt the secrets assigned to them.
Getting started
Setting up a dead man's switch takes about 15 minutes. Add your most critical secrets, invite one trusted person, and configure a 30-day check-in interval. That's the minimum viable setup. You can refine it over time — more trustees, tighter intervals, more secrets — but the core protection is in place immediately.