A digital estate plan your family can actually use

“Digital estate planning” sounds like the kind of phrase that leads to a brochure from a wealth management firm. The underlying question is simpler: if something happens to you — suddenly illness, a memory-affecting condition, or death — will the people who need to handle your affairs be able to get to the documents and accounts they need to?

For most people, the honest answer is no. A reasonable plan is a one-afternoon project that can save a bereaved family weeks of frustration at the worst possible time.

What you’re actually planning for

Three distinct scenarios:

1. Incapacity. You are alive but cannot manage affairs — a long hospital stay, a stroke, dementia. Someone needs to pay bills, handle medical paperwork, and keep the household running.
2. Death. An executor needs access to tax records, insurance policies, passwords to accounts that must be closed or transferred, and important documents (will, deeds, certificates).
3. Memory. A future you who has forgotten where you put the backup key, or which email account is the recovery address for the other, or what the passphrase on the 2017 encrypted hard drive was. Surprisingly common even without any medical event.

The same plan addresses all three, with small variations.

Piece 1: a password manager with emergency access

Your password manager is the single most important piece of infrastructure in your digital life. It is also, usefully, the one place where modern tools have thought carefully about estate planning.

All the major password managers support some form of emergency access:

• 1Password has “Emergency Kit” with an account recovery flow for family plans and a separate “break glass” recovery code.
• Bitwarden has “Emergency Access”, where a trusted contact can request access and, after a waiting period (which you set), receive it if you don’t decline.
• Dashlane and LastPass have similar features.

The mechanism is broadly the same: you designate a trusted person. They can request access at any time. You get notified and can decline. If you don’t decline within the waiting period (typically 24-72 hours), they get access. The waiting period is calibrated so that a living, healthy you can refuse; a dead or incapacitated you cannot.

Set it up. Pick the waiting period you’re comfortable with (I’d suggest 48 hours). Your trusted contact should themselves have a secure password manager and strong MFA — not a person who keeps passwords on a sticky note.

Piece 2: platform-level legacy settings

The major platforms have their own legacy features. Turn them on.

Apple (iCloud)

Apple’s Legacy Contact feature lets you designate people who can access your Apple ID data after your death, via a unique access key they can present along with a death certificate.

Set up: Settings → [your name] → Sign-In & Security → Legacy Contact. When you add a contact, you generate an “access key” — either delivered to them via Messages (if they also have a modern Apple device) or printable as a QR-coded page.

Your contact will also need a copy of your death certificate to complete the request. Apple is clear about which iCloud data is accessible (most of it) and which is not (Keychain passwords specifically, for security reasons — those are handled by the password manager you set up in piece 1).

Google

Google’s Inactive Account Manager lets you specify what happens if your account becomes inactive for a defined period (3-18 months). You can:

• Designate trusted contacts to be notified.
• Share specific data with them (Gmail, Drive, Photos, etc.).
• Optionally, have the account deleted.

Set up: myaccount.google.com/inactive.

Choose an inactivity threshold that won’t trigger during a long vacation — 6 or 12 months is reasonable.

Microsoft

Microsoft does not have an exact equivalent to Apple Legacy Contact or Google Inactive Account Manager; for a Microsoft account, executors need to contact Microsoft directly with documentation. What you can do:

• Make sure a trusted person knows your primary email and recovery email.
• Ensure your password manager has the account’s credentials.
• Keep BitLocker recovery keys separately backed up (not just in the Microsoft account, which may be inaccessible if sign-in fails).

Social platforms

Every major social platform has a “memorialization” or “legacy” feature. They are less important than the main-account ones, but setting them up takes minutes:

• Facebook/Meta: Legacy Contact who can memorialize the profile.
• Instagram: memorialization request.
• LinkedIn: memorialization request.

Piece 3: the printed “start here” letter

This is the piece most digital estate plans skip, and it’s the one that actually makes the others useful.

Without a “start here” letter, your executor knows you had accounts somewhere and passwords… somewhere. With it, they know exactly where to begin.

The letter:

• Is printed on paper, physically.
• Lives with your other important documents — in a safe, a fireproof box, with your will at the attorney’s office, or in a safe-deposit box.
• Is clearly labeled so a family member, executor, or trusted person knows to look for it.
• Does not contain passwords. The point is to direct the reader to the tools that can provide access through the legitimate legacy mechanisms you set up.

What goes in the letter:

1. A brief orientation. “If you are reading this, you probably need access to my accounts and documents. Here is where to start.”
2. The name of your password manager and the approximate location of any printed emergency kit. “I use 1Password. My emergency contact there is [Name]. They can start a recovery via the 1Password website.”
3. The Apple Legacy Contact / Google Inactive Account Manager / etc. that you’ve set up, and who is designated on each.
4. Where your main documents are — your will, insurance policies, tax records, property deeds. “Paper copies in the fireproof box in the closet. Digital copies in iCloud Drive, accessible via the Apple Legacy Contact process.”
5. Any encrypted containers — “I have a Cryptomator vault inside my Dropbox. The recovery key is in the safe-deposit box at [bank].”
6. The last will and testament — where it is, who the executor is, attorney contact.
7. Other people to contact — accountant, financial advisor, doctor, close friends who should know.
8. A date of last update. So the reader knows when your plan was last refreshed.

The letter does not contain a single password. Every access path is via a mechanism where the reader is authenticated through some combination of being named as a legacy contact, being able to produce a death certificate, and going through a formal process that leaves an audit trail.

Specific items that need their own plan

A few things don’t fit cleanly into the above:

• Full-disk encryption recovery keys. BitLocker / FileVault / LUKS keys should be printed and stored with the letter. Without them, an executor has the hardware and nothing else.
• Cryptocurrency wallets. Seed phrases need their own care, ideally stored in metal for fire/water resistance. Whether you list them in the letter depends on your threat model. For large holdings, multi-sig with a trusted co-signer is worth exploring.
• Photos on personal devices that aren’t in iCloud/Google Photos. An executor who doesn’t know the device passcode has no way in.
• Business accounts. If you run a business, your business’s accounts need their own succession plan — typically handled via the business itself (a partner, a successor), not a personal estate plan.

How to maintain it

Once a year — put it in your calendar:

1. Re-read the letter. Update anything that’s changed.
2. Confirm your password manager’s emergency contact is still the right person and is still a functional account.
3. Verify your Apple Legacy Contact, Google Inactive Account Manager, and other platform settings.
4. Make sure your trusted people know they are your trusted people. (This conversation doesn’t need to be morbid; it can be “hey, I set you as my emergency contact on a couple of things; here’s what that means”.)
5. Confirm the physical location of the printed letter.

A fifteen-minute annual ritual. The absence of which, at the moment it matters, is not something you’ll ever get to hear about.

The legal layer

In the US, most states have adopted a version of the Revised Uniform Fiduciary Access to Digital Assets Act (RUFADAA), which gives fiduciaries (executors, trustees) legal access to digital assets under certain conditions. The conditions generally include a provision in your will granting such access and honoring your use of platform legacy tools. Check whether your state has adopted it, and have your will reference digital assets explicitly.

In other jurisdictions, the legal frameworks vary, but the direction is similar — courts increasingly recognize the practical need for access to digital assets after death.

The point

Digital estate planning is not an exotic discipline. It’s the digital equivalent of keeping your important paperwork in one place that your spouse or executor can find. Password manager emergency access, platform legacy settings, and a printed letter — all together, a weekend project that future-you, or the people who love you, will one day be very grateful for.

A quick cross-reference: the Threat modeling for normal people article covers how to assess which pieces of this apply to your specific situation.