ClanCharts

Privacy Policy

ClanCharts.com
Effective date: 18 February 2026
Last updated: 18 February 2026

Table of Contents

  1. Who We Are
  2. Our Guiding Principles
  3. What Data We Collect
  4. Family Tree Files (GEDCOM) — Special Section
  5. Legal Basis for Processing
  6. How We Use Your Data
  7. Who We Share Your Data With
  8. International Data Transfers
  9. Data Retention
  10. Your Rights
  11. Rights of Third Parties Whose Data Appears in a Family Tree
  12. Cookies and Tracking Technologies
  13. Children’s Privacy
  14. Security
  15. Additional Rights for California Residents (CCPA/CPRA)
  16. Additional Information for UK Residents
  17. Additional Information for Canada and Australia
  18. Complaints
  19. Changes to This Policy
  20. Contact Us

1. Who We Are

ClanCharts.com is operated by ADONE SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, a company incorporated in Poland under Polish company law, with its registered office at:

DRUŻYKOWA 15
42-445 DRUŻYKOWA
Poland
NIP: 6492320014, KRS: 0000862178

For the purposes of the EU General Data Protection Regulation (GDPR/RODO) and UK GDPR, we are the data controller responsible for the personal data we process in connection with the ClanCharts service.

Privacy contact: privacy@clancharts.com

We have not appointed a Data Protection Officer (DPO / Inspektor Ochrony Danych). If you have questions about how we handle your personal data, contact us at the email address above.

2. Our Guiding Principles

We believe you should know what data we collect and why. We follow three principles:

  • Minimisation. We collect only the data we genuinely need to provide the service.
  • Transparency. We explain clearly what we do with your data and who we share it with.
  • Control. We give you meaningful choices and honour your rights.

3. What Data We Collect

3.1 Account Data

When you register an account, we collect:

DataPurposeRequired?
Email addressAccount authentication, order notifications, transactional emailsYes
Phone numberOptional second factor; order SMS notificationsNo
First name, last name, display namePersonalisation, address on print ordersPartially
Password (stored as a cryptographic hash — never in plain text)AuthenticationYes
Locale / language preferenceDisplay languageYes (auto-detected)
Marketing consent flag with timestampSending optional promotional emailsNo

You may use the service as a guest (without registering) for basic preview functionality. A registered account is required to save work, purchase downloads, or order prints.

3.2 Order and Shipping Data

When you place an order, we collect:

DataPurpose
Delivery name, address, city, postal code, countryShipping the physical canvas print
Phone numberCourier contact for delivery issues
Order details (product, format, size, price, currency, status)Order fulfilment, accounting
Payment confirmation reference from StripeProof of payment; refund processing

We do not store your credit card number, card verification code, or full payment card data. All payment card handling is performed by Stripe (see Section 7).

3.3 Family Tree Files (GEDCOM)

When you upload a GEDCOM file, we store the file on our servers. See Section 4 for a full explanation of how this data is handled.

3.4 Analytics and Usage Data (with your consent)

Subject to your cookie preferences, we may collect:

DataToolWhat it contains
Page views, clicks, navigation path, session durationGoogle Analytics 4Pseudonymous (user ID only, no name or email)
Mouse movements, scroll behaviour, session recordingsMicrosoft ClarityPseudonymous; PII fields masked

Google Analytics 4 and Microsoft Clarity are not loaded until you have given consent via the cookie banner.

3.5 Technical Data (collected automatically)

DataPurposeLegal basis
IP addressSecurity, fraud prevention, rate limitingLegitimate interest
Approximate country (derived from IP using a local MaxMind GeoLite2 database — your IP is not sent to MaxMind)Selecting appropriate currency and print providerLegitimate interest
Session ID (stored in a cookie)Keeping you logged in during a sessionStrictly necessary
Browser type and version, operating systemTechnical troubleshootingLegitimate interest
Timestamps of actions (login, upload, order)Security logsLegitimate interest
Feature usage events (e.g. “tree generated”, “file uploaded”)Error monitoring and service stability — routed through our own server; no persistent cookies or local storage set on your device; no personal data sentLegitimate interest

Feature event monitoring is provided by PostHog, routed exclusively through our own server proxy. PostHog does not set any cookies or store any data on your device. No email address, name, or other personal data is included in the events — only a pseudonymous session identifier and anonymised event data.

