Legal

Privacy Policy

Last updated: April 2026

Disclaimer — read this before relying on this page.

This is a starting template. Before processing customer payments at scale, review these documents with a lawyer or a compliance service like Termly or iubenda.

1. What we collect

We collect only what we need to run the service for you.

  • Account data — name, work email, organization, and role. Managed through our authentication provider, Clerk.
  • Financial data you upload — general ledger exports, budgets, mappings, and anything synced from QuickBooks or Xero. This is your data; you control it.
  • Usage analytics — anonymous product events (which features you use, how often) via PostHog. We do not attach financial values to these events.
  • Error reports — stack traces and request context when something breaks, captured by Sentry with sensitive fields redacted.

2. How we use it

We use your data to operate Kanalyze, generate the reports and narratives you ask for, provide support, send transactional email, and improve the product. We do not sell your data. We do not train third-party AI models on your financial data; AI requests are routed through providers under zero-retention agreements where available.

3. Who we share with (subprocessors)

We rely on trusted infrastructure providers to run the service. Each one processes only the data needed for its specific role:

  • ClerkUser authentication, session management, and organization membership
  • NeonManaged Postgres database hosting for customer data
  • VercelApplication hosting, serverless compute, and edge delivery
  • AWS S3Encrypted object storage for uploaded financial files
  • ResendTransactional email delivery (account, billing, reports)
  • AnthropicAI model for narrative generation and financial chat
  • OpenAIFallback AI model for narrative generation
  • StripeSubscription billing and payment processing
  • SentryError monitoring and application diagnostics
  • PostHogProduct analytics and usage measurement

4. Data retention

We retain customer financial data and audit logs for seven years to support financial record-keeping obligations. Deleted records are soft-deleted immediately (hidden from the product) and purged from primary storage after the retention window. Our internal retention job enforces this automatically.

5. Your rights

You can export all of your data or delete your account at any time:

  • Export: GET /api/v1/me/data-export returns a ZIP archive of your account and organization data.
  • Delete: DELETE /api/v1/me/account soft-deletes your account. Data is purged per the retention schedule above.

If you’d rather not use the API, email privacy@kanalyze.io and we’ll handle it for you. Depending on where you live, you may also have the right to correct, restrict, or object to how we process your data — the same address reaches us.

6. Security

Customer data is isolated per organization using Postgres row-level security (RLS), so one tenant can never read another tenant’s rows. Data is encrypted at rest in the database and in object storage, and in transit over TLS. Access to production is restricted and audited. We log significant actions to an immutable audit trail.

7. Contact

Privacy questions, data requests, and concerns all go to privacy@kanalyze.io. We aim to respond within 30 days.

Privacy Policy — Kanalyze | Kanalyze