Kulohi

Kulohi Policy

Security & Data Practices

How Kulohi approaches account protection, data stewardship, service providers, and member trust.

Last Updated: July 3, 2026

Protecting What Matters

Every story, photograph, conversation, and memory shared with Kulohi represents something deeply personal.

We believe those moments deserve thoughtful protection.

While no online service can guarantee perfect security or uninterrupted availability, protecting your information is one of our highest priorities. We continuously work to improve our systems, evaluate new security practices, and strengthen the safeguards that help keep your information safe.

Kulohi is a product of Gremlin Labs LLC.

1. Our Security Philosophy

Security is more than protecting data.

It is about protecting the trust you’ve placed in Kulohi.

Every decision we make considers not only confidentiality, but also reliability, privacy, and the long-term care of the memories entrusted to us.

2. Protecting Your Information

Kulohi uses a combination of administrative, technical, and organizational safeguards designed to help protect your information.

These safeguards may include:

  • encrypted communications;
  • secure cloud infrastructure;
  • authenticated access controls;
  • continuous monitoring;
  • regular software updates;
  • security logging;
  • backup and recovery procedures.

Security practices evolve over time as technology and industry standards continue to improve.

3. Encryption

Where appropriate, information transmitted between your device and Kulohi is encrypted using industry-standard security protocols.

Sensitive information stored within Kulohi is protected using appropriate security measures designed to reduce unauthorized access.

4. Access Controls

Access to member information is intentionally limited.

Only authorized personnel with a legitimate business need may access information required to:

  • provide customer support;
  • investigate technical issues;
  • maintain system reliability;
  • comply with legal obligations;
  • investigate suspected abuse or security incidents.

Access is limited to the minimum information reasonably necessary to perform those responsibilities.

5. Authentication

Kulohi uses secure authentication systems to help protect member accounts.

Members are encouraged to:

  • choose strong passwords;
  • enable multi-factor authentication when available;
  • protect their devices;
  • avoid sharing login credentials with others.

6. Trusted Service Providers

Kulohi works with carefully selected technology providers to help operate the Service.

These providers may assist with:

  • cloud infrastructure;
  • authentication;
  • artificial intelligence;
  • secure databases;
  • payment processing;
  • analytics;
  • communications.

Providers are expected to maintain appropriate security practices while performing services on behalf of Kulohi.

7. Monitoring & Continuous Improvement

Security is an ongoing process.

We regularly review our systems, evaluate potential risks, monitor for unusual activity, and make improvements designed to strengthen the security of Kulohi over time.

As new threats emerge, our practices will continue to evolve.

8. Incident Response

If we become aware of a security incident that materially affects your personal information, we will investigate the matter promptly.

Where appropriate and required by applicable law, we will notify affected members and provide information about the nature of the incident, the steps we are taking, and any actions members should consider.

9. Your Role

Security is a shared responsibility.

Members can help protect their information by:

  • using strong passwords;
  • enabling additional security features when available;
  • reviewing Circle permissions regularly;
  • keeping devices up to date;
  • reporting suspicious activity;
  • protecting access to their email accounts.

10. Responsible Disclosure

We appreciate the work of security researchers and members who responsibly report potential vulnerabilities.

If you believe you have discovered a security issue within Kulohi, please contact us as soon as possible.

We ask that security concerns be reported privately so they can be investigated and addressed responsibly before public disclosure.

11. Service Availability

Although we work hard to provide a reliable experience, temporary interruptions may occur due to maintenance, software updates, infrastructure providers, internet connectivity, or circumstances beyond our reasonable control.

We continually work to improve reliability and minimize service disruptions whenever possible.

12. Changes to This Policy

As Kulohi evolves, we may update this Security & Data Practices document.

When significant changes are made, we will update the “Last Updated” date and, where appropriate, provide additional notice.

13. Contact Us

Questions regarding security or responsible disclosure may be directed to:

Gremlin Labs LLC

Security Team

Email: [email protected]

Website: https://kulohi.com

Questions?

Protecting your memories means protecting the trust you’ve placed in us.

If you have questions about our security practices or wish to report a potential security concern, please contact us at [email protected]. We appreciate your help in keeping Kulohi safe for everyone.

Questions about this policy?

We want Kulohi's policies to be clear and readable. If something feels unclear, please reach out.

Return to Legal & Trust Center