4. Family Tree Files (GEDCOM) — Special Section

This section explains in detail how we handle GEDCOM files because they deserve special attention.

What is a GEDCOM file?

A GEDCOM (.ged) file is a standard genealogy format exported from services such as Ancestry, MyHeritage, FamilySearch, or genealogy desktop software. It typically contains names, dates of birth and death, places, relationships, and other family history data assembled by the person who built the family tree.

How we store your file

Your GEDCOM file is stored intact and unmodified on our servers. We do not extract, index, or store the names, dates, or other records contained within the file into any separate database. The file is treated as a single opaque object — like a document stored in a folder.

How we process your file

The contents of your GEDCOM file are parsed in your browser (client-side) using JavaScript, not on our servers. This means the raw genealogical records are processed on your device to generate the tree visualisation. Our servers receive only the rendered image output (for download or printing), not a structured extract of the genealogical records.

Data about living persons in your file

GEDCOM files commonly contain data about living relatives — people who are alive today and who did not themselves upload or consent to this file being shared with ClanCharts. By uploading a GEDCOM file, you represent that you have a lawful basis to do so (for example, because you are processing data for your own personal or household genealogy research, which is a recognised ground under data protection law).

We process the file solely to render the tree visualisation you have requested. The file is not used for any other purpose, not shared with third parties for data purposes, and not used to contact, profile, or market to the individuals named within it.

Your warranty at upload

Before uploading a GEDCOM file, you are required to confirm (via a checkbox) that:

  • You have a lawful basis to upload and process all personal data of living individuals contained in the file
  • Where the file incidentally contains sensitive personal information (such as health data, religious affiliations, or ethnic origin), you have a lawful basis to upload and process that information as well
  • You take full responsibility for the lawfulness of the upload

We do not inspect or verify the contents of uploaded files. We rely on your confirmation and process the file solely to render the visualisation you have requested. If your confirmation is inaccurate, the legal responsibility for any resulting data protection breach rests with you. See also Section 5 of our Terms of Service.

Potentially sensitive data in your file

Genealogical records may incidentally contain information that falls into special (sensitive) categories under data protection law, such as:

  • Cause of death (health information)
  • Religious affiliation (inferred from baptism/burial records)
  • Ethnic or national origin (inferred from names or places of birth)

We do not intentionally process, extract, or analyse this type of information. We process the file as a whole for the purpose of visualisation only.

Downloading your file

You may download your uploaded GEDCOM file at any time directly from your account. This satisfies your right to data portability (see Section 10) without requiring a formal request.

Data of deceased persons

Information about deceased individuals is not personal data under the EU GDPR, UK GDPR, or this Privacy Policy (see GDPR Recital 27). The vast majority of entries in typical genealogical files are for persons who have died. Nevertheless, we apply the same care to all data in the file.

How long we keep your file

We retain your GEDCOM file for 12 months from the date of your last activity (login or order). If your account is deleted, your files are deleted within 30 days. You may also request deletion of a specific file at any time (see Section 10).

Processing activityLegal basisGDPR Article
Creating and maintaining your user accountPerformance of contractArt. 6(1)(b)
Processing orders and paymentsPerformance of contractArt. 6(1)(b)
Sending transactional emails (order confirmation, download links, shipping updates)Performance of contractArt. 6(1)(b)
Retaining accounting and order recordsLegal obligation (Polish Accounting Act; tax law)Art. 6(1)©
Storing your GEDCOM file to render the requested visualisationPerformance of contractArt. 6(1)(b)
Processing data of living third parties in your GEDCOM fileLegitimate interest (file stored and processed solely for the visualisation purpose you requested; not indexed or used otherwise)Art. 6(1)(f)
IP address logging for security and fraud preventionLegitimate interestArt. 6(1)(f)
GeoIP country detection to select currency and print providerLegitimate interestArt. 6(1)(f)
Analytics (GA4, Clarity)Your consentArt. 6(1)(a)
Feature event monitoring (PostHog via own server proxy)Legitimate interest (error monitoring, service stability)Art. 6(1)(f)
Sending promotional emailsYour consentArt. 6(1)(a)

