Privacy Policy
Effective 2 July 2026 · The plain-language version is at /privacy.
1. Who we are
KinOS ("we", "us") provides a private family operating system: a space where a family coordinates the care of the people at its centre. We are the data controller for account information, and we process family content on behalf of the family that creates it. Contact: privacy@kinos.family.
2. What we collect
Account data — your name, email address, and sign-in records.
Family content — what your family puts into its space: check-ins, notes, voice-note transcripts, duties, appointments, documents, money records, and emergency details.
Health data — where your family chooses to record it or to connect a health device or app (for example a Withings blood-pressure cuff, or a phone's health store): readings such as blood pressure, heart rate, sleep, movement, and weight, together with the calm observations we derive from them. Health data is special-category data; we process it only with the explicit consent of the person it concerns (or their legal representative), given in the product.
Technical data — logs necessary to run and secure the service. We do not run third-party advertising or tracking.
3. How consent works
Consent is the product's core mechanic, and it is enforced in the database, not by screens. Each person's data carries a privacy level; family members see only what their role and the person's explicit consent grants allow. Health measurements carry an additional per-metric dial (numbers, notes only, or status only), controlled by the person themselves or a family admin. Revoking consent takes effect on the next query. An access log records grants, revocations, and device links.
4. What we do with data
We use family content solely to provide the service to that family: keeping the record, composing daily briefs, noticing patterns against the person's own baseline, and raising attention events the family has asked for. We do not sell personal data, we do not share it with advertisers, and we do not use your family's content to train models.
Health-device data is used only to provide these same features. It is never used for advertising, and never disclosed except as directed by the family or required by law.
5. Where data lives and who helps us
Data is stored encrypted at rest with our infrastructure providers: Neon (database), Vercel (hosting and file storage), and — when your family enables the features — Resend (email delivery), Stripe and Paynow (payments; they hold card and wallet details, we do not), and Withings (device data you link). Each processes data under its own agreement with us and only to provide its service.
6. Retention
The family record is kept for as long as the family keeps its space — that permanence is the product. Raw health readings expire automatically after 180 days; the derived observations remain. When a workspace is deleted, its content is removed from production within 30 days and from backups within 90.
7. Your rights
You may access, export, correct, or delete your data, withdraw any consent, and complain to your supervisory authority. Families can export their full record from the product. For anything you cannot do in the product, write to privacy@kinos.family and we will respond within 30 days.
8. What KinOS is not
KinOS notices and nudges; it does not diagnose, treat, or replace medical care. Nothing in the product is medical advice, and attention events are prompts for a family conversation, not clinical alerts.
9. Children
Family spaces are created and administered by adults. Children's information appears only as content a family chooses to keep about the people in its care, under the family's control.
10. Changes
If this policy changes materially, we will tell account holders by email or in the product before the change takes effect, and update the date above.