Privacy Policy
1. Introduction
This Privacy Policy explains how kynusa Inc. (“kynusa,” “we,” “us”) handles information when you use the kynusa cloud bookkeeping software at kynusa.com (the “Service”) or otherwise interact with kynusa. This Policy works alongside kynusa’s Terms of Service, Master Service Agreement (where applicable), Data Processing Agreement (“DPA”), and Limitations & Legal Notice. Where conflict exists between this Policy and any signed contract with Customer, the signed contract controls.
The Service is intended for use by businesses located in the United States. If you are not located in the United States, you may not use the Service.
2. The Information We Collect
2.1 Information You Provide
When you sign up for kynusa and use the Service, you provide information such as your name, business name, business email address, business phone number, business mailing address, role, and billing information. You may also upload Customer Data through the Service, including bookkeeping records, invoices, expenses, financial transactions, ledger entries, vendor and customer contact records, and other content you choose to put into your account.
2.2 Information About Connected Accounts
If you connect a bank account, kynusa uses a read-only banking-data aggregator (currently Quiltt) to retrieve transaction data. kynusa does not store your bank login credentials. Bank-account and routing numbers are stored only in masked form (typically the last four digits). Payment-card processing is handled by a qualified third-party payment processor; kynusa stores only tokenized identifiers, not full card numbers.
2.3 Account and Security Information
To keep your account secure, kynusa collects authentication information such as hashed passwords, two-factor authentication (2FA) enrollment data, session tokens, login IP addresses, device and browser information, and audit logs of account activity.
2.4 Information We Collect Automatically
When you use the Service or visit kynusa.com, kynusa automatically collects technical information such as device type, browser type, operating system, referring URLs, pages viewed, actions taken in the Service, and general geographic region. This information is used to operate, secure, and improve the Service.
2.5 Communications
When you contact kynusa for support, respond to a survey, or otherwise communicate with us, we collect the content of those communications along with metadata such as your contact information and the date and time.
3. How We Use Information
kynusa uses information for the following purposes:(a) to provide, operate, secure, and improve the Service;
(b) to set up and administer Customer accounts, process payments, send invoices, and handle renewals and cancellations;
(c) to provide customer support and respond to inquiries;
(d) to detect, investigate, and prevent fraud, unauthorized access, and abuse of the Service;
(e) to comply with legal obligations and respond to lawful requests;
(f) to send service-related communications such as account, billing, security, and policy notices — these are not promotional and you cannot opt out of them while you have an active account;
(g) to send marketing communications, where permitted by law — you can opt out of these at any time using the unsubscribe link in any marketing email; and
(h) to generate aggregated and de-identified analytics that do not identify any individual Customer or end-user.
4. How We Share Information
kynusa does not sell or rent personal information, and does not share personal information with third parties for cross-context behavioral advertising or for any third party’s independent advertising or marketing purposes.
We share information only in the following limited circumstances:
4.1 With Sub-processors
kynusa uses trusted third-party vendors (“Sub-processors”) to help provide the Service — for example, cloud hosting, payment processing, bank-data aggregation, email delivery, SMS delivery, customer support tooling, and error monitoring. Sub-processors are listed in the Annex to the DPA. kynusa selects reputable vendors, imposes appropriate contractual obligations on each, and remains responsible to Customer for their performance.
4.2 With AI Service Providers
Where the Service uses AI features (for example, receipt OCR or transaction-categorization suggestions), kynusa may send the relevant inputs to a reputable third-party AI provider. kynusa does not intentionally use Customer Data to train, fine-tune, or improve any public artificial intelligence model, and configures available controls intended to prevent customer data from being used to train the providers’ public models.
4.3 To Comply with Law and Protect Rights
kynusa may disclose information when required by applicable law, valid legal process, or governmental request, or when kynusa believes in good faith that disclosure is necessary to protect the rights, property, or safety of kynusa, its customers, or others, or to investigate suspected fraud or abuse.
4.4 In Connection with a Business Transaction
If kynusa is involved in a merger, acquisition, reorganization, financing, or sale of all or part of its business or assets, information may be transferred as part of that transaction, subject to the terms of this Policy.
5. Customer Use of Personal Information About Other People
In the course of using the Service, Customer routinely uploads, stores, or processes personal information about third parties — including Customer’s own customers, vendors, suppliers, contractors, employees, and other contacts (collectively, “Third-Party Personal Information”). This is an inherent part of bookkeeping software.
With respect to all Third-Party Personal Information that Customer chooses to put into the Service, Customer represents and warrants that Customer has:
(a) all rights, authority, and consents necessary under applicable law to collect, upload, store, and process such information through the Service;
(b) provided all required notices and obtained any required consents from the individuals whose personal information is uploaded; and
(c) the right to grant kynusa the license described in kynusa’s Terms of Service to host, process, and otherwise use such information solely as necessary to provide the Service.
Customer is solely responsible for responding to any access, deletion, correction, or other rights request from individuals whose Third-Party Personal Information is contained in Customer’s Account. kynusa will reasonably cooperate with Customer’s response to such requests, but kynusa is not the controller of Third-Party Personal Information and does not respond to such requests directly.
Customer agrees to indemnify and hold kynusa harmless from any claim, loss, or liability arising out of Customer’s failure to comply with this Section 5 or with applicable law in collecting, using, or sharing Third-Party Personal Information.
6. Your Choices and Rights
You can access, update, correct, and export your Customer Data at any time through the Service. You can close your account through the Service or by contacting kynusa.
