Privacy Policy

Last updated: March 30, 2026 · Effective: April 4, 2026

Reunifyr LLC (“Company,” “we,” “us”) operates the Reunifyr service (“Service”). This Privacy Policy describes what information we collect, how we use it, and the choices you have. By using the Service you consent to the practices described here.

1. Information We Collect

a. Account Information

When you register we collect your name, email address, and password credentials in protected form. Account administrators may also provide an organization name, branded site details, and billing information.

b. Profile & Genealogy Data

Users and administrators may enter family-member profiles, genealogy records (names, dates, relationships), event details, photos, videos, and documents. This information is stored within your account’s separated data scope.

c. Payment Information

Payment details (credit card numbers, billing addresses) are collected and processed exclusively by Stripe, Inc. We do not store card numbers on our servers. We retain Stripe customer IDs, subscription IDs, and invoice summaries for account management.

d. Usage & Log Data

We automatically collect IP addresses, browser type, pages visited, timestamps, and login activity. This data is used for security monitoring (e.g., brute-force detection), performance analytics, and audit logging.

e. Uploaded Content

Photos, videos, documents, and GEDCOM files you upload are stored using our file storage systems in a manner associated with your account. Image metadata may be read for processing and optimization, and certain metadata may be removed from derived files.

2. How We Use Your Information

Service delivery: Display your data within the service, generate reports, power search and notifications.
Billing: Process subscriptions, send invoices, and manage plan changes via Stripe.
Security: Detect unauthorized access, enforce rate limits, log admin and user activity for audit trails.
Communication: Send transactional emails (account verification, password resets, billing receipts). We do not send marketing emails without explicit opt-in.
Improvement: Analyze aggregate usage patterns to improve performance and features. We do not use your content for AI training or advertising.

3. Customer Data Separation

We use administrative, technical, and organizational measures designed to keep each customer’s data separated from other customers’ data.

Access controls designed to limit data access to authorized users.
Application safeguards intended to associate records and content with the correct account.
Administrative controls for user roles and permissions.

We design the Service so one customer cannot view, query, or modify another customer’s data through normal use of the application.

4. Third-Party Services

Service	Purpose	Data Shared
Stripe, Inc.	Payment processing	Name, email, billing address, payment method
Hosting and infrastructure providers	Application hosting, file storage, delivery, and related operations	Service data needed to operate the Service
Monitoring and diagnostics providers	Performance monitoring & error tracking	Anonymized telemetry, request metadata

We do not sell, rent, or share your personal data with any other third parties.

5. Cookies & Local Storage

We use essential cookies for authentication (session cookies, antiforgery tokens) and optional cookies for output caching. We do not use third-party tracking cookies or advertising pixels. No consent banner is required because all cookies are strictly necessary for service operation.

6. Data Storage & Security

All data in transit is encrypted via TLS 1.2+.
Data at rest is protected using encryption and related safeguards provided by our systems and service providers.
Password credentials are stored in protected, non-plaintext form.
Sensitive configuration and credentials are stored using restricted-access secrets management practices.
Security headers (CSP, HSTS, X-Frame-Options, X-Content-Type-Options) are enforced on all responses.
Traffic protections help guard login and account access points from abuse.

7. Data Retention

Active accounts: Data is retained for the duration of your subscription.
Cancelled accounts: You have 30 days after cancellation to export your data (including GEDCOM export). Data is permanently deleted after this period.
Audit logs: Login attempts, admin actions, and security events are retained for 12 months for compliance and security purposes.
Backups: Operational backups may be retained for a limited period consistent with our service-provider practices and recovery needs.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

Access — Request a copy of the personal data we hold about you.
Correction — Update inaccurate or incomplete data via your profile or by contacting us.
Deletion — Request deletion of your account and associated data.
Export — Download your data via CSV export, PDF reports, photo downloads, or GEDCOM export.
Restriction — Request that we limit processing of your data in certain circumstances.

To exercise any of these rights, email info@reunifyr.com. We will respond within 30 days.

9. Children’s Privacy

The Service is not directed at children under 13. Account administrators may enter genealogy records for minors (e.g., family-tree data), but minors may not create their own accounts. If we learn that a child under 13 has created an account, we will delete it promptly.

10. International Data Transfers

The Service is hosted through providers located in the United States. If you access the Service from outside the U.S., your data may be transferred to, stored, and processed in the U.S. By using the Service you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 14 days before they take effect. The “Last updated” date at the top indicates the most recent revision.

12. Contact

For questions or concerns about this Privacy Policy, contact us at info@reunifyr.com.