Privacy Policy

1. Introduction

Renji Labs, Inc. ("we," "our," or "us") operates Kaiary, a privacy-first AI-powered family journaling application. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect: your name, email address, phone number (for SMS verification), and authentication credentials. If you sign in using Apple or Google, we receive only the authentication token and basic profile information you authorize.

2.2 Family Content

The core of Kaiary is storing your family memories. This includes:

• Journal entries and text content you create
• Photos and images you upload
• Videos you upload
• Audio recordings and voice notes
• Milestone events and dates
• Any captions, tags, or descriptions you add to your content

Voice-to-text input. When you use the live "talk to type" feature to dictate journal entries, the audio is processed by your device's built-in speech recognition framework (Apple Speech on iOS, Google Speech Services on Android). Depending on your device, language, and OS settings, that framework may send brief audio samples to Apple's or Google's servers for transcription. Once your speech has been converted to text, only the resulting text is stored by Kaiary—we do not retain the live audio. This is separate from voice memos and audio recordings you save as journal content, which are uploaded to our infrastructure and transcribed by our self-hosted Whisper model (no third-party AI service receives this audio).

2.3 Biometric Information

Important: If you choose to enable our optional face recognition feature, we collect and process biometric identifiers in the form of facial geometry data extracted from photos you upload. This data is used solely to help you organize and search your photos by identifying family members.

Face recognition is entirely opt-in. You may choose to manually tag photos instead. You can delete your facial recognition data at any time without deleting your photos.

2.4 Device and Diagnostic Information

We automatically collect certain technical information when you use the app, including: device type, model, and operating system; app version; general usage patterns and feature interactions (Product Interaction data); crash logs and performance metrics; and IP address. Crash data and performance data are linked to your account so that we can investigate specific issues. IP address is used for security, fraud prevention, approximate geographic context, and for recording the IP and user agent associated with biometric and privacy-policy consent (where required by law).

Push notification tokens. If you enable push notifications, we store the push token issued to your device by Apple Push Notification service (APNs) or Firebase Cloud Messaging (FCM). The token is delivered to us via Expo's push service, which we use to dispatch notifications. Tokens contain no personal information about you, but are linked to your account so we can send you the notifications you've subscribed to.

2.5 Location Information

With your permission, we collect precise location data from your device. Location is used to:

• Suggest contextual journaling prompts based on where photos and entries were created
• Personalize features and content for your area
• Add automatic location tags to entries and memories you create

Location access is requested when you first use a location-aware feature, and you can change or revoke it at any time in your iOS settings (Settings > Privacy & Security > Location Services > Kaiary). Precise location is linked to your account, but we do not use location for advertising and we do not share precise location with our advertising partners.

Maps. When you view memories on a map, we use the device's default map provider—Apple Maps on iOS and Google Maps on Android. Map tiles and search queries you submit while interacting with the map are handled by Apple or Google according to their respective privacy policies; Kaiary does not send your stored memories to those providers.

2.6 Purchase Information

If you subscribe to Kaiary's paid features through Apple's in-app purchase system, we receive purchase history information from Apple, including subscription tier, transaction identifiers, and renewal status. We do not receive your payment card details—those are handled directly by Apple. We use purchase information to:

• Provide access to features you've paid for
• Handle customer support and billing inquiries
• Analyze our subscription business performance
• Measure the effectiveness of our advertising campaigns by linking subscription conversions to the ad, channel, or campaign that brought you to Kaiary

2.7 Identifiers and Marketing Data

We collect or generate the following identifiers and marketing-related data:

• A Kaiary User ID assigned to your account
• Device identifiers—including Apple's Identifier for Vendor (IDFV), and, only with your explicit permission via the App Tracking Transparency prompt, the Identifier for Advertisers (IDFA)
• Advertising data—such as which ad you clicked, install attribution information, campaign source, and conversion events you complete in the app

We use these identifiers and the associated event data to: measure the effectiveness of our advertising on platforms such as Google Ads, Meta (Facebook/Instagram) Ads, and AppsFlyer; understand how users discover and engage with Kaiary; personalize content within the app; and promote Kaiary to potential new users (including through lookalike audience targeting). These identifiers, along with related usage and purchase events, are shared with the advertising and analytics partners listed in Section 5.

Under Apple's App Store privacy framework, this activity is classified as tracking, because identifiers and event data may be linked with data those partners collect from other apps and websites for advertising or attribution purposes. We do not sell your personal data, we do not share your photos, videos, journal entries, or audio with these partners, and on iOS we do not access your IDFA without your consent (see Section 6: App Tracking Transparency).