6. How We Use Your Data

We use your data exclusively for the following purposes:

  1. Providing the service — generating tree visualisations from your uploaded GEDCOM file, making downloads available, processing print orders
  2. Account management — authentication, password reset, session management
  3. Order fulfilment — processing payments via Stripe, forwarding shipping addresses to print fulfilment partners, tracking order status
  4. Customer communications — sending order confirmations, download links, shipping notifications, and replies to your support enquiries
  5. Security — detecting and preventing fraud, abuse, and unauthorised access; rate limiting
  6. Product improvement — with your consent, using anonymised/pseudonymous analytics to understand how the service is used and improve it
  7. Marketing — with your consent only, sending promotional emails about new features or offers

We do not:

  • Sell your personal data to any third party
  • Use your family tree data for advertising, profiling, or marketing
  • Share your data with data brokers or marketing networks
  • Use the contents of your GEDCOM file for any purpose other than generating the visualisation you requested

7. Who We Share Your Data With

We share personal data with the following third-party service providers (data processors), only to the extent necessary to provide the service:

Payment processing

ProviderData sharedLocationTransfer mechanism
Stripe, Inc.Order amount, currency, order reference, email for receiptUSAEU-US Data Privacy Framework; UK-US Data Bridge

Stripe acts as an independent data controller for your payment card data. We never see, store, or process your card number. See stripe.com/privacy.

ProviderData sharedLocationTransfer mechanism
PosterjackDelivery name, address, phone; print file (rendered tree image)Canada/USAStandard Contractual Clauses (SCCs)
FotakoDelivery name, address, phone; print file (rendered tree image)Poland (EU)Within EEA — no additional mechanism required

Shipping carriers

Your delivery name, address, and phone are passed to the shipping carrier selected at checkout (UPS, DHL, or national postal service) by the print fulfilment provider. These are transferred under standard carrier terms.

Analytics (consent-based)

ProviderData sharedLocationTransfer mechanism
Google LLC (GA4)Pseudonymous user ID, page interaction eventsUSAEU-US Data Privacy Framework
Microsoft Corporation (Clarity)Session recording (masked), pseudonymous session IDUSAStandard Contractual Clauses (SCCs)

These tools are only activated after you accept analytics cookies.

Feature usage events (e.g. “tree generated”, “file uploaded”) are collected by PostHog, routed exclusively through our own server proxy. Event data does not leave our infrastructure and is not shared with PostHog’s cloud or any other third party. No cookies or local storage are set on your device for this purpose.

Email delivery

ProviderData sharedLocationTransfer mechanism
[Email provider — placeholder]Recipient email, email content[TBC][TBC — DPA required]

Hosting and infrastructure

ProviderData sharedLocationTransfer mechanism
[Hosting provider — placeholder]All data stored on our servers[TBC][TBC — DPA required]

No other sharing

We do not share your personal data with any other third parties, unless required by law (for example, in response to a valid court order or request from a law enforcement authority). In such cases, we will notify you if legally permitted to do so.

8. International Data Transfers

Our primary service infrastructure is located in [country — placeholder]. Some of our service providers are located outside the European Economic Area (EEA) and UK, primarily in the United States. We ensure that transfers to these countries are protected by an appropriate mechanism:

DestinationMechanism
USA (Stripe, Google GA4)EU-US Data Privacy Framework (DPF); UK-US Data Bridge
USA (Microsoft Clarity, Posterjack)EU Standard Contractual Clauses (SCCs); UK International Data Transfer Agreement (IDTA)
Within Poland / EU (Fotako, internal servers, PostHog via own proxy)No transfer outside EEA

9. Data Retention

We keep your personal data only for as long as necessary for the purposes described in this policy or as required by law.

