top of page

KINNECT PRIVACY POLICY

Effective Date: January 1, 2025

This Privacy Policy explains how The Kinnect Company, a Delaware stock corporation ("Kinnect", "we", "us", or "our"), collects, uses, stores, and protects information when you use our websites, mobile applications, and related services (collectively, the "Service").

Your privacy and security are foundational to everything we build. By using Kinnect, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Service.​

 

1. INFORMATION WE COLLECT

Kinnect collects information to deliver, maintain, and enhance the Service. Users always retain control over who can view the data stored within their vaults.

​

A. Information You Provide Directly

When you create or use a Kinnect account, you may provide:

​

1. Basic Information

  • Name

  • Email address

  • Phone number

  • Profile photo (optional)

  • Login credentials and authentication settings

​

2. Sensitive Information You Choose to Store

  • Kinnect is designed for secure storage of highly sensitive personal data. Examples include:

  • Financial documents and statements

  • Legal and estate planning documents

  • Medical information and records

  • Insurance policies

  • Identification documents

  • Personal instructions, password locations, and family records

  • All such information is encrypted end to end as described in Section 4.

​

3. Advisor and Professional Information

Advisors, attorneys, accountants, and other professionals may add client information only with the client’s authorization. Clients retain full control over access and permissions.​

​

4. Communication Data

  • Customer support inquiries

  • Feedback and survey responses

  • Optional communication with Kinnect personnel when requesting assistance

  • Kinnect does not have a user to user chat system. Only user initiated communication with Kinnect support is collected.​

 

B. Information We Collect Automatically

We collect limited technical data to secure and improve the Service:

  • IP address

  • Browser type, device type, and operating system

  • Session logs and usage patterns

  • Security event data such as failed login attempts

  • Cookies or similar technologies for authentication and performance

  • Kinnect does not use cookies for advertising or cross site tracking.​

 

C. Information From Third Party Integrations

Kinnect connects with trusted data providers including MX, Plaid, Zillow, Addepar, Yahoo Finance, and vehicle valuation APIs to populate relevant templates.

We may receive:

  • Account names

  • Account balances

  • Transaction history

  • Holdings and positions

  • Financial institution metadata

  • Property valuations

  • Vehicle valuations

  • Market prices for securities, cryptocurrency, or commodities

Credentials are never shared with Kinnect. Your banking or investment credentials are handled exclusively by MX or Plaid. Kinnect never receives, stores, or has visibility into your credentials.

Financial data retrieved through integrations is encrypted and stored securely within the user’s vault for reporting, visualization, and analysis.​

 

2. HOW WE USE YOUR INFORMATION

Kinnect uses your information only to operate and improve the Service.

​

A. To Provide the Kinnect Service

  • Organizing and storing uploaded documents

  • Populating templates with structured information

  • Generating reports such as ownership maps, asset liability summaries, and income or expense views

  • Managing sharing permissions, guardians, and access controls

​

B. To Improve Your Experience

  • Suggesting templates based on document type

  • Providing reminders for renewals, updates, and expirations

  • Maintaining data consistency across templates

​

C. For Security and Fraud Prevention

  • Detecting suspicious activity

  • Protecting user accounts

  • Maintaining the integrity of encrypted vaults

​

D. To Communicate With You

  • Account alerts and notifications

  • Service related updates

  • Support assistance

  • Kinnect does not use your data for advertising or resale.​

 

3. HOW DOCUMENTS ARE PROCESSED

Kinnect uses internal systems only to process uploaded files.

​

A. No Documents Are Sent to External AI Providers

No PDFs, images, or documents are shared with Anthropic, OpenAI, or any external AI model. All document extraction and classification occurs inside Kinnect’s secured AWS environment.

​

B. Manual Access Occurs Only With Your Permission

Kinnect personnel cannot view your document contents unless:

  • You explicitly grant permission such as during a support request, and

  • You have not applied a Premium Encryption Key to that document.​

 

4. SECURITY AND DATA PROTECTION

Kinnect’s platform is built on a zero knowledge, end to end encryption architecture to ensure your information remains private even from Kinnect.

