Privacy Policy – KaneNabi
Last updated: 23 April 2026
Effective date: 23 April 2026
This English version is provided for convenience. For users in Thailand, the Thai version shall prevail in accordance with the Personal Data Protection Act (PDPA).
1. Overview
KaneNabi ("we", "us", "our") is an AI-powered behavioral and educational application designed to help users improve financial habits and decision-making.
This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use the KaneNabi mobile application and related services.
If you are under 20 years old, please review this policy with a parent or guardian.
2. Data Controller
Data Controller: Pongsasit Thongpramoon
Contact (privacy requests): pongsasit.thongpramoon@gmail.com
3. Data We Collect
| Category | Examples | Purpose | Legal Basis |
|---|---|---|---|
| Account Data | Google account ID, email, name | Authentication, account management | Contract |
| Profile Data | Display name, age, goals, optional preferences | Personalization | Consent |
| Financial Data | Income, expenses, categories, dates, optional notes | Core app functionality | Contract |
| Chat Data | Messages with AI assistants and responses | Provide AI features | Contract |
| Usage Data | App interactions, device type, OS | Improve performance | Legitimate Interest |
| Diagnostic Data | Crash logs, error reports | Debugging and reliability | Legitimate Interest |
We do NOT collect:
- Bank account numbers or credit card numbers
- Third-party financial account credentials
- Location data
- Contacts or SMS data
- Biometric data
4. How We Use Your Data
We use your data to:
- Provide core features (ledger, goals, insights, rewards)
- Deliver AI-powered guidance via in-app assistants (Jovy and Treasurer Judy)
- Improve system performance and reliability
- Maintain security and prevent misuse
- Comply with legal obligations
For AI features:
We send limited, non-identifiable data (e.g., transaction summaries) to our AI provider to generate responses.
We do not send direct identifiers such as your name or email to AI systems.
5. Data Sharing
We only share your data with necessary service providers:
| Provider | Purpose |
|---|---|
| Google LLC | Authentication (Google Sign-In) |
| NVIDIA Corporation | AI model inference |
| Cloudflare, Inc. | Security and network performance |
We:
- Do NOT sell your data
- Do NOT use your data for advertising
6. International Data Transfers
Some service providers operate outside Thailand.
We ensure that such transfers are protected by appropriate safeguards consistent with PDPA and applicable international data protection standards.
7. Data Retention
| Data Type | Retention |
|---|---|
| Account & Profile Data | Until account deletion |
| Financial Data | Until account deletion |
| Chat Data | Up to 90 days |
| Logs & Diagnostics | 30–90 days |
You may request deletion at any time.
8. Your Rights (PDPA)
You have the right to:
- Access your personal data
- Request a copy (data portability)
- Correct inaccurate data
- Delete your data
- Restrict processing
- Object to processing
- Withdraw consent
To exercise your rights, contact: pongsasit.thongpramoon@gmail.com
You may also file a complaint with the Personal Data Protection Committee (Thailand): https://www.pdpc.or.th
9. Security
We implement appropriate security measures, including:
- Encrypted data transmission (TLS)
- Secure storage mechanisms (mobile secure storage)
- Access controls to protect user data
However, no system is completely secure. Please contact us immediately if you suspect unauthorized access.
10. Children
KaneNabi may be used by individuals aged 10 and above.
If you are under 20, you must obtain parental or guardian consent.
We do not knowingly collect data from children under 10.
11. Third-Party Services
KaneNabi integrates with third-party services including:
- Google Sign-In
- NVIDIA NIM
- Cloudflare
- Sentry
These services operate independently and have their own privacy policies.
12. Changes to This Policy
We may update this Privacy Policy from time to time.
Material changes will be communicated through the app or other appropriate channels at least 14 days before taking effect.