Legal
KERN is a workforce and operations management platform built for standby rescue companies, private emergency response teams, and industrial safety organizations. We are operated by KERN and are based in the United States.
This Privacy Policy explains how we collect, use, store, and protect your information when you use the KERN mobile app, web application at pro.getkern.io, and our marketing website at getkern.io.
By using KERN, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the Service.
When you create an account, we collect:
When you use KERN to run your operation, we store the data you input, including:
This operational data belongs to you. KERN stores it on your behalf as a custodian — not as an owner.
We collect limited technical data to operate and improve the Service:
KERN captures GPS coordinates when an employee clocks in or out of a shift. This data is stored as part of the clock record and is accessible to company managers. Location is not tracked continuously — only at the moment of clock in and clock out.
KERN does not store credit card numbers or full payment details. All payment processing is handled by Stripe. We receive only non-sensitive billing metadata such as your subscription tier, billing period, and last four card digits for display purposes.
We use your data only to:
We do not use your data to build advertising profiles, train AI or machine learning models, or for any purpose not listed above without your explicit consent.
KERN will never sell, rent, lease, trade, license, or otherwise transfer your personal information or operational data to any third party for any commercial purpose.
This applies without exception to:
If KERN is ever acquired or merges with another company, this Privacy Policy will remain in effect and your data will remain protected under these same terms. You will be notified of any such change and given the opportunity to export your data.
KERN shares your data only in these narrow, specific circumstances:
We use trusted third-party services to operate KERN. Each is bound by strict data processing agreements and may only use your data to provide their specific service to us:
None of these providers are permitted to use your data for their own purposes.
We may disclose your data if required to do so by law, court order, or a legitimate government request. When legally permitted, we will notify you before complying. We will not comply with requests we believe are unlawful or overbroad.
We may share information if we believe in good faith that it is necessary to prevent imminent physical harm to a person or to protect the integrity and security of the Service.
We will share your data with any third party if you explicitly authorize us to do so.
All KERN data is stored in the United States on Supabase's infrastructure (powered by AWS). We implement industry-standard security measures including:
No method of electronic storage is 100% secure. In the event of a data breach that affects your information, we will notify you as required by applicable law and take prompt action to contain and address the incident.
We retain your data for as long as your account is active and as necessary to provide the Service. When your account is closed or subscription cancelled:
Certain records are subject to OSHA mandatory minimum retention periods (typically 3–5 years depending on record type). These records cannot be deleted until their retention window expires — this is a legal requirement we enforce automatically.
Regardless of where you are located, KERN honors the following rights for all users:
To exercise any of these rights, contact us at admin@getkern.io. We will respond within 30 days.
The KERN mobile app does not use cookies. The web app at pro.getkern.io uses only functional cookies that are strictly necessary for authentication and session management. We do not use advertising cookies, cross-site tracking cookies, or third-party analytics on the platform.
The marketing website at getkern.io may use minimal, privacy-respecting analytics to understand page traffic in aggregate. No personally identifiable information is collected or shared through these analytics.
KERN is a professional workplace tool intended for use by adults in an employment context. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has created an account, contact us at admin@getkern.io and we will remove the account promptly.
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and through a notice in the app at least 14 days before the changes take effect.
The most current version of this policy will always be available at getkern.io/privacy. Previous versions are available upon request.
If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please reach out:
We take privacy seriously and will respond to all inquiries promptly — typically within one business day.