3. How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Kaiary service
• Process and store your family content securely
• Generate AI-powered features including automatic photo descriptions, searchable content summaries, and storybook-style illustrations (all processed on our self-hosted infrastructure)
• Enable face recognition for photo organization (if you opt in)
• Send service-related communications and respond to support requests
• Send marketing communications about Kaiary features, offers, and updates to your email address (you can opt out at any time using the unsubscribe link in any email or by emailing privacy@kaiary.ai)
• Measure the performance of our marketing—including which ads, channels, and campaigns drive sign-ups and subscriptions—through partners such as Google Ads, Meta Ads, and AppsFlyer
• Analyze how users interact with Kaiary so we can understand what's working, fix what isn't, and prioritize new features
• Promote Kaiary to potential new users, including by building lookalike audiences from anonymized signals about existing users
• Personalize the app experience based on your usage patterns and, where you've granted permission, your location
• Ensure security and prevent fraud
• Comply with legal obligations

4. Data Storage and Security

Your data is stored on secure servers operated by Amazon Web Services (AWS) under our direct control. We implement industry-standard security measures including:

• Encryption in transit (TLS 1.3)
• Encryption at rest (AES-256)
• Regular security audits
• Access controls and monitoring

All AI processing, including image analysis, text processing, and face recognition, occurs on our self-hosted infrastructure. Your content is never sent to third-party AI services like OpenAI, Google AI, or AWS Rekognition.

Our complete safeguards—administrative, technical, and physical—are described in our Information Security Program. The retention period for each category of data, and how data is destroyed when no longer needed, is set out in our Data Retention & Destruction Policy.

5. Third-Party Services

We use the following third-party services, each of which receives only the data necessary to perform its function. None of these services have access to your photos, videos, journal entries, audio recordings, or other family content—those remain on our self-hosted infrastructure.

5.1 Infrastructure and Operations

• Amazon Web Services (AWS): Hosts our encrypted database, file storage, serverless functions, and self-hosted AI inference infrastructure. AWS does not access your content.
• Supabase: Authentication—receives your email and authentication credentials.
• Twilio: SMS verification—receives your phone number to deliver one-time codes.
• SendGrid (Twilio): Transactional and marketing email delivery—receives your email address and the contents of the message we send (e.g., welcome emails, account notifications, password resets, marketing newsletters).
• Apple Sign In and Google Sign In: If you use these to sign in, they provide us with an authentication token and basic profile information you authorize.
• Apple Push Notification service (APNs) and Firebase Cloud Messaging (FCM), via Expo Push: Deliver push notifications to your device. Receive your device push token and the notification payload we ask them to deliver (such as activity alerts and reminders).
• Expo / EAS (Expo Application Services): Provides our mobile app build and over-the-air update infrastructure. Receives anonymous device, OS, and app-version metadata when checking for updates.
• RevenueCat: Subscription management and entitlements layer for in-app purchases. Receives your purchase history, subscription status, transaction identifiers, and a device or user identifier so we can grant access to features you've paid for. Does not receive your payment card information (handled by Apple) and does not receive your photos, videos, or journal content.
• Sentry: Error and crash reporting—receives technical diagnostic data (stack traces, device model, OS version, app version) linked to a user identifier so we can investigate issues you report.

5.2 Analytics

• PostHog: Product analytics. In the Kaiary app, PostHog receives event data about how you use the app (screens viewed, features used, taps, sessions), linked to your Kaiary User ID. On the marketing website at kaiary.ai, PostHog receives anonymous pageview, click, and uncaught JavaScript exception data associated only with a random visitor identifier—we do not send your name, email, or other personal information to PostHog from the website. Session replay is disabled in both contexts. PostHog helps us understand product and site usage and is not used to display ads to you.

5.3 Advertising and Attribution

We work with the following partners to measure the effectiveness of our marketing and to reach potential new users. These partners may receive identifiers (such as IDFA, where you have granted permission via Apple's App Tracking Transparency prompt, IDFV, hashed email, or click identifiers) along with conversion events such as app installs, account creation, and subscription purchases. They may combine this data with information collected from other apps and websites for advertising and measurement purposes.

• Google Ads (Google LLC): Ad delivery and conversion measurement on Google's properties (Search, YouTube, Display).
• Meta Ads (Meta Platforms, Inc.): Ad delivery and conversion measurement on Facebook, Instagram, Messenger, and the Audience Network, including via Meta's Conversions API.
• AppsFlyer: Mobile measurement and attribution. Receives install events, in-app conversion events, and device identifiers in order to attribute installs and conversions to the correct ad campaigns.

