Privacy Policy

Last updated: May 2026

At Kinnect ("we", "our", or "us"), we are committed to protecting your privacy and ensuring the security of your personal and operational data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application and services.

1. Information We Collect

We collect information that you provide directly to us when setting up an agency, creating a companion profile, or utilizing our matching and safeguarding services. This includes:

  • Agency Data: Name, contact details, and organization parameters.
  • Companion Data: Names, contact information, Disclosure and Barring Service (DBS) statuses, and uploaded compliance certificates.
  • Client Data: Names, care requirements, and visit logs (including safeguarding concerns).
  • Authentication Data: User credentials securely processed via our identity provider (Clerk).

2. How We Use Your Information

We use the collected information primarily to provide, maintain, and improve our care management platform. Specific uses include:

  • Facilitating secure logins and multi-tenant data isolation.
  • Matching companions with clients based on agency configuration.
  • Generating and sending secure Magic Links to authorized family members.
  • Processing and displaying safeguarding escalations and visit reports.

3. Data Security and Safeguarding

Given the sensitive nature of the care industry, we employ robust security measures:

  • All data in transit is encrypted using industry-standard TLS/SSL.
  • Data at rest is securely stored on encrypted databases (Neon Postgres).
  • Access controls are strictly enforced, ensuring agency data is fully isolated and accessible only to authorized personnel.
  • DBS certificates and other files are securely stored via UploadThing with strict access scoping.

4. Third-Party Data Processors

We utilize trusted third-party services to ensure platform reliability. We share only the necessary data required for them to perform their functions:

  • Clerk: For identity management and authentication.
  • UploadThing: For secure file and certificate storage.
  • Vercel & Neon: For hosting and database infrastructure.

5. Your Rights

Depending on your location, you may have rights regarding your personal data, including the right to access, correct, or request deletion of your information. Please contact your agency administrator or our support team to exercise these rights.

6. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at privacy@kinnectcare.xyz.