Effective date: May 31, 2026
SteelFolio ("we," "our," or "us") is a web application for knife collection management. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information. By using SteelFolio, you agree to the practices described here.
We collect only the information you provide directly to us. This includes:
Account information: Your email address and a hashed (encrypted) version of your password. We never store your password in plain text.
Profile information (optional): Your legal name and insurance policy number, used solely to populate your insurance appraisal PDF documents. These fields are entirely optional.
Collection data: Information about knives in your collection, including maker, model, blade specifications, purchase price, current value, condition notes, storage location, and audit history.
Uploaded files: Photos of your knives and receipt images or PDFs you upload for insurance documentation purposes.
Two-factor authentication data (optional): If you enable 2FA, we store a TOTP secret and hashed recovery codes associated with your account.
Session data: A session cookie is set when you log in to keep you authenticated during your visit. This cookie expires after 30 minutes of inactivity. We do not use advertising cookies, tracking cookies, or any third-party cookies.
We use the information you provide solely to operate and improve SteelFolio. Specifically:
We do not use your data for advertising, profiling, or any purpose beyond providing the SteelFolio service to you.
Your data is stored on servers provided by Render.com, a cloud hosting provider based in the United States. Your database records and uploaded files are stored on a persistent encrypted disk. Render.com's privacy practices are described at render.com/privacy.
Transactional emails (such as password reset links) are sent via Gmail SMTP. Google's privacy practices are described at policies.google.com/privacy.
We do not sell, rent, trade, or otherwise share your personal information with any third party for marketing or commercial purposes. Your collection data is private to your account. We do not share your data with insurers, appraisers, or any other party. The only circumstances under which we would disclose your information are if required to do so by law or legal process.
You have the right to access, correct, export, or delete your data at any time.
We recommend exporting a backup of your collection data before deleting your account, as this action cannot be undone.
We retain your data for as long as your account is active. When you delete your account — whether through the in-app deletion feature or by contacting us — your personal information, collection data, and uploaded files are removed from our systems immediately. Residual copies in automated backups may persist for a short period before being overwritten.
We take reasonable measures to protect your information, including password hashing, HTTPS encryption in transit, session timeouts, and optional two-factor authentication. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
SteelFolio is not directed at children under the age of 13 and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. We encourage you to review this policy periodically. Continued use of SteelFolio after changes are posted constitutes your acceptance of the updated policy.
If you have any questions about this Privacy Policy or your data, please contact us at:
hello@steelfolio.app