Japan’s National Consumer Affairs Center on Wednesday suggested citizens start “digital end of life planning” and offered tips on how to do it. The Center’s somewhat maudlin advice is motivated by recent incidents in which citizens struggled to cancel subscriptions their loved ones signed up for before their demise, because they didn’t know their usernames or passwords. The resulting “digital legacy” can be unpleasant to resolve, the agency warns, so suggested four steps to simplify ensure our digital legacies aren’t complicated:

  • Ensuring family members can unlock your smartphone or computer in case of emergency;
  • Maintain a list of your subscriptions, user IDs and passwords;
  • Consider putting those details in a document intended to be made available when your life ends;
  • Use a service that allows you to designate someone to have access to your smartphone and other accounts once your time on Earth ends.

The Center suggests now is the time for it to make this suggestion because it is aware of struggles to discover and resolve ongoing expenses after death. With smartphones ubiquitous, the org fears more people will find themselves unable to resolve their loved ones’ digital affairs – and powerless to stop their credit cards being charged for services the departed cannot consume.

  • Vanth@reddthat.com
    link
    fedilink
    English
    arrow-up
    110
    ·
    5 days ago

    Password manager with a delegated access structure is the way to go. If my sister (who I have delegated to) requests access, provides a death certificate,and waits some cool-off period, she gets access to the portions of my password vault I designate. I will grant her access to my financials upon death, but not social media and private stuff.

    Versus writing it down and giving it to a lawyer who probably has the same opsec as their 1920s counterpart.

    • Imgonnatrythis@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      23
      ·
      5 days ago

      Also are you going to update if every three months when you change your passwords? Writing it down gives only a false sense of legacy access that will likely never end up working

        • Imgonnatrythis@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          2
          ·
          4 days ago

          A lot of employers require this and people sync up their other passwords or if you’re like me, you average a change for many of your passwords every 6months or so simply because you are forced to change since you can’t remember the damn thing.

      • FierySpectre@lemmy.world
        link
        fedilink
        English
        arrow-up
        28
        arrow-down
        1
        ·
        5 days ago

        Bitwarden has this, you can set your next-of-kin and they’ll be able to get access. (They have to wait like 2 weeks or so and I imagine all sorts of alarm bells will go off if they try this while you’re alive). Might be a premium only feature though idk.

        • Vanth@reddthat.com
          link
          fedilink
          English
          arrow-up
          13
          ·
          5 days ago

          The BitWarden Emergency Access feature is premium-only to setup. And it doesn’t have the death certificate/identity verification piece to it, which I prefer not having anyway.

        • Redex@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          5 days ago

          Wait how does that work? I thought Bitwarden couldn’t access your passwords, how could they grant a third party access to your passwords without your master password?

          • magz :3@lemmy.blahaj.zone
            link
            fedilink
            English
            arrow-up
            8
            ·
            4 days ago

            my understanding is:

            1. the emergency contact sends their public key to the owner of the vault
            2. the owner encrypts the key for the vault using said public key and stores the result on bitwarden’s servers
            3. the emergency contact can now request the decryption key from bitwarden, which they will receive either if the vault owner manually approves the request or if the request is not rejected within a certain amount of time
            4. the emergency contact can then decrypt the stored vault key using their private key, and use that to access the vault

            source

            • Redex@lemmy.world
              link
              fedilink
              English
              arrow-up
              2
              ·
              3 days ago

              Ok I didn’t realise the emergency contact had to have a Bitwarden account, that makes sense. Thanks.

      • Vanth@reddthat.com
        link
        fedilink
        English
        arrow-up
        10
        ·
        5 days ago

        So it’s not actually one I would recommend. It’s provided as an employee benefit through my company, and I don’t particularly like my company having any relation to it at all.l and I don’t like the death certificate portion.

        I’m moving back to BitWarden, which has a similar feature. It’s Emergency Access, in which your delegated person requests emergency access, there is a wait period where you would be getting emails or whatever notifying you of the access request, and if you don’t respond within the defined time period, access is granted.

        So it removes the identification / death certificate portion, which I greatly prefer. My BW vault ties to an email address that I use only for the password manager, not my legal name or Social Security number, so I’m compartmentalizing pieces of identifying information.

      • ironhydroxide@sh.itjust.works
        cake
        link
        fedilink
        English
        arrow-up
        1
        ·
        5 days ago

        You can self host Vaultwarden, which is essentially self managed Bitwarden.

        And the feature can be setup fairly easily.

        • KairuByte@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          9
          arrow-down
          1
          ·
          5 days ago

          Okay, but if you’re self hosting it, then die, and the hosting has an issue during that time? You’re SOL.

          Don’t try to self host things like a dead man switch.

          • ironhydroxide@sh.itjust.works
            cake
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            5 days ago

            The likelihood that I die, and my loved ones decide to just turn off the server while knowing it’s where the Vaultwarden software lives, before they get access to said Vaultwarden, is very very slim.

            Self host whatever you want. Even Deadman switches.

            The key is informing your loved ones the requirements for the switch. Just like if they don’t know to request access in other Deadman switches.

            • KairuByte@lemmy.dbzer0.com
              link
              fedilink
              English
              arrow-up
              4
              arrow-down
              1
              ·
              5 days ago

              And if the hard drive goes out?

              Cmon, you can’t tell me you’re comfortable with a 2 week “anything could happen” period where all that information could just disappear forever.

              • ironhydroxide@sh.itjust.works
                cake
                link
                fedilink
                English
                arrow-up
                2
                arrow-down
                1
                ·
                5 days ago

                I can definitely tell you I’m comfortable with that.

                If family doesn’t know I’m dead in 3 days, they ain’t family.

