FeaturesPricingAboutBlog
Sign inStart free trial

Privacy Policy

Last updated: March 6, 2026

At Sarthi, privacy is not a feature — it's a foundational principle. Your family data is sensitive: legal matters, health records, financial information. We built every layer of our architecture with privacy as the primary constraint.

1. What We Collect

We collect only what's necessary to provide the Service:

  • Account data: Name, email, Apple ID (for Sign in with Apple). Phone number if you opt for SMS authentication.
  • Family data: Entities (legal cases, health records, financial assets), tasks, deadlines, documents, contacts, and chat messages you create within the app.
  • Location data: Only when you opt in. We store your last-known location for travel time calculations and departure alerts. Location data expires after 24 hours and is automatically purged.
  • Usage data: Basic analytics (page views, feature usage) to improve the Service. No third-party analytics trackers.
  • Device data: Push notification tokens for delivering briefings and alerts.

2. How We Store Your Data

DB-per-family architecture: Every family gets a physically isolated database. Your data is not co-mingled with other families. A bug in one family's query cannot leak another family's data.

Encryption: Data is encrypted at rest (Turso, Cloudflare R2) and in transit (TLS everywhere). Authentication tokens are stored in the iOS Keychain via secure-store.

Documents: Files are stored on Cloudflare R2 with encryption at rest. The database stores metadata only — not the file contents.

3. AI and Your Data

Sarthi uses Anthropic's Claude API for AI features (chat, briefings, research). Important facts:

  • No AI training: Your data is never used to train AI models. Anthropic does not train on API inputs per their commercial terms.
  • Ephemeral context: AI conversations use ephemeral context windows. Your data is not persisted by the AI provider beyond the conversation.
  • Family-scoped: AI responses are scoped to your family's data only. The AI cannot access other families' information.

4. Who Can Access Your Data

Your family members: Owner and Members can access shared domains and their own data. The Owner controls container-level permissions.

Guests: External professionals (lawyers, accountants) can only access the specific entities the Owner has shared with them. Guests have no access to family context, tasks, or briefings.

Sarthi team: We do not access your family data unless you explicitly request support assistance and grant temporary access. No employee can browse family databases.

Third parties: We do not sell, share, or provide your data to any third parties for advertising, analytics, or any other purpose.

5. Location Privacy

Location sharing is entirely opt-in. Each family member independently controls whether their location is shared. The Owner cannot force location sharing. We store only the last-known location (one record per user, not a history). Location data automatically expires and is purged after 24 hours.

6. Chat Privacy

Chat messages are stored in your family's isolated database. You can delete individual messages or entire conversations at any time. Deleted messages are hard-deleted — no soft-delete, no recovery. Configurable retention policies (e.g., auto-delete chats older than 90 days) are available.

7. Your Rights

  • Data export: Export your complete family data in JSON/CSV format at any time.
  • Data deletion: Individual members can leave a family and delete their personal data. The Owner can delete the entire family workspace — all data is permanently purged within 30 days.
  • Chat deletion: Delete individual messages or entire conversations. Hard delete — no recovery.
  • Account deletion: Request complete account deletion via Settings. All associated data is purged.

8. Data Retention

  • Location data: 24 hours
  • Briefings: 30 days
  • Departure nudges: 7 days
  • Chat messages: Until you delete them (or per retention policy)
  • All other data: Until you delete it or close your account

9. Cookies and Tracking

The marketing site (sarthi.family) uses essential cookies only — no third-party trackers, no advertising cookies, no analytics tracking scripts. The mobile app does not use cookies.

10. Children's Privacy

Sarthi is designed for adult family members managing household obligations. We do not knowingly collect data from children under 13. If you believe a child has provided personal data, contact us to have it removed.

11. International Data Transfers

Your data may be processed in the United States (where our infrastructure providers operate). We ensure appropriate safeguards are in place per applicable data protection regulations.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification at least 30 days before they take effect.

13. Contact

For privacy questions or data requests, contact us at privacy@sarthi.family.