Privacy Policy

Last updated: May 2026

KinetiHub is built for research teams handling sensitive binding data. We collect only what is necessary to run the platform and keep your data within your workspace.

1. What We Collect

  • Account information: Email address and password (hashed), used to authenticate you and associate your data with your workspace.
  • Uploaded measurement files: Raw instrument data you submit to a workspace. These are stored in EU-region infrastructure and are not shared outside your workspace unless you explicitly publish or share them.
  • Experiment metadata: Ligand/analyte molecular weights, instrument type, and other parameters you enter during upload.
  • Usage logs: Request logs for debugging and security purposes. Logs scrub identifiers and never carry plaintext measurement payloads.

2. How Your Data Is Protected

All data is transmitted over HTTPS. Measurement files and payloads are stored in EU-region infrastructure.

By default, private measurements are scoped to your workspace at the application layer — only workspace members can access them through the UI or API. Without the encryption tier, database-level access by KinetiHub staff is technically possible, though not part of any normal workflow.

The encryption-at-rest tier (€99/month) removes operator-side visibility entirely. Each measurement payload and its raw file are encrypted with AES-256-GCM using per-record keys, wrapped in a per-workspace key hierarchy derived from your password via Argon2id. KinetiHub staff can only access encrypted records through an audited recovery path that is always logged.

3. Visibility Controls

  • Private (default): Visible only to workspace members.
  • Shared: Accessible via a direct link you generate. Not indexed publicly.
  • Published: Listed on the public platform and may be included in aggregated datasets used for research and model training.

You control visibility per measurement. Public contributions may be used to build open datasets of biomolecular interaction data.

4. Cookies & Local Storage

We use browser local storage to save your preferences in interactive tools (e.g., Academy simulator states). We use session cookies for authentication only. We do not use tracking cookies or advertising cookies.

5. Data Retention & Deletion

Your measurements and account data are retained for as long as your account is active. To delete your account or request removal of specific data, contact us at [email protected].

6. What We Don't Do

  • We do not sell your data or email address.
  • We do not use your private measurements to train models without your consent.
  • We are not SOC 2 or ISO 27001 certified.
  • We do not sign Business Associate Agreements — not suitable for HIPAA-regulated workflows today.

7. Contact

Questions about your data or this policy: [email protected]. Operated by Furiga GmbH (Zürich, CHE-390.989.511).