Security practices below reflect our technical documentation and Security Overview. 

​

A. End to End Envelope Encryption

Data is encrypted at the moment of creation and only decrypted locally at the point of use. Kinnect’s systems cannot view or modify the contents of encrypted data.

​

B. Encryption In Transit and At Rest

All transmissions use SSL with 2048 bit certificates. All stored data is encrypted using AES 256.

​

C. Standard Encryption Keys

Each user receives a unique encryption key automatically generated and managed by Kinnect’s secure environment.

​

D. Premium Encryption Keys Zero Knowledge Mode

Users may apply additional user controlled encryption keys on any item.

When applied:

  • Kinnect cannot decrypt the data.

  • Kinnect employees cannot access the contents under any circumstance.

  • Losing the Premium Key means Kinnect cannot recover the encrypted item.

​

E. Access Controls

  • Multi factor authentication

  • Automatic session timeouts

  • Activity logs for every template accessed or modified

  • Independent vault architecture preventing unintended data access

​

F. Infrastructure Security

Kinnect is hosted in AWS Tier 4 data centers certified for ISO 27001, SOC 1 and SOC 2, PCI Level 1, and FISMA Moderate. 

​

G. Employee Safeguards

  • Background checks

  • Annual privacy and security training

  • Device level access management

  • Customer data hidden from employees unless explicit permission is granted

​

H. Vulnerability Testing

Kinnect performs recurring vulnerability scans and third party penetration testing to maintain platform security.

​​

5. HOW WE SHARE INFORMATION

Kinnect does not sell or monetize user data.

We share data only in the following limited situations:

​

A. With Your Explicit Permission

You control exactly who can view shared items. You may grant view only or edit access, set time limited access, or configure future distribution settings such as access upon death or incapacity.

​

B. With Trusted Service Providers

We use subprocessors for hosting, payment processing, analytics, error tracking, and financial data aggregation. These partners may process limited information only to perform their contractual function and must comply with strict security standards.

​

C. For Legal or Compliance Requirements

We may disclose data if required to:

  • Comply with law, subpoena, or regulatory inquiry

  • Prevent security threats or fraud

  • We will notify you unless prohibited by law.

​

D. Business Transfers

In a merger, acquisition, or asset sale, user data may transfer to a new entity. You will be notified and given options regarding your data.

​

 

6. DATA RETENTION AND DELETION
A. User Initiated Deletion

When you delete an item, it moves to a 30 day recycle bin.
You may permanently delete the item at any time by emptying the recycle bin.

​

B. Automatic Deletion

Items that remain in the recycle bin for 30 days are permanently removed.

​

C. Backups

Deleted items may remain in encrypted backups for up to 7 days and are then purged automatically.

​

D. Account Closure

When you delete your Kinnect account:

  • All associated data is deleted from primary storage

  • Backups are purged within the 7 day backup cycle

  • Data becomes fully unrecoverable after this period​

 

7. COOKIES AND TRACKING TECHNOLOGIES

Kinnect uses cookies only for:

  • Authentication

  • Security

  • Performance monitoring

  • Session management

  • Kinnect does not use advertising cookies or third party trackers for marketing.

​

 

8. YOUR PRIVACY RIGHTS

Depending on your jurisdiction, including GDPR and CCPA, you may have rights to:

  • Access your personal data

  • Request corrections

  • Request deletion

  • Download or export your data

  • Restrict certain types of processing

To exercise your rights, email hello@kinnect.us.

Kinnect does not discriminate against users who exercise their privacy rights.

​

 

9. CHILDREN’S PRIVACY

Kinnect is not intended for children under 13.
If we learn we have collected data from a child without proper authority, we will delete it promptly.

​​

10. GOVERNING LAW AND DISPUTE RESOLUTION

This Privacy Policy is governed by the laws of the State of Florida.
Disputes must be resolved through binding arbitration as described in the Kinnect Terms of Service.

​​

11. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy as our Service evolves.
Users will be notified via email or in app notification when material changes occur.

​​

12. CONTACT US

For questions or privacy related requests, contact us at:
Email: hello@kinnect.us

bottom of page