Data categoryRetention period
GEDCOM files12 months from your last login or activity, then deleted. Also deleted within 30 days of account deletion. May be deleted earlier on your request.
Rendered tree images (download files)Available for re-download for 12 months after order.
Account data (email, name, preferences)Until you delete your account, then within 30 days.
Order records (for accounting and tax purposes)5 years from the end of the tax year in which the order was placed (Polish law) / 6 years (UK law)
Shipping addressesRetained as part of the order record (see above)
Security logs (IP, login events)90 days
Analytics data (GA4, Clarity)Per provider: GA4 — 14 months; Clarity — 13 months
Feature event data (PostHog)12 months, then deleted from our server
Email marketing consent recordsUntil consent is withdrawn, then 3 years (evidence of consent)

After the retention period, data is securely deleted or anonymised.

10. Your Rights

If you are in the EU or UK, you have the following rights under the GDPR/RODO and UK GDPR. Residents of other countries may have similar rights under local law (see Sections 15 and 16).

RightWhat it means
Access (Art. 15)Request a copy of the personal data we hold about you
Rectification (Art. 16)Ask us to correct inaccurate or incomplete data
Erasure (Art. 17)Ask us to delete your data (“right to be forgotten”) — subject to legal retention obligations
Restriction (Art. 18)Ask us to temporarily stop processing your data
Data portability (Art. 20)Receive your data in a machine-readable format (where processing is based on consent or contract). Your uploaded GEDCOM file is available for direct download from your account at any time — no formal request needed.
Objection (Art. 21)Object to processing based on our legitimate interests — we will stop unless we have compelling grounds
Withdraw consent (Art. 7(3))Withdraw any consent you have given (e.g. for analytics or marketing) at any time — this does not affect the lawfulness of prior processing
Not to be subject to automated decisions (Art. 22)We do not make automated decisions with legal or similarly significant effects about you

How to exercise your rights: Send an email to privacy@clancharts.com with “Data Rights Request” in the subject line. We will respond within 30 days of receiving your request. For complex or multiple requests, we may extend this period by a further 2 months, in which case we will notify you within the first 30 days and explain the reason for the extension. We may ask you to verify your identity before fulfilling the request.

11. Rights of Third Parties Whose Data Appears in a Family Tree

If you are a living person whose name, date of birth, or other personal information appears in a GEDCOM file uploaded by another user (such as a family member), you have rights under the GDPR/RODO even though you did not interact with ClanCharts directly.

Why we were not able to notify you directly: Under Art. 14(5)(b) of the GDPR, there is an exception to the obligation to inform individuals when providing that information would involve a disproportionate effort. Given that GEDCOM files can contain hundreds or thousands of individuals whose contact details are not available to us, individually notifying each person is not practically possible. We are instead making this notice publicly available.

What you can do:

You may contact us at privacy@clancharts.com to:

  • Request information about whether any data about you has been uploaded
  • Request deletion of your data from any uploaded file
  • Object to the processing of your data

To allow us to process your request, please provide sufficient information to identify yourself and the specific file or record concerned (for example, your full name, approximate date of birth, and the family name the tree belongs to).

How we handle deletion requests:

When we receive a valid deletion request from a third party, we will:

  1. Verify your identity and confirm sufficient detail has been provided to locate the relevant data
  2. Delete the entire GEDCOM file from the service immediately — the file will no longer be accessible to the user who uploaded it
  3. Send an email notification to the file owner (if they provided an email address) informing them of the deletion. The file owner may request a copy of their file within 14 days of that notification, before the file is permanently purged from our backup systems
  4. Permanently delete the file from internal backups within 30 days of the request
  5. Respond to you confirming the deletion within 30 days of receiving your request

The user who uploaded the file is informed of this possibility before uploading and accepts it as a condition of using the service (see Terms of Service §5.2).