  • drosophila@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    37
    ·
    5 days ago

    This is a symptom of the absolutely insane way digital payments work.

    You give a company your card details and they’re able to charge whatever they want, whenever they want, by default. That’s like paying at a restaurant by handing the waiter your entire wallet and telling them to take out the cost of the meal.

    • otp@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      16
      ·
      4 days ago

      That’s like paying at a restaurant by handing the waiter your entire wallet and telling them to take out the cost of the meal.

      Isn’t that basically how it works in the US?

      • sibannac@lemmy.world
        link
        fedilink
        English
        arrow-up
        7
        ·
        4 days ago

        Yes, yes it is. The only deterrent really is the will of the employee to commit fraud and/or a customer noticing. I’ve had to handle coworkers in the past writing in tips on blank tip lines on the reciepts that the customer signed.

    • rottingleaf@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      1
      ·
      edit-2
      5 days ago

      Everything made by sufficiently big orgs works like this.

      They care about ability to be do everything by themselves and easily.

      They don’t care about sanity of the system for the user, because there are crowds of users, what are they going to do, barter?

      And the worst part is where the biggest org of all these, the government, makes requirements that can only be fulfilled by big orgs.

      You can’t win playing by the rules your opponent sets. EDIT: Unless they do some sort of Ulysses’ pact, but they won’t.

  • teft@lemmy.world
    link
    fedilink
    English
    arrow-up
    33
    arrow-down
    8
    ·
    5 days ago

    Fuck all that. My shit will erase itself if i don’t check in. The family can eat a bag of dicks if they want my data.

    • parpol@programming.dev
      link
      fedilink
      English
      arrow-up
      16
      arrow-down
      5
      ·
      edit-2
      5 days ago

      This. Why would anyone want their private conversations, out there? Don’t put your password in you will. Put a dead man switch on your PC.

      If it is to close down a social media account they can contact the company directly.

      If it is to take out money, they can contact the bank directly.

      If it is to inform contacts, they can live without knowing.

      If it is to cancel subscriptions, you’re going to have to send letters, wait in a phone call for hours, and cancel the credit card either way because of scummy cancellation practices.

    • Dizzy Devil Ducky@lemm.ee
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      1
      ·
      5 days ago

      I can see why people would feel this way, but I would absolutely want a trusted family member that I care about to have access to my data so they could create some sort of digital family memorial of my life if they so choose, for a funeral or just to have in general. I’d personally want family to have easy access to my data so they could easily find any memories they wanna share.

  • TachyonTele@lemm.ee
    link
    fedilink
    English
    arrow-up
    19
    ·
    5 days ago

    Eh The things that actually matter, like phone, banks and utilities, and just about everything else, only require you tell them of the death. They might want proof such as a death certificate, but that’s normal.

    • Admiral Patrick@dubvee.orgOP
      link
      fedilink
      English
      arrow-up
      12
      ·
      5 days ago

      The article mentions things like auto-payment subscription services which can definitely be a pain to deal with (even while you’re alive lol). Depending on how the payments are setup, it can be as easy as having the bank cancel the debit/credit card. For direct debit from checking accounts, though, it’s often a lot more complex to get stop payments on those (been there, unfortunately).

      So leaving your account details (in a password manager, text file, notebook, etc) has some tangible benefits. At the very least, it makes it easier on your survivors to handle your affairs.

      • Patch@feddit.uk
        link
        fedilink
        English
        arrow-up
        13
        ·
        5 days ago

        Strangely, I used to work for a bank in their “bereavement services” department; that is, the department that dealt with dead people’s accounts.

        If anyone notified us of a death of an account holder, and provided any proof (death certificate, coroner’s report, police letter), the first thing we’d do is freeze the account. All payments out stopped, all cards cancelled, all withdrawals blocked. This was a legal requirement, because once somebody dies their money becomes the legal property of their “estate”, and it’s unlawful for anyone to remove money from the estate without following proper process.

        There’s no need to stop each payment individually. In fact, the bank really doesn’t want you logging in to their online bank using the deceased’s credentials and messing around with things for the same reason; unless you’re following proper procedures, it’s not yours to mess with.

        Possibly it’s different in different jurisdictions, of course.

      • TachyonTele@lemm.ee
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        5 days ago

        Oh don’t get me wrong, i think it’s a good idea. Just be mindful that financial companies (for example) don’t think you’re in the account fraudulently. Tell them the person is deceased and then provide the account info you have.

        • Admiral Patrick@dubvee.orgOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          5 days ago

          Well, yeah, for banks and “official” services like that. Otherwise, it’s fraud and you’ve got a whole new set of issues to deal with.

        • wrekone@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          3
          ·
          5 days ago

          Crap, i delete my first comment. Luckily i copied it right before, lol.

          And once you control the bank account, just put a stop payment on all of the subscriptions. What are they gonna do, put a negative mark on your dead relative’s credit score?

        • wrekone@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          3
          ·
          5 days ago

          Depends on the state and the type of debt. Have a mortgage? The bank will give the next of kin the opportunity to take over the payments. If they dont’t pay the mortgage, the bank will foreclose on the loan. But if Netflix comes after your kid for not paying your subscriotion fee after you die? They can fuck right off. At least, where I live.

          • TachyonTele@lemm.ee
            link
            fedilink
            English
            arrow-up
            3
            ·
            5 days ago

            Or they could be like Disney and deny something important because your cousins uncles grandfather had Disney+ for a week!

            But I’m with you. Stop all payments.

    • Admiral Patrick@dubvee.orgOP
      link
      fedilink
      English
      arrow-up
      9
      ·
      5 days ago

      Yeah. The only complicating factor is there are still some very stupid services that force periodic password changes (or at least I still have to deal with such stupid services with terrible password policies).