Legal

Privacy Policy

Last updated: March 17, 2026

1. Information we collect

We collect information you provide directly, such as your name, email address, and account authentication information. We also collect information from financial accounts you choose to connect through Plaid, such as account metadata, balances, and transaction history, along with limited product usage information needed to operate, secure, and improve the service.

We do not collect your Social Security number or your bank login credentials. When you connect a financial account, Plaid handles the credential flow on our behalf. We may receive and store account and transaction data, but we do not receive the username and password you use to sign in to your financial institution.

2. How we use your information

We use your data to:

  • Provide, maintain, secure, and improve the Kanso service
  • Connect and sync financial account and transaction data
  • Support budgeting, goal tracking, analytics, and data export features
  • Generate transaction categorization, summaries, and other optional AI-powered insights
  • Process subscriptions, respond to support requests, and communicate service updates
  • Comply with legal obligations and protect against fraud, abuse, and misuse

We never sell your personal data to third parties. We never use your financial data to train AI models without your explicit consent.

3. Financial account data and Plaid

If you choose to connect a financial account, we use Plaid to access account and transaction data you authorize. This data may include account names, masked account numbers, balances, transaction amounts, transaction dates, merchants, and categories. We use that data to provide account syncing, transaction history, budgeting, financial insights, exports, and related product features inside Kanso.

Plaid's collection and handling of your financial account information is also governed by Plaid's own privacy practices and agreements. We recommend reviewing Plaid's privacy materials when connecting an account.

4. AI features and data processing

Certain Kanso features use AI services to help categorize transactions, generate summaries, and provide financial guidance. When you use those features, relevant financial data, account context, or prompt content may be processed by our AI service providers solely to deliver the requested functionality. We do not use your financial data to train AI models without your explicit consent.

5. How we share information

We do not sell personal information. We may share information only in the following limited circumstances:

  • With service providers that help us operate the product, such as Plaid, Supabase, Google Gemini AI, and Lemon Squeezy
  • When necessary to process subscriptions, provide customer support, or deliver core product features
  • To comply with law, regulation, legal process, or valid governmental requests
  • To investigate, prevent, or address fraud, security issues, or misuse of the service
  • As part of a merger, acquisition, financing, or sale of assets, subject to appropriate confidentiality protections

6. Data retention and deletion

We retain your account information, connected financial data, and application data for as long as needed to provide the service, maintain your account, meet legal obligations, resolve disputes, enforce agreements, and protect the security and integrity of the platform.

If you delete your account or request deletion, we will delete or de-identify relevant application data within a reasonable period, except where we need to retain certain records for security, fraud prevention, billing, legal compliance, dispute resolution, or backup and disaster recovery purposes. Backup data may persist for a limited period before being overwritten in the ordinary course.

7. Data storage and security

We use industry-standard safeguards designed to protect your information, including encryption in transit, encryption at rest in managed infrastructure, and restricted administrative access. Sensitive Plaid access tokens are additionally encrypted before being stored in our database.

No system can be guaranteed to be 100% secure, but we work to use reasonable technical and organizational measures appropriate to the nature of the data we process.

8. Third-party services

We work with the following third parties to deliver the service:

  • Plaid — financial account connection and transaction data access
  • Google Gemini AI — transaction categorization, summaries, and financial insight features
  • Lemon Squeezy — subscription billing and payment-related account records
  • Supabase — authentication, database, and hosted application infrastructure

Each provider has their own privacy policy governing their use of your data.

9. Your choices and rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your account and data
  • Export your data in a portable format
  • Disconnect any linked bank account at any time

To exercise any of these rights, contact us at privacy@usekanso.com.

10. Changes to this policy

We may update this policy from time to time. If we make material changes, we'll notify you by email or through the app before the changes take effect.

11. Contact

Questions about this policy? Email us at privacy@usekanso.com.