RootsKeeper (“we”, “us”, “our”) is a service that helps families preserve the life stories of their elders through guided voice conversations, transcripts, photos, and letters. This Privacy Policy applies to our website, mobile experiences, and any connected services (collectively, the “Service”).

• Account information — name, email address, preferred language, and authentication identifiers.
• Family content — voice recordings, transcripts, generated narratives, photos, captions, and letters you create or upload.
• Usage data — basic analytics about how the Service is used (pages visited, features used, error logs) to improve reliability.
• Device data — browser type, operating system, and IP address used for security and fraud prevention.

We use your information to:

• Provide and operate the Service (record, transcribe, narrate, store, share).
• Generate AI-written chapters and narratives from recordings you submit.
• Deliver scheduled letters to recipients on the dates you choose.
• Communicate with you about your account, security, and product updates.
• Detect, prevent, and respond to abuse, fraud, and security incidents.
• Comply with legal obligations.

We do not sell your personal data, and we do not use your family's recordings or photos to train third-party AI models.

To transcribe recordings and generate written chapters, we send audio and text to trusted AI providers (such as speech-to-text and large language model APIs) under contracts that prohibit them from retaining your content for model training. Outputs are stored only inside your family's private library.

Content is private to your family workspace by default. Only members you invite can view it. Letters with a future unlock date remain sealed — even from us — until the moment they are scheduled to open.

We rely on a small set of vetted vendors for hosting, database, storage, email delivery, and AI inference. They process data on our behalf under written agreements with confidentiality and security obligations.

We retain your content for as long as your account is active. If you delete a recording, photo, letter, or your entire account, we remove it from our active systems within 30 days and from backups within 90 days, except where law requires longer retention.

Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can exercise most of these rights directly inside the dashboard, or by contacting us at privacy@rootskeeper.app.

The Service is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). Family members of any age may appear in stories that adults record and upload, but accounts must be created and managed by an adult.

Your content may be processed in countries other than your own. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for cross-border transfers.

We use encryption in transit and at rest, role-based access controls, and audited row-level security on the database. No system is perfectly secure, but we treat your family's archive with the same care we would our own.

We may update this policy from time to time. Material changes will be announced in the app or by email at least 30 days before they take effect.

Questions or concerns? Reach us at privacy@rootskeeper.app.