12. Cookies and Tracking Technologies

We use cookies and similar technologies. These fall into three categories:

Strictly necessary cookies

These cookies are essential for the website to function. They do not require your consent.

CookiePurposeDuration
Session ID cookieKeeps you logged in during a visitSession
CSRF tokenSecurity — prevents cross-site request forgerySession
Cookie consent preferenceRemembers your cookie choices12 months

Analytics cookies (require consent)

These cookies help us understand how visitors use the site. They are only set after you accept analytics cookies.

ToolWhat it collectsDuration
Google Analytics 4Page views, navigation, session durationUp to 14 months
Microsoft ClaritySession recordings (with PII masking), heatmapsUp to 13 months

PostHog does not set any cookies or use local storage. Feature event monitoring via PostHog is always active (no consent required) and operates entirely server-side. See Section 3.5 for details.

Marketing cookies (require consent)

We do not currently use marketing or advertising cookies. If this changes, we will update this policy and request your consent before setting them.

You can change your cookie preferences at any time by clicking “Cookie Settings” in the footer of any page. You can also control cookies through your browser settings, though this may affect how the website functions.

13. Children’s Privacy

ClanCharts is not directed at children. You must be at least 18 years old to create an account and make purchases. We do not knowingly collect personal data from individuals under 18 for the purpose of account registration.

GEDCOM files uploaded by adult users may contain data about children who are members of the user’s family. Such data is handled in the same way as all other data in the file (see Section 4), and is not used for any purpose beyond rendering the family tree visualisation requested by the adult user.

If you believe a minor’s data has been processed inappropriately, please contact us at privacy@clancharts.com.

14. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, or destruction. These measures include:

  • Encrypted transmission (HTTPS/TLS) for all data in transit
  • Access controls limiting who within our organisation can access personal data
  • GEDCOM files accessible only to the uploading user and technical staff in the course of support duties
  • Regular backup of data

No system can guarantee absolute security. In the event of a data breach that is likely to result in high risk to individuals, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay, as required by law.

15. Additional Rights for California Residents (CCPA/CPRA)

This section applies if you are a resident of California, USA.

Your California privacy rights

Under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), you have the right to:

  • Know what categories of personal information we collect, use, disclose, or sell
  • Access the specific pieces of personal information we have collected about you
  • Delete your personal information (subject to certain exceptions)
  • Correct inaccurate personal information
  • Opt out of the sale or sharing of your personal information
  • Non-discrimination — we will not discriminate against you for exercising these rights

We do not sell or share your personal information

We do not sell your personal information for monetary consideration. We do not share your personal information with third parties for cross-context behavioural advertising purposes. The statement “Do Not Sell or Share My Personal Information” is confirmed here as a permanent commitment.

Categories of personal information collected

Category (CPRA)ExamplesCollected?Sold/Shared?
IdentifiersEmail, name, IP addressYesNo
Personal information (Cal. Civil Code §1798.80)Name, address, phone, payment referenceYesNo (shared with fulfilment partners only)
Commercial informationPurchase history, order detailsYesNo
Internet/electronic network activityPage views, click interactions (with consent)Yes (with consent)No
Geolocation dataCountry (approximate, from IP)YesNo
Family tree content (GEDCOM)Genealogical recordsYesNo

How to exercise your California rights

Submit a request to privacy@clancharts.com with “California Privacy Request” in the subject line, or use our online request form at [URL placeholder]. We will respond within 45 days (extendable to 90 days with notice). We will verify your identity before fulfilling the request.

Authorised agents

You may designate an authorised agent to make requests on your behalf by providing signed written permission. We may still require verification of your identity directly.

Sensitive personal information (CPRA)

The CPRA defines “sensitive personal information” (SPI) as a specific subset of personal data. Family tree content (GEDCOM files) could potentially fall within SPI categories (e.g. racial or ethnic origin, health information). We do not use or disclose such information for the purpose of inferring characteristics about individuals, and we do not use SPI to target you with advertising. You therefore have the right to limit the use of your SPI under CPRA, and we commit to the minimum necessary use of any SPI categories.

