Your money. Your rules.
This is the plain-English version. The full legal terms are in the sections below — we wrote them ourselves, no template.
1. We never see your bank credentials. Plaid handles login; Kinshi only sees the read-only data feed.
2. We never sell your data. Not now, not as a "monetization strategy" later. Subscription revenue is the only revenue.
Effective date: January 1, 2025 · Last updated: April 19, 2026
What data we collect
We collect three things and only three things:
- Your account info — email, name (optional), and an authentication token via Clerk (Google OAuth, Apple Sign-In, or email). We do not store passwords. No phone, no address, no birthday.
- A read-only feed of your bank transactions — via Plaid. We see merchant names, amounts, dates, account masks (last 4), and account balances. We do not see balances we don't need (e.g., 401k holdings unless you opt in).
- What you tell Kinshi in chat — your messages, the AI's responses, custom categories you create, and any settings you change (budgets, goals, alert preferences).
What we explicitly DO NOT collect: bank login credentials (Plaid handles that), your social security number, government IDs, or location data.
Why we collect it
Account info exists so you can log in. Transaction data is what Kinshi analyzes to write your daily brief, catch anomalies, and answer your questions. Chat messages are stored so the AI can remember context across sessions and so you can scroll back through your own history.
We do not use your data to train external AI models. We do not sell it for advertising. We do not enrich it with third-party data brokers.
How we store it
Your data lives in Postgres on AWS US-East-1. Encrypted at rest (AES-256), encrypted in transit (TLS 1.2 or higher). Backups encrypted with the same scheme. Access is logged and gated behind MFA. Our providers (Plaid, Clerk, Vercel, Supabase) maintain SOC 2 Type II compliance.
Retention
| Data type | Retention period |
|---|---|
| Account data | Duration of account + 30 days |
| Transaction history | 3 years from transaction date |
| Plaid access tokens | Duration of connection + 30 days |
Delete or export your data
Settings → Data lets you do both. Export gives you a JSON file with everything: transactions, briefs, chat history, settings. Delete is a one-click action — it removes your account and all associated data within 30 days (the 30-day window is for accidental-deletion recovery; after that, it's gone from production AND from backups).
You can also disconnect any linked bank at any time through Kinshi settings, your bank's connected-apps page, or my.plaid.com.
California residents (CCPA)
If you are a California resident, you have the right to know what personal information we collect, request deletion, opt out of the sale of personal information (we do not sell data), and not be discriminated against for exercising your rights. Email privacy@kinshi.app to exercise any of these.
Cookies + tracking
We use a single first-party session cookie (so you stay logged in) and no third-party tracking cookies. We use first-party analytics (server-side) to measure things like "how many people install the app," but never anything tied to your individual identity once you're using the product.
No Google Analytics. No Meta Pixel. No Hotjar.
Children's privacy
Kinshi is for adults. We don't knowingly collect data from anyone under 18. If you're a parent and believe we have your child's data, email privacy@kinshi.app and we'll delete it.
Changes to this policy
We'll email you if we change anything material. We've never made a change worse for users; if we ever propose to, we'll explain why and give a 30-day window to delete your account first.
Questions about this policy? Email privacy@kinshi.app or use the contact form.
Last updated: April 19, 2026 · Version 3