GeneGraph

GeneGraph is a verified family-tree and end-to-end-encrypted family-archive SaaS, operated under the apunimi GeneGraph by AWFi Group Oy (Finland). Privacy-first, EU-hosted alternative to legacy genealogy platforms.

Key security and privacy properties:

• Verified identities — every living person verifies via biometric passport / national ID / driver's license through Stripe Identity, with Finnish Trust Network (FTN, Nordic eID) integration via Signicat for bank-grade strong customer authentication.
• End-to-end encrypted vault — photos, documents and recordings encrypted with AES-256-GCM using per-file keys derived via Argon2id. Master key in Vercel Sensitive scope with redundant founder backups (Google Password Manager + Apple Passwords). TLS 1.3 in transit.
• EU-only data residency — Vercel (Frankfurt + Stockholm), Neo4j Aura (EU), Cloudflare R2 (EU).
• GDPR by design — Article 17 right-of-erasure cascade with forensic tombstone retention; DSAR self-export endpoint; EU sub-processors disclosed at /privacy.
• Compile-time tenancy — Scope brand makes cross-tenant reads non-compilable; cross-org isolation pen-test verified live on production.
• Append-only audit log for every auth event and tenant-data mutation.

Category: SaaS. Stack: Next.js 15, Neo4j Aura, Cloudflare R2, Stripe Identity, Signicat OIDC.