Privacy Policy

• Account information: email, name, and billing data for developers.
• User data: external user IDs, emails, and inactivity timestamps for monitored end-users.
• Beneficiary data: names, emails, phone numbers, and relationships of next of kin.
• Verification data: death certificates and supporting documents (stored encrypted).
• Technical data: IP addresses, API usage logs, webhook delivery records.

• Provide inactivity monitoring and verification services.
• Process ownership transfer claims.
• Send webhook notifications to integrated platforms.
• Maintain audit logs for legal compliance.
• Improve platform security and performance.

• Death certificates stored in encrypted private buckets.
• API keys hashed with SHA-256.
• All data encrypted at rest and in transit (TLS 1.3).
• Audit logs are append-only and tamper-evident.
• Regular security audits and penetration testing.

We retain data as long as your account is active or as needed to provide services. Upon account deletion, associated data is permanently removed within 30 days, except where legal retention requirements apply.

• Access your personal data.
• Correct inaccurate data.
• Request deletion of your data.
• Export your data in a portable format.
• Object to certain processing activities.

Contact privacy@nextkin.dev for requests.

Email: privacy@nextkin.dev