Privacy Policy

How we collect, use, and protect your information

Last updated: January 2026

1. Introduction

WebGeno ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our genogram builder application ("the Service").

Please read this policy carefully. By using the Service, you consent to the practices described in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address and password when you create an account
  • Profile Information: Display name and preferences you choose to provide
  • Genogram Data: Family relationship data, health conditions, notes, and other information you input into genograms (stored only if you use cloud features)
  • Payment Information: Billing details processed securely through Stripe (we do not store full payment card details)

2.2 Automatically Collected Information

  • Usage Data: Features used, actions taken, and time spent on the Service
  • Device Information: Browser type, operating system, and device identifiers
  • Log Data: IP address, access times, and referring URLs

3. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve the Service
  • Process transactions and send related information
  • Send administrative messages, updates, and security alerts
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations

4. Data Storage and Security

4.1 Local Storage

When using the free tier without cloud features, your genogram data is stored locally on your device. We do not have access to locally stored data.

4.2 Cloud Storage

Professional tier users who enable cloud storage benefit from end-to-end encryption. Your genogram data is encrypted on your device using AES-256-GCM encryption before being transmitted to our servers. The encryption keys are derived from your password and never leave your device. This means only you can decrypt your data - WebGeno administrators cannot access your genogram content, even if legally compelled.

Data is also encrypted in transit using TLS and at rest on servers provided by Supabase.

4.3 Security Measures

We implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and regular security assessments. However, no method of transmission over the Internet is 100% secure.

5. Third-Party Services

We use the following third-party services:

These services have their own privacy policies, and we encourage you to review them.

6. AI-Powered Features

Our Professional tier includes AI-powered genogram generation. When using this feature:

  • Text descriptions you provide are sent to Anthropic's Claude API for processing
  • We do not use your data to train AI models
  • Generated genograms are stored according to your cloud storage preferences
  • You can delete AI-generated content at any time

7. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in these circumstances:

  • Service Providers: With third-party vendors who assist in providing the Service
  • Legal Requirements: When required by law or to respond to legal process
  • Protection of Rights: To protect our rights, privacy, safety, or property
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

8. Your Rights and Choices

You have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate personal data
  • Deletion: Request deletion of your personal data
  • Export: Export your genogram data at any time
  • Withdraw Consent: Withdraw consent for data processing where applicable
  • Account Deletion: Delete your account and associated data

To exercise these rights, please contact us at the email address provided below.

9. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. After account deletion, we may retain certain information as required by law or for legitimate business purposes for up to 30 days.

Locally stored genogram data remains on your device and is under your control.

10. Children's Privacy

The Service is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place for such transfers.

12. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to data portability
  • Right to restrict processing
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority

Our legal basis for processing your data includes: consent, contract performance, legitimate interests, and legal obligations.

13. Cookies and Tracking

We use essential cookies to maintain your session and preferences. We use Google Analytics to understand how visitors use our website. You can control cookies through your browser settings.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@psychologysmarttools.com