Legal

Security Policy

Effective: May 25, 2026 Version 1.0

1 Data Encryption

Kairos Analytics uses industry-standard encryption to protect your data at all stages:

2 How Financial Data and Credentials are Stored and Protected

When you connect your bank account via Plaid, Kairos Analytics receives only a secure, encrypted access token — not your bank login credentials. Specifically:

3 Plaid Integration

Kairos Analytics connects to your bank account through Plaid Inc., a licensed third-party data aggregator. Here is what that means for your data:

4 Access Controls

We limit who can access your data internally:

All internal access is logged in an append-only audit trail for OWASP A09-2 compliance.

5 Data Breach Response and Incident Handling

In the event of a data breach affecting your personal or financial information:

We also maintain monitoring and alerting to detect unauthorized access attempts and anomalous activity across the platform.

6 How to Request Data Deletion

You may request deletion of your account and all associated personal and financial data at any time. To do so:

Deletion is complete within 30 days of your request. Some anonymized aggregate data may be retained after deletion for product improvement purposes, with no individual identification possible. Transaction data and Plaid tokens are removed from our systems within this window.

For urgent security matters (such as a compromised account), contact us at security@polsia.app for the fastest response.

7 Contact

For security concerns, suspected vulnerabilities, or incident reports:

We aim to respond to all security-related inquiries within 2 business days. For urgent incidents, email is the fastest path to resolution.