Privacy Policy

The short version

Your household’s knowledge belongs to your household. We store it to give it back to you, and for nothing else. No ads, ever. No selling or sharing your data with advertisers or data brokers. No using your household’s content to train AI models. You can export or delete everything, any time.

1. What we collect

Household content you choose to record — notes, photos and voice-dictated text captured by household members. By the nature of the product this can include information Australian privacy law treats as sensitive (for example health details such as allergies or medication routines) and financial details (warranties, receipts, insurance facts). We only receive what your household chooses to capture, and we handle health and financial entries with the extra protections described in section 4.

Account and contact data — your household name, member first names, and (on the waitlist/founding list) your email address and signup answers.

Usage events — content-free product signals (for example “a capture happened”), tied to a one-way hashed household identifier, used to understand whether the product works. These never contain what you wrote.

Third parties you mention (a plumber’s name and number, a babysitter) — we store what you record, limit it to the service you use it for, and never profile those people.

2. Children

Kinsly accounts are for adults. You must be 18 or older to create a household or join one with an invite code. Children take part as profiles that a parent or guardian creates and controls — information about a child (school routines, medical needs) is recorded by their parent or guardian, who consents on their behalf and can edit or delete it at any time. We are preparing for the OAIC’s incoming Children’s Online Privacy Code and will update our practices as it commences.

3. Where your data lives

  • Household content database: Sydney, Australia (Supabase, encrypted at rest).
  • Application servers: hosted with Railway in the United States. These servers relay the app and hold limited operational data (scheduled notification text you set, content-free usage events, subscription status) — never your household entries.
  • AI processing: when AI answers are enabled, relevant non-private entries are sent to Anthropic (United States) to answer your question, under terms that do not permit training on your data. Entries marked private are never sent to any AI service.
  • Voice: speech-to-text runs in your browser. Depending on your browser (e.g. Chrome, Safari), audio may be processed by the browser vendor’s speech service — it is never sent to Kinsly’s servers as audio.
  • Payments: handled by Stripe; card details never touch Kinsly’s servers.
  • This marketing site uses the Meta pixel to measure our advertising (see section 7). The app itself contains no advertising or ad trackers.

Where information leaves Australia (US hosting and AI processing above), we take reasonable steps consistent with the Australian Privacy Principles to ensure it is protected to an equivalent standard.

4. Sensitive entries

Entries Kinsly detects as sensitive (or that you mark private) are encrypted at rest with a household-derived key, blurred in the interface, excluded from AI processing and photo reading, and excluded from babysitter/carer handover links. A private note can only be revealed by the household member who recorded it.

5. How we use information

To provide Kinsly to your household — storing, organising and retrieving what you captured; sending notifications you set; operating your subscription. We do not use household content for advertising, do not sell or rent any personal information, and do not use your content to train AI models. Aggregate product analytics use de-identified, content-free data only.

6. Sharing inside your household

Kinsly is a shared household memory: entries (except private ones) are visible to the members of your household. Your invite code is the key to your household — treat it like a house key. Anyone you give it to can read and add household notes.

7. Marketing site & email

The waitlist/founding list uses your email to send you access and a small number of launch updates. Every email identifies us and includes a way to opt out; unsubscribing takes one reply. Waitlist data that never converts to an account is deleted within 12 months. This site’s Meta pixel helps us measure which ads work; you can limit ad tracking through your browser and Meta settings.

8. Retention, export & deletion

Kinsly’s value is remembering, so by default we keep what your household captures until you remove it — that default is your choice, not a lock-in. You can delete any entry, export your entire household memory as a file, or delete the whole household, at any time, in the app. Deleted content is removed from our systems within 30 days of deletion.

9. Security

Encryption in transit and at rest; sensitive entries additionally encrypted at the field level; database access locked to code-verified household functions; access-controlled infrastructure. If a data breach is likely to cause serious harm we will notify affected users and the OAIC in line with the Notifiable Data Breaches scheme.

10. Your rights & contact

You can access and correct your information in the app, or contact us at privacy@kinsly.app (interim: brent@fitnessnation.au) for anything you can’t do yourself, including complaints. If you’re not satisfied with our response you can complain to the Office of the Australian Information Commissioner (oaic.gov.au). We’ll notify households of material changes to this policy before they take effect.

Terms of Use · Home