To the extent applicable U.S. state privacy laws apply to you, you may have additional rights, including the right to know what categories of personal information we collect, to request access to or deletion of personal information, to correct inaccurate personal information, to opt out of certain processing, and to be free from discrimination for exercising privacy rights. To exercise any of these rights, contact contact@kynusa.com. We will respond within the time required by applicable law.
You can opt out of marketing emails at any time using the unsubscribe link in any marketing email or by emailing contact@kynusa.com.
7. Cookies and Similar Technologies
kynusa and kynusa.com use cookies and similar technologies to keep you signed in, remember your preferences, secure the Service, measure how the Service is used in aggregate, and (where applicable) deliver and measure marketing on kynusa’s own properties. Most browsers allow you to control cookies through browser settings; disabling cookies may affect how the Service works. kynusa does not engage in cross-context behavioral advertising.
8. Data Retention
kynusa retains Customer Data for as long as your account is active. After your account is terminated or cancelled, kynusa will use commercially reasonable efforts to make your Customer Data available for export through the Service for sixty (60) days. After the export period, kynusa may delete Customer Data from active systems in accordance with its standard data-retention practices, subject to any applicable legal retention obligations (such as litigation holds, tax laws, and subpoenas). Backups containing Customer Data are retained according to kynusa’s standard backup-retention practices and are overwritten or destroyed over time as part of normal operations.
kynusa retains account, billing, security, and audit records for the period required by applicable law and for legitimate business purposes (such as tax, fraud-prevention, and dispute-resolution records).
9. Security
kynusa maintains reasonable security measures appropriate for a cloud bookkeeping platform, including encryption of Customer Data in transit and at rest, access controls, two-factor authentication for user accounts, regular backups of production data, and reasonable security and monitoring practices. No information system can guarantee absolute security. You are responsible for keeping your account credentials confidential, maintaining 2FA, securing your devices and networks, and promptly reporting any suspected unauthorized access to contact@kynusa.com.
10. SMS and Two-Factor Authentication Messages
10.1 SMS Consent
By providing a mobile telephone number to kynusa (during account setup or otherwise) and enrolling in two-factor authentication (“2FA”), Customer consents to receive SMS text messages from kynusa to that number for the purposes described in this Section 10. SMS messages may be sent by kynusa or by kynusa’s communications sub-processor (currently Twilio). Standard message and data rates from Customer’s mobile carrier may apply. Message frequency varies based on Customer’s use of the Service.
10.2 Purpose Limitation
SMS messages sent under this Section are limited to security and authentication purposes, including one-time passcodes (“OTP”) for 2FA, account-recovery codes, security alerts about Customer’s Account (such as login from a new device or password change), and operational notices directly related to the Service.
SMS messages sent under this Section are not used for marketing or promotional purposes. The mobile telephone number Customer provides for SMS messages will not be shared, sold, rented, or otherwise disclosed to any third party for marketing purposes, and is not used for cross-context behavioral advertising. SMS recipients’ mobile telephone numbers are processed only by kynusa and kynusa’s communications sub-processor for the delivery of the messages described in this Section.
10.3 If Customer Chooses Not to Use 2FA
kynusa’s strongly recommends enabling 2FA. Customer may decline to enroll a phone number for SMS-based 2FA where Customer uses an authenticator application or other supported method instead. Customer acknowledges that an Account without any second factor is materially less secure and that kynusa is not responsible for any unauthorized access to, or compromise of, an Account where Customer has elected not to enable any form of multi-factor authentication.
10.4 STOP, HELP, and Opt-Out
Replying STOP to any kynusa SMS will end SMS communications from kynusa to that number; replying HELP will return assistance information. Because SMS-based 2FA is a security feature, opting out of SMS may require Customer to switch to another supported 2FA method (such as an authenticator application) or, in some cases, may result in suspension of Account access pending re-enrollment in 2FA. SMS messages may also be governed by kynusa’s communications sub-processor’s terms in addition to this Privacy Policy.
11. AI Features
Some features of the Service are powered by artificial intelligence or machine learning (“AI Features”), such as receipt OCR, transaction-categorization suggestions, anomaly detection, and report-drafting assistance. AI Features are provided as productivity aids; they may be inaccurate, incomplete, biased, or out of date. You are responsible for reviewing and verifying AI output before relying on it for any business, accounting, tax, regulatory, or legal purpose. kynusa does not intentionally use Customer Data to train any public AI model without your express, written, opt-in consent.
12. Children
The Service is not directed to, and is not intended for use by, children under thirteen (13). kynusa does not knowingly collect personal information from children under thirteen. If you believe a child has provided personal information to kynusa, please contact contact@kynusa.com so we can investigate and delete it.
13. United States Only
The Service is offered exclusively to businesses located in the United States. All personal information collected through the Service is processed and stored in the United States. If you access the Service from outside the United States, you do so at your own risk and are responsible for compliance with local laws.
14. Changes to This Policy
kynusa may update this Privacy Policy from time to time. Material updates affecting active subscriptions will be communicated through the Service or to your registered email address as required by applicable law. The current version is always available at https://kynusa.com/privacy-policy/. Continued use of the Service after the effective date of an updated Policy constitutes acceptance of the changes.
15. Contact Us
Questions about this Privacy Policy or about how kynusa handles information should be directed to:
kynusa Inc.
Attn: Privacy Team
Bensalem, PA 19020, USA
Email: contact@kynusa.com
Built by operators. Ready for yours.
Experience the definitive financial platform — view live prime costs, active operating margins, and unit metrics on one single dashboard.






