Your family's data is yours.

We don't show ads. We don't sell your data. We don't share your tree with anyone you haven't explicitly invited.

We collect what's needed to run the service, plus minimal anonymous analytics so we know what to fix. You can export or delete everything you've contributed at any time.

Account information: name, email address, password (hashed), profile picture if you choose to upload one.

Tree content you contribute: people, relationships, dates, places, photos, stories, recipes, and any custom fields you fill in.

Technical data: IP address, browser type, device type, pages visited, and timestamps. Used for security and debugging.

Cookies: a session cookie when you sign in, and a consent cookie that records your privacy preferences.

To run the service: render your tree, sync changes between collaborators, send transactional emails (sign-up confirmation, password resets, invitations).

To keep it secure: detect abuse, investigate suspicious activity, prevent unauthorized access.

To improve the product: aggregated, anonymous analytics tell us which features are used. We do not link analytics to your personal identity.

We do not show ads.

We do not sell or rent your data to anyone.

We do not share your tree with anyone you haven't explicitly invited.

We do not train AI models on your private content.

Tree content is visible to people you invite as collaborators. You can set per-person and per-field visibility (e.g., hide health information from younger family members). You can revoke access at any time.

Under GDPR, CCPA, and similar laws, you have the right to access, correct, export, and delete your data. You can do all of this from your account settings — no support ticket required.

If something doesn't work, email [email protected] and we'll respond within 30 days.

We keep your data while your account is active. If you delete your account, we delete your data within 30 days, except where law requires us to retain billing records (typically 7 years).

Tree contributions you've made to other people's trees remain in those trees unless they remove them — you can no longer edit them yourself.

Passwords are hashed with Argon2. Health data is encrypted at rest. Connections use TLS 1.3.

We can't promise perfect security — no one can — but we follow OWASP guidelines, run regular security reviews, and disclose breaches within 72 hours of discovery as required by law.

Kinstripe is not directed at children under 13. Trees may include children's information added by their parents/guardians; that information is treated with the same privacy controls as any other person.

We use a session cookie to keep you signed in, a consent cookie to remember your privacy preferences, and a small number of operational cookies for cross-site request forgery protection. We do not use third-party advertising or tracking cookies.

We'll email you at least 30 days before any material change. Minor changes (typo fixes, clarifications) update the date stamp at the top without notice.

Email [email protected] for any privacy-related question or general support.