What Happens to Your iCloud Notes When You Die?

Quick answer: What happens to your iCloud notes when you die depends entirely on what you set up while alive. Default iCloud Notes can be inherited through Apple's Legacy Contact program. End-to-end encrypted notes — locked Apple Notes, ADP-protected data, third-party E2EE apps — cannot be recovered by Apple because Apple has no key to share. If you didn't leave the password or seed somewhere your heir can find it, the notes die with you.

Apple's Legacy Contact program

Apple introduced Legacy Contact in iOS 15.2 in late 2021 to solve a real problem: when someone died, families faced an opaque process involving court orders, lengthy delays, and inconsistent outcomes. The Legacy Contact mechanism is straightforward. Go to Settings > Apple ID > Sign-In & Security > Legacy Contact. Add one or more people. Each gets a Legacy access key — a unique code that can be shared by AirDrop, printed, or saved as a PDF.

When the contact submits the access key alongside a death certificate to Apple, Apple provisions a special inheritance account for up to three years. Inside that account they get access to most of your iCloud data: Photos, Notes, Mail, Contacts, Calendars, Reminders, iCloud Drive files, and device backups. They cannot use your Apple ID to buy things, change your password, or impersonate you. It's a one-way read-mostly window.

What's explicitly excluded: iCloud Keychain (your saved passwords), in-app purchases, paid subscriptions, payment information, and any DRM-protected media licensed under your account. The Keychain exclusion is the one that bites families most often — passwords are exactly what heirs need to clean up the rest of someone's digital life.

Why E2EE notes are different

End-to-end encryption creates an asymmetry that families don't understand until they hit it. With default iCloud, Apple holds the keys and can hand the content to a Legacy Contact. With end-to-end encryption — whether that's a locked Apple Note, anything under Advanced Data Protection, or a third-party app like Secure Notes — Apple has no key to share. The Legacy Contact gets the encrypted ciphertext but cannot read it.

This is not a bug. It's the entire point of zero-knowledge architecture. If Apple could decrypt your data for your heir, they could also decrypt it for a subpoena, an insider, or a hostile government. The same property that protects you while alive locks the door behind you when you die. We get into the philosophy of this in our guide to truly private note-taking apps.

The practical consequence: the only way an heir can read your encrypted notes is if you give them the password or recovery seed. Apple cannot help. The publisher cannot help. A court cannot help. The notes are gone the moment you forget — or die without documenting it. That's the price of privacy that's actually private.

How to plan inheritance for encrypted notes

The good news is that this is a solved problem if you set it up while alive. There are three durable patterns, in increasing order of robustness.

1. The sealed letter pattern. Write your master password and 12-word recovery seed on a single sheet of paper. Seal it in an envelope. Give it to your lawyer or place it in a safe deposit box. Add a clause in your will instructing the executor to open it after your death. The letter sits unopened for decades if needed — paper outlasts hard drives. The risk: a single point of failure if the envelope is lost, destroyed, or accessed prematurely.

2. The split-trust pattern.Give half your seed to your spouse and half to your sibling. Tell each that the other half exists. This is intuitively appealing but cryptographically bad — splitting a 12-word seed in half drops each half's security from 128 bits to 66 bits, and a thief who finds one half has a real shot. Do not do this naively. Read how to back up a recovery seed before splitting anything.

3. Shamir's Secret Sharing. Use a tool like SLIP-39 or ssss-cli to mathematically split your seed into N shares, such that any K of them reconstruct the secret and any K-1 reveal nothing. A 3-of-5 scheme is the gold standard: give shares to your spouse, your sibling, your lawyer, your executor, and a safe deposit box. Any three together can recover the seed. Any two cannot. This survives losing two shares, prevents any single person from acting alone, and is mathematically sound.

Whatever pattern you pick, document it. A “letter to family” in your estate file explaining how to recover your encrypted notes, where the shares live, and what tool reassembles them is worth more than any specific share. Most digital inheritance failures aren't cryptographic — they're organizational. Your spouse doesn't know what Shamir's Secret Sharing is. Make it discoverable.

What NOT to do

• Don't share your master password while alive.Once a family member knows it, you can't take it back, and it ages into every relationship change, every new partner, every move. If you need to give access to specific content now, use shared notes or a co-owned vault — not your master password.
• Don't trust a single cloud copy. The whole point of E2EE is that the cloud holds ciphertext. Putting your seed in iCloud Drive defeats the purpose. We cover what goes where in storing passwords in a notes app.
• Don't assume your spouse will figure it out.The number of estates that lose digital assets because the surviving partner couldn't locate or use the recovery method is staggering. Walk them through the process while alive. Test it.
• Don't skip the Legacy Contact setup. Even if all your sensitive content is in a dedicated E2EE app, the default iCloud data (photos, calendars, regular notes) matters to your family. The setup takes two minutes.
• Don't pick a single executor for everything.Splitting trust isn't paranoia; it's respect for the load you'd otherwise dump on one person at the worst possible moment of their life.

Frequently asked: iCloud notes and inheritance