Your data, your terms
Last updated 22 June 2026
Kinfolder holds your family's most important information, so protecting it is the whole job, not a feature. This policy explains, in plain language, what we hold, why, and the rights you have. The short version: your folder is encrypted on your own device, and not even we can read it.
Kinfolder (the “service”) is the data controller for the personal data described here. For privacy questions, or to exercise any of your rights, email privacy@kinfolder.com.
Our full legal entity name and registered address are listed in our Terms, and will be completed before public launch.
Everything you put in your Kinfolder is encrypted on your own device before it ever reaches us. We store only a sealed, unreadable blob. We do not hold the key, cannot decrypt it, and could not hand its contents to anyone — not an attacker, not an authority, not our own staff.
Your account: an email address and a passkey (public key) so you can sign in securely. Your sealed folder: the encrypted blob described above, plus minimal metadata (size, version) needed to sync it. Recipients: the email address of each trusted person you invite, so we can send their invitation and release. Payment: processed by Stripe; we store only whether your account is entitled, never card details. Operational logs: a record of emails we send you (subjects only, never folder content) and minimal, non-identifying telemetry to keep the service reliable.
Your data is hosted on servers in the European Union and never shipped to clouds in other countries. Encrypted blobs and backups stay within the EU under European data-protection law.
We process your account and folder data to perform our contract with you (Art. 6(1)(b)); recipient emails and release on the same basis and your explicit instruction; payment data to meet legal and contractual obligations; and limited telemetry on our legitimate interest in a secure, reliable service (Art. 6(1)(f)).
We use a small set of vetted providers, each bound by a data-processing agreement: Stripe (payments), Resend (transactional email), and EU-based infrastructure providers for hosting and storage. None of them can read your encrypted folder.
We keep your data for as long as your account exists. You can export everything as ordinary files, or delete your account and folder entirely, at any time — deletion is permanent. Where a trusted person has been given access, their copy is governed by your release choices.
You have the right to access, correct, export, restrict, or erase your personal data, and to object to processing. Email privacy@kinfolder.com and we will respond within one month. You also have the right to complain to your data-protection authority — in the Netherlands, the Autoriteit Persoonsgegevens.
We use no tracking cookies and no advertising. Our analytics are cookieless and collect no personal data — only anonymous, aggregate page counts — so there is nothing to consent to.
Kinfolder is intended for adults and is not directed at children under 16.
If we make material changes we will update this page and the date above, and notify you where appropriate.
This page is written in plain language for clarity and will be reviewed by qualified counsel, and our legal entity details completed, before public launch. It is not legal advice.
Kinfolder