Shine the Light

California residents may also request information about disclosure of personal data to third parties for direct marketing purposes under California Civil Code § 1798.83. We do not disclose personal data to third parties for their direct marketing purposes.

16. Additional Information for UK Residents

This section applies if you are located in the United Kingdom.

Our processing of personal data of UK residents is governed by UK GDPR and the Data Protection Act 2018. The lawful bases, rights, and protections described elsewhere in this policy apply equally under UK GDPR.

UK Representative: In accordance with Art. 27 UK GDPR, we have designated the following entity as our UK Representative, which can be contacted by UK residents and by the ICO on matters relating to this Privacy Policy and the processing of UK residents’ personal data:

Magowie LTD
71-75 Shelton Street, Covent Garden
London, WC2H 9JQ
United Kingdom

For data protection enquiries from UK residents, you may contact our UK Representative at the address above, or contact us directly at privacy@clancharts.com.

UK supervisory authority: You have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

ICO
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Tel: 0303 123 1113
Website: ico.org.uk

ICO registration: Magowie LTD is registered with the ICO. Registration number: [ICO REGISTRATION NUMBER — to be completed after registration].

International transfers from the UK: Transfers of your data outside the UK are covered by UK adequacy regulations (for EEA countries) or UK International Data Transfer Agreements (IDTA) / addenda to EU SCCs (for other countries, including the USA via the UK-US Data Bridge).

17. Additional Information for Canada and Australia

Canada (PIPEDA)

If you are located in Canada, your personal data is processed in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation. The principles of PIPEDA — accountability, identifying purpose, consent, limiting collection, limiting use, safeguards, openness, individual access, and challenging compliance — are reflected in this policy.

You may submit privacy complaints or enquiries to:

Office of the Privacy Commissioner of Canada (OPC)
30 Victoria Street, Gatineau, Quebec K1A 1H3
Tel: 1-800-282-1376
Website: priv.gc.ca

Australia (Privacy Act 1988)

If you are located in Australia, your personal data is processed in accordance with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). You may submit a complaint to:

Office of the Australian Information Commissioner (OAIC)
Website: oaic.gov.au
Email: enquiries@oaic.gov.au

18. Complaints

If you have a concern about how we handle your personal data, we encourage you to contact us first at privacy@clancharts.com. We will try to resolve your concern promptly.

You also have the right to lodge a complaint with a supervisory authority:

  • Poland (EU): Urząd Ochrony Danych Osobowych (UODO) — uodo.gov.pl — ul. Stawki 2, 00-193 Warsaw
  • UK: Information Commissioner’s Office (ICO) — ico.org.uk
  • Canada: Office of the Privacy Commissioner (OPC) — priv.gc.ca
  • Australia: Office of the Australian Information Commissioner (OAIC) — oaic.gov.au
  • Your local EU authority: If you are in another EU member state, you may complain to your national supervisory authority

19. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by:

  • Sending an email to the address associated with your account (for registered users)
  • Displaying a prominent notice on the website

The updated policy will be effective from the date shown at the top of this document. We encourage you to review this policy periodically.

20. Contact Us

For any questions, requests, or concerns about this Privacy Policy or your personal data:

Email: privacy@clancharts.com
Postal address:
ADONE SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ
DRUŻYKOWA 15
42-445 DRUŻYKOWA, Poland
NIP: 6492320014, KRS: 0000862178

We aim to respond to all enquiries within 5 business days and to fulfil data rights requests within 30 days (or 45 days for California residents).

This Privacy Policy was drafted based on the requirements of EU Regulation 2016/679 (GDPR/RODO), UK GDPR and Data Protection Act 2018, and the California Consumer Privacy Act (CCPA/CPRA). It is provided for informational purposes. For legal advice specific to your situation, consult a qualified data protection solicitor or attorney.