Documentation Index
Fetch the complete documentation index at: https://docs.usekinetic.com/llms.txt
Use this file to discover all available pages before exploring further.
This page explains how Kinetic handles, stores, and secures the data you and your subscribers generate, and provides ready-to-paste privacy-policy language you can add to your own site.
Where is data stored?
All data is hosted on infrastructure located within the European Union. Kinetic’s sub-processors are:
- Supabase — database hosting
- Google Cloud Platform — application hosting
- PostHog — product analytics
No personal data is transferred outside the EU as part of Kinetic’s standard processing.
How is data secured?
Kinetic applies industry-standard security measures, including:
- AES-256 encryption at rest for all sensitive credentials and integration tokens
- OAuth 2.0 for secure authentication with third-party integrations (e.g., your email service provider, ecommerce platform)
- Access controls and audit logging on internal systems
What data does Kinetic store?
On your behalf, Kinetic may process:
- Account info — names, email addresses, and workspace details
- Email templates, on-site form configurations, and quiz logic you create in Kinetic
- Form, quiz, and survey submissions collected from your subscribers and website visitors (both inside emails and on your website)
- Behavioral and engagement data — interactions with Kinetic-powered forms, clicks, completions
- Encrypted access tokens for connected integrations
GDPR Consent Mode
When you activate Kinetic’s GDPR Consent Mode, Kinetic uses your store’s existing consent mechanism (typically your cookie or consent banner) to identify visitors and subscribers.
- No tracking or identification happens before the visitor gives valid consent.
- Once consent is collected, Kinetic can personalize content, link form responses to a known profile, and run product recommendations.
We recommend enabling GDPR Consent Mode for any brand operating in the EU/EEA or the UK, or anywhere consent-based tracking is required.
What to add to your privacy policy
You should reference Kinetic as a data processor / service provider in your own privacy policy. We’ve prepared two ready-to-paste snippets below — pick the one that matches your audience and replace the bracketed placeholders before publishing.
For customers operating in the EU/EEA, UK, or anywhere GDPR-style language applies.Kinetic (Data Processor)
We use Kinetic, a product of Kinetic Software GmbH, to power interactive experiences in our marketing emails and on our website, including personalized email content, embedded forms, quizzes, surveys, and product recommendations. Kinetic acts as a data processor on our behalf in accordance with Article 28 GDPR.
Provider details
Kinetic Software GmbH
Kolonnenstraße 8, 10827 Berlin, Germany
Website: https://usekinetic.com
Contact: support@usekinetic.com
What data Kinetic processes
On our behalf, Kinetic may process the following categories of data:
• Account information (e.g., names, email addresses)
• Email templates, on-site form configurations, and quiz logic we create
• Form, quiz, and survey submissions collected from our subscribers and website visitors (both inside emails and on our website)
• Behavioral and engagement data (e.g., interactions with Kinetic-powered forms, clicks, completions)
• Encrypted access tokens for connected integrations (e.g., our email service provider, ecommerce platform)
Where the data is stored
All data processed by Kinetic is hosted on infrastructure located within the European Union. Kinetic relies on EU-based sub-processors, including Supabase (database hosting), Google Cloud Platform (application hosting), and PostHog (product analytics). No personal data is transferred outside the EU as part of Kinetic's standard processing.
How the data is secured
Kinetic applies industry-standard security measures, including:
• AES-256 encryption at rest for all sensitive credentials and integration tokens
• OAuth 2.0 for secure authentication with third-party platforms
• Access controls and audit logging on internal systems
Consent and user identification
We have enabled Kinetic's GDPR Consent Mode. This means Kinetic only identifies a visitor or subscriber, on our website or inside our emails, after they have given valid consent through our website's cookie or consent banner. No tracking, identification, or personalization takes place before that consent is collected.
Your rights
You can exercise your GDPR rights (access, rectification, erasure, restriction, portability, objection) by contacting us at [YOUR CONTACT EMAIL]. Requests that concern data held within Kinetic's systems will be forwarded to Kinetic, and we will respond within the statutory timeframes.
For specific questions about Kinetic's processing activities, you can also contact Kinetic directly at support@usekinetic.com.
For customers who do not need GDPR-specific language (e.g., US-only brands, or brands that handle GDPR disclosures in a separate section).Kinetic (Service Provider)
We use Kinetic, a product of Kinetic Software GmbH, to power interactive experiences in our marketing emails and on our website, including personalized email content, embedded forms, quizzes, surveys, and product recommendations. Kinetic processes data on our behalf as a service provider.
Provider details
Kinetic Software GmbH
Kolonnenstraße 8, 10827 Berlin, Germany
Website: https://usekinetic.com
Contact: support@usekinetic.com
What data Kinetic processes
On our behalf, Kinetic may process the following categories of data:
• Account information (e.g., names, email addresses)
• Email templates, on-site form configurations, and quiz logic we create
• Form, quiz, and survey submissions collected from our subscribers and website visitors (both inside emails and on our website)
• Behavioral and engagement data (e.g., interactions with Kinetic-powered forms, clicks, completions)
• Encrypted access tokens for connected integrations (e.g., our email service provider, ecommerce platform)
Where the data is stored
All data processed by Kinetic is hosted on infrastructure located within the European Union. Kinetic's sub-processors include Supabase (database hosting), Google Cloud Platform (application hosting), and PostHog (product analytics), each operating in EU regions.
How the data is secured
Kinetic applies industry-standard security measures, including:
• AES-256 encryption at rest for all sensitive credentials and integration tokens
• OAuth 2.0 for secure authentication with third-party platforms
• Access controls and audit logging on internal systems
Your choices
You can request access to, correction of, or deletion of personal information we have collected about you by contacting us at [YOUR CONTACT EMAIL]. Requests that concern data held within Kinetic's systems will be forwarded to Kinetic.
For specific questions about Kinetic's processing activities, you can also contact Kinetic directly at support@usekinetic.com.
Replace [YOUR CONTACT EMAIL] with your own privacy or support contact before publishing.
Questions?
For any specific questions about Kinetic’s processing activities, sub-processors, or data-protection measures, contact us at support@usekinetic.com.
