Data Ethics & Consent Policy

Your family data is sacred. We're committed to protecting your privacy and handling your information with the highest ethical standards.

Last Updated: January 2025

Quick Navigation

Informed ConsentData CollectionPrivacy ProtectionData SharingYour RightsData Security

Our Core Principles

Transparency

Clear communication about how we use your data

Respect

Honoring cultural sensitivities and family privacy

Security

Industry-leading protection for your family data

Control

You decide what to share and with whom

Data Collection Practices

What We Collect

Account Information

  • • Name and email address
  • • Password (encrypted)
  • • Phone number (optional)
  • • Billing information

Family Tree Data

  • • Names and relationships
  • • Birth/death dates and places
  • • Photos and documents
  • • Stories and memories

Documents

  • • Birth certificates
  • • Marriage certificates
  • • ID documents
  • • Historical records

Usage Data

  • • Login activity
  • • Feature usage
  • • Device information
  • • Browser type

What We DON'T Collect

  • We never collect genetic/DNA data without explicit consent
  • We don't track your location without permission
  • We don't sell your data to third parties
  • We don't use your data for advertising purposes

How We Use Your Data

  • Service Delivery: To provide and maintain your family tree platform
  • Communication: To send important updates and respond to inquiries
  • Improvement: To enhance features and user experience
  • Security: To protect against fraud and unauthorized access

Privacy Protection

Privacy by Default

All family trees are private by default. You control who can see your information:

Private

Only you can view and edit

Family Only

Shared with invited members

Public

Viewable by anyone (opt-in)

Sensitive Information Protection

We apply extra protection to sensitive information:

  • Living Individuals: Information about living people is never made public without explicit consent
  • ID Numbers: National ID numbers are encrypted and never displayed in public trees
  • Documents: Personal documents are only visible to tree owners and authorized family members
  • Children: Extra privacy controls for individuals under 18

Cultural Sensitivity

We respect cultural traditions and sensitivities around family information. You can:

  • Mark certain information as culturally sensitive
  • Control who can view specific family branches
  • Hide or anonymize certain relationships

Data Sharing & Collaboration

When We Share Your Data

With Your Permission

  • • Family members you invite to collaborate
  • • When you make your tree public
  • • Professional services you request (genealogists, consultants)

Service Providers

We work with trusted service providers who help us operate the platform:

  • • Cloud storage providers (encrypted data only)
  • • Payment processors (Stripe)
  • • Email service providers
  • • Security and fraud prevention services

All service providers are bound by strict confidentiality agreements and cannot use your data for their own purposes.

Legal Requirements

We may disclose information when required by law, such as:

  • • Valid court orders or subpoenas
  • • Legal inheritance disputes (with proper documentation)
  • • Protection of rights and safety

We will notify you of such requests unless prohibited by law.

What We NEVER Share

  • We never sell your family data to third parties
  • We never share data with advertisers or marketers
  • We never provide data to genealogy research without consent
  • We never share genetic/DNA data with insurance companies

Your Data Rights

You have complete control over your family data. Here are your rights:

Right to Access

View all data we have about you and your family tree at any time

Right to Correct

Update or correct any inaccurate information in your tree

Right to Export

Download your complete family tree data in standard formats (GEDCOM, PDF)

Right to Delete

Remove specific members or delete your entire account and all data

Right to Object

Object to certain data processing activities

Right to Restrict

Limit how we process your data in certain circumstances

How to Exercise Your Rights

You can exercise these rights through:

  • Account Settings: Manage most preferences directly in your account
  • Email Support: Contact us at privacy@mhuri-izihlobo.com
  • Support Team: Chat with our privacy team for assistance

We will respond to all requests within 30 days.

Data Security Measures

We implement industry-leading security measures to protect your family data:

Encryption

  • • End-to-end encryption for sensitive data
  • • SSL/TLS for all data transmission
  • • Encrypted database storage
  • • Secure password hashing

Access Controls

  • • Two-factor authentication (2FA)
  • • Role-based access permissions
  • • Regular access audits
  • • Automatic session timeouts

Infrastructure

  • • Secure cloud hosting (Supabase)
  • • Regular security updates
  • • Automated backups
  • • Disaster recovery plans

Monitoring

  • • 24/7 security monitoring
  • • Intrusion detection systems
  • • Regular security audits
  • • Incident response team

Data Breach Protocol

In the unlikely event of a data breach:

  • We will notify affected users within 72 hours
  • We will provide clear information about what data was affected
  • We will offer guidance on protective measures
  • We will report to relevant authorities as required by law

Your Security Responsibilities

Help us keep your data secure by:

  • Using a strong, unique password
  • Enabling two-factor authentication
  • Not sharing your login credentials
  • Logging out on shared devices
  • Reporting suspicious activity immediately

Special Considerations

DNA & Genetic Data

If you use our DNA testing services:

  • Genetic data is stored separately with additional encryption
  • You can delete your DNA data at any time
  • We never share genetic data with insurance companies
  • DNA matching requires explicit opt-in consent

Inheritance & Legal Matters

When family trees are used for inheritance purposes:

  • We may be required to verify data authenticity
  • Legal documentation may be requested
  • We maintain audit trails for legal verification
  • Disputed information may be flagged for review

International Data Transfers

Your data may be processed in different countries:

  • We use secure cloud infrastructure with global presence
  • All transfers comply with international data protection laws
  • Same security standards apply regardless of location

Questions or Concerns?

Email Us

For privacy-related questions:

privacy@mhuri-izihlobo.com

Call Us

Privacy support line:

+263 784284907

Policy Updates

We will notify you of any significant changes to this policy via email and through your account dashboard. Continued use of our services after changes constitutes acceptance of the updated policy.

Talk with Us