Draft for Legal Review

Privacy Policy

How ki.finance collects, uses, and protects information.

This draft privacy policy is tailored to the current ki.finance product: AI-assisted finance operations for small businesses, including bank connectivity, document processing, reporting, and human review workflows.

Effective date: April 4, 2026

Before publishing, replace any remaining bracketed placeholders with your company's contact details, then have counsel review this document.

Plain-English draft aligned to how the product works today.

These documents are tailored to the current ki.finance product: business finance workflows, bank connectivity, document ingestion, AI-assisted analysis, and human review for important actions.

1. Scope of This Privacy Policy

This Privacy Policy explains how Fourth Dimension Studios Ltd. Liability Co. doing business as ki.finance collects, uses, discloses, and protects information when you use the ki.finance websites, applications, APIs, AI experiences, document workflows, bank-feed connections, and related services.

This policy covers information we collect from business customers, prospective customers, website visitors, workspace users, and authorized representatives. It does not cover third-party services that you connect to ki.finance, which are governed by those third parties’ own terms and privacy notices.

2. Information We Collect

  • Account and identity information, such as name, email address, company name, login credentials, and authentication metadata.
  • Business and financial information, such as bank-feed data, transaction records, invoices, vendor information, reporting inputs, and related finance workflow data.
  • Documents and uploads, such as statements, bills, receipts, tax documents, spreadsheets, and extracted or normalized fields derived from those documents.
  • Workspace activity, such as chat prompts, agent interactions, approvals, audit trails, settings changes, role assignments, and review decisions.
  • Technical information, such as IP address, device/browser information, cookies, logs, diagnostics, event timestamps, and security signals.

3. How We Use Information

  • To provide, maintain, secure, and improve the Services.
  • To ingest, normalize, analyze, and display financial and document data at your direction.
  • To authenticate users, manage permissions, detect abuse, enforce security controls, and maintain tenant isolation.
  • To generate AI-assisted outputs such as summaries, categorizations, forecasts, document extractions, anomaly detection, and workflow suggestions.
  • To communicate with you about account activity, support, product updates, billing, security events, and legal notices.
  • To comply with law, enforce our agreements, and protect the rights, safety, and integrity of ki.finance, our customers, and others.

4. AI and Automation

We may use automated systems and model providers to help process Customer Data, generate responses, extract information from documents, detect anomalies, and support finance workflows. These systems may use your prompts, uploads, and related context to provide the requested functionality.

AI outputs can contain mistakes. Customers remain responsible for reviewing important outputs before relying on them for accounting, tax, legal, compliance, payment, or business decisions.

5. When We Disclose Information

  • To service providers and infrastructure vendors that help us operate the Services, such as cloud hosting, analytics, email, authentication, document processing, AI model, and bank-integration providers.
  • To workspace users, accountants, reviewers, contractors, and other people or entities you authorize to access your workspace or shared information.
  • To third-party integrations that you choose to connect or instruct us to use.
  • To comply with law, regulation, legal process, government request, or to protect rights, property, safety, and security.
  • In connection with a merger, financing, acquisition, reorganization, bankruptcy, or sale of assets, subject to customary confidentiality protections.

6. Cookies and Similar Technologies

We and our service providers may use cookies, session tokens, local storage, pixels, and similar technologies to keep you signed in, remember preferences, measure usage, troubleshoot issues, and improve the Services. You can manage some browser-level cookie settings, but disabling certain technologies may affect functionality.

7. Data Retention

We retain information for as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, maintain security records, and preserve legitimate business records. Retention periods may vary depending on the type of data, your workspace configuration, and regulatory or accounting needs.

8. Security

We use measures designed to protect information against unauthorized access, loss, misuse, or alteration. Those measures may include access controls, encryption, logging, role-based restrictions, tenant isolation, backup processes, and incident response procedures. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

9. Your Choices and Rights

  • You may update certain account and workspace information inside the product or by contacting us.
  • You may request deletion or export of certain information, subject to legal, contractual, fraud-prevention, tax, accounting, and security retention requirements.
  • If you no longer want promotional emails, you can use the unsubscribe link in those communications. You will still receive operational or legal notices when necessary.
  • Depending on where you live, you may have additional rights under applicable privacy laws, including rights to know, access, correct, delete, or appeal certain data practices.

10. U.S. State Privacy Disclosures

If you are a resident of a U.S. state with an applicable privacy law, you may have additional rights regarding personal information we collect, use, and disclose. Subject to applicable exemptions and verification requirements, those rights may include the right to know, access, correct, delete, or obtain a portable copy of certain information, as well as the right to appeal certain decisions.

Unless we state otherwise, ki.finance does not sell personal information for money. If your use of analytics, advertising, or other practices changes this disclosure, update this section before publishing.

11. Children

The Services are intended for businesses and business representatives, not for children under 13. We do not knowingly collect personal information directly from children under 13 through the Services.

12. International Use

ki.finance is designed for U.S.-based businesses, but information may be processed in the United States or other jurisdictions where we or our service providers operate. If you use the Services from outside the United States, you understand that your information may be transferred to and processed in jurisdictions that may not provide the same level of legal protection as your home jurisdiction.

13. Changes and Contact

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated policy, revise the effective date, and take additional steps if required by law.

For privacy requests or questions, contact Fourth Dimension Studios Ltd. Liability Co., Sheridan, WY 82801, at support@ki.finance. Add your full mailing street address here before publishing a final version. If you use an external DPO or privacy contact, include that information here before publishing.