These advertising partners are the basis for the data types disclosed as "Used for tracking purposes" in our App Store privacy nutrition label. You can limit this activity at any time by declining the App Tracking Transparency prompt on iOS, or by adjusting your ad personalization settings with each partner directly.

6. App Tracking Transparency (iOS)

On iOS devices, we comply with Apple's App Tracking Transparency (ATT) framework. Before we use your Identifier for Advertisers (IDFA) or otherwise link your activity in Kaiary with data collected about you in other companies' apps and websites, we will present you with the system prompt asking whether to allow tracking.

• If you allow tracking, we may share your IDFA and conversion events with our advertising partners (Google Ads, Meta Ads, AppsFlyer) to measure ad performance and personalize advertising.
• If you decline tracking, we will not access your IDFA, and we will rely on Apple's privacy-preserving alternatives—such as SKAdNetwork and AdAttributionKit—for aggregated, non-identifying campaign measurement. Apple permits this measurement without ATT consent.

You can change your tracking preference at any time on your iOS device under Settings > Privacy & Security > Tracking, either globally or per app.

Regardless of your ATT choice, we still collect first-party data linked to your Kaiary account (such as your User ID, in-app events, and crash data) for app functionality, analytics, and our own marketing measurement, as described in Sections 2 and 3.

7. Biometric Data Disclosure

For users who opt into face recognition, we provide the following disclosures in compliance with biometric privacy laws including the Illinois Biometric Information Privacy Act (BIPA). The complete biometric retention and destruction schedule is published in our Data Retention & Destruction Policy, Section 7.

• Purpose: Facial geometry data is collected solely to enable automatic face tagging and photo organization features.
• Retention: Biometric data is retained until you disable face recognition, delete the associated photos, or delete your account.
• No Sale: We will never sell, lease, or trade your biometric data.
• Storage: Biometric data is processed and stored exclusively on our self-hosted servers.
• Deletion: You may delete your biometric data at any time through the app settings without deleting your photos.

By enabling face recognition, you consent to the collection and processing of facial geometry data as described in this policy.

8. Data Retention

We retain your information for as long as your account is active or as needed to provide services. You may delete individual content items at any time. When you delete your account, we will delete all your personal data—including all photos, videos, journal entries, and biometric data—within 30 days. Some information may be retained longer if required by law or for legitimate business purposes such as fraud prevention.

9. Your Privacy Rights

9.1 All Users

Regardless of your location, you have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data and account
• Export your data in a portable format
• Opt out of face recognition at any time
• Withdraw consent for specific processing activities

9.2 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and California Privacy Rights Act, including:

• The right to know what personal information we collect, use, and disclose
• The right to delete your personal information
• The right to opt out of the sale or sharing of personal information (note: we do not sell your personal information)
• The right to non-discrimination for exercising your privacy rights
• The right to correct inaccurate personal information

To exercise these rights, contact us at privacy@kaiary.ai. We will respond to verifiable requests within 45 days.

9.3 European Economic Area Residents (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation, including:

• The right to access your personal data
• The right to rectification of inaccurate data
• The right to erasure ("right to be forgotten")
• The right to restrict processing
• The right to data portability
• The right to object to processing
• Rights related to automated decision-making and profiling
• The right to withdraw consent at any time

Our legal basis for processing your data includes: performance of our contract with you (providing the service), your consent (for optional features like face recognition), and our legitimate interests (improving the service, ensuring security).

10. Children's Privacy

Kaiary is intended for users who are 18 years of age or older. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@kaiary.ai.

Note: Kaiary is designed for families to document their lives, which may include photos and stories about children. This content is provided and controlled by adult account holders and is protected with the same security measures as all other content.

11. Do Not Track

We honor Do Not Track signals. When we detect a Do Not Track signal from your browser, we limit data collection to what is strictly necessary for the service to function.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy in the app and updating the "Last Updated" date. For significant changes, we will provide additional notice such as in-app notifications or email. Your continued use of Kaiary after changes become effective constitutes acceptance of the revised policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

• Email: privacy@kaiary.ai
• Mail: Renji Labs, Inc., 2093 Philadelphia Pike #6689, Claymont, DE 19703

We will respond to all privacy-related inquiries within 30 days.

14. Acknowledgment

By using Kaiary, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described herein.