Skip to content

Privacy Policy

What We Collect

We collect only the family tree data you enter (names, dates, places, citizenship status) and a session cookie. That's it.

  • No email addresses
  • No personal accounts
  • No IP address logging
  • No analytics or tracking pixels
  • No third-party scripts or data sharing

How Long We Keep It

Your data is stored for 48 hours from your last activity, then automatically and permanently deleted. Every time you interact with the tree builder, the timer resets to 48 hours.

Delete My Data Now

You can delete all your data immediately at any time using the "Delete My Data" button in the tree builder. This permanently removes your family tree from our servers and clears your session cookie.

Session Cookie

We use a single session cookie (sid) that is strictly necessary for the tree builder to function. It is not used for tracking. It is httpOnly (not accessible via JavaScript), encrypted in transit, and expires after 48 hours of inactivity.

Security

  • All traffic encrypted via HTTPS/TLS
  • Data encrypted at rest (Upstash Redis)
  • No backups or replicas of user data
  • Hosted on Vercel (serverless) with Upstash Redis (serverless)