PuraKai OS Privacy Policy

1. Application Scope

This privacy policy applies to PuraKai OS, an internal operating system used for PuraKai finance, production, product, marketing, vendor, and operational workflows. It includes workflows where Plaid Link may be used to connect PuraKai bank, credit card, or other financial accounts.

2. Information We Collect

PuraKai OS may collect and process the following categories of information:

• Approved user account information, including name, email address, role, and authentication status.
• PuraKai operational records, including products, vendors, purchase orders, invoices, inventory, and tasks.
• Plaid-connected financial information, including account metadata, transaction history, balances when requested, institution identifiers, sync status, and source freshness.
• Review and audit metadata, including import runs, sync runs, categorization status, and reviewer notes.
• Technical records such as application logs, deployment logs, and security-related activity records.

3. How We Use Information

Information is used for internal PuraKai business purposes, including:

• Daily cash-flow and financial-health monitoring.
• Transaction categorization, review, and invoice or payment matching.
• Accounting, tax-support, and operational reporting.
• Vendor, production, inventory, and purchase-order workflows.
• Application security, access control, troubleshooting, and data-quality review.

4. Plaid-Connected Data

PuraKai OS uses Plaid to allow approved users to connect financial accounts for internal finance operations. Plaid Link is not surfaced until an approved signed-in user completes the required email verification step.

Plaid-connected data is treated as confidential. Plaid API credentials and access tokens are stored server-side only and are not exposed to browsers, public repositories, screenshots, or client-side code.

5. How We Share Information

PuraKai does not sell Plaid-connected financial data. Information may be shared only as needed with service providers and advisors that support PuraKai operations, such as hosting, database, finance, accounting, tax, security, or AI-assisted workflow providers.

These providers may include Plaid, Vercel, Supabase, OpenAI, Shopify, QuickBooks, Finaloop, banks, payment processors, accountants, tax advisors, or other vendors needed for PuraKai operations.

6. Security

PuraKai uses access controls intended to protect confidential data, including approved-user access, role-based permissions where supported, multi-factor verification before Plaid Link is surfaced, encrypted transport, managed infrastructure with encryption at rest, and server-side secret handling.

No system can guarantee absolute security, but PuraKai limits access to users and vendors with a defined business need and reviews sensitive access periodically.

7. Data Retention

PuraKai retains information as needed for business operations, accounting, tax support, legal obligations, security review, and troubleshooting. Plaid-connected data may be retained in transaction, sync, review, and reporting tables while it is needed for these purposes.

8. User Access And Corrections

Approved PuraKai OS users may request review, correction, or removal of account access or role information by contacting the security owner. Plaid account connections may be reviewed, disconnected, or reauthorized as part of normal finance operations.

9. Changes To This Policy

PuraKai may update this policy as the application, Plaid integration, vendor stack, or business workflows change. Material updates should be reflected in the application policy page and supporting security documentation.

10. Contact

Privacy and security questions may be directed to Noel Huelsenbeck, Founder / Owner, at noel@purakai.com.

Contact email: noel@purakai.com