Kakeibo
Get Started

Privacy Policy

Last updated: 2026-05-03

1. Introduction

Kakeibo (“we”, “us”, “our”) operates a personal-finance service available through our web application and mobile app (the “Service”). This Privacy Policy explains what information we collect, how we use it, how we share it, and what rights you have over your data.

The Service is operated by AlphaBlue Thailand and is available at kakei.io.

By creating an account or using Kakeibo, you agree to the practices described here. If you do not agree, please do not use the Service. This policy should be read together with our Terms of Service.

2. Information we collect

Account information

  • Email address (required to sign in)
  • Display name (optional, used to attribute transactions in shared teams)
  • Language preference and base currency (used to localize emails and amounts)

Authentication data

We do not store passwords. Sign-in is passwordless. We hold:

  • One-time codes (OTP) sent to your email — short-lived and single-use
  • Magic-link tokens — short-lived and single-use
  • Web session and CSRF data used to keep the browser session secure
  • Personal access tokens for the mobile app — revocable when you sign out or we invalidate them

Financial data you create

  • Transactions (amount, date, description, category, currency, exchange rate)
  • Accounts (name, type, balance)
  • Categories and tags
  • File attachments uploaded to transactions (for example, receipts)
  • Team memberships, roles, and account-sharing settings

Payment information

If you subscribe to a paid plan, we use Stripe to process payments. We do not store full card numbers. Stripe stores your payment method details and provides us with billing metadata such as a customer reference, card brand, last 4 digits, expiry, and billing country.

Usage and device data

  • IP address, browser, device type, operating system
  • Cookies, session storage, and local storage needed to operate the app and preserve your preferences, such as session state, CSRF protection, locale preference, invitation handoff, active team selection, and transaction view mode

3. How we use your information

  • Provide and operate the Service, including sign-in, synchronization, and dashboards
  • Send transactional emails such as sign-in codes, magic links, invitations, and billing notices
  • Detect and prevent abuse, fraud, unauthorized access, and other security incidents
  • Provide support, troubleshoot issues, and maintain service reliability
  • Comply with legal obligations

We do not sell or rent your information. We do not use your financial data to train machine-learning or AI models.

4. How we share information

We share data only with:

  • Service providers that help us operate, such as hosting providers, email delivery providers, file-storage providers, and payment processors. They may process your data only as needed to provide services to us.
  • People you authorize — anyone you invite into a shared team can see the accounts and transactions you have explicitly shared with that team. Private accounts remain private.
  • Legal authorities when required by valid legal process, or to protect rights, safety, or property.

In the event of a merger, acquisition, or asset sale, your data may be transferred to the successor entity with notice to you and the same privacy commitments.

5. Where we store data

Kakeibo uses a split infrastructure. Our backend runs on self-managed server infrastructure, our web frontend is served through Vercel, uploaded receipt files are stored through Cloudflare R2, and payment data is handled by Stripe. We use TLS to protect data in transit. Some data may therefore be processed in the countries where these providers operate.

6. How long we keep data

  • Active accounts: indefinitely, until you delete them.
  • Deleted accounts: we may retain data for a limited period to complete the deletion workflow, prevent abuse, resolve disputes, or comply with legal obligations such as tax and billing retention requirements.
  • Authentication data: OTP and magic-link tokens expire automatically; web sessions end when they expire or you sign out; mobile access tokens remain valid until revoked or deleted.

7. Your rights

You can:

  • Access your data through the dashboard and settings.
  • Export your data in a structured format through Settings; we will send a download link to your email.
  • Correct inaccurate information directly in the app.
  • Delete your account from Settings once the self-service deletion flow is available, or by contacting us at support@kakei.io in the meantime.
  • Object to specific processing or withdraw consent by contacting us.

If you reside in the EEA, the United Kingdom, or California, you have additional rights under the GDPR, UK GDPR, or CCPA — including the right to lodge a complaint with your local data-protection authority.

8. Children

Kakeibo is not directed to children under 16. We do not knowingly collect data from anyone under 16. If you believe a child has provided us with information, contact us at support@kakei.io and we will delete it.

9. International transfers

If you are located outside the countries where our infrastructure or service providers operate, your data may be transferred internationally. Where required, we will rely on contractual or other lawful safeguards for those transfers.

10. Cookies

We use essential browser storage needed to operate the Service:

  • Authentication session cookie for the web app
  • CSRF protection cookie for secure web requests
  • Locale preference and other UX preferences such as transaction view mode
  • Temporary browser storage that helps complete invitation and team-selection flows

We do not run third-party analytics, advertising, or cross-site tracking. We may add privacy-respecting analytics in the future and will update this policy if we do.

11. Changes to this policy

We may update this Privacy Policy. If changes are material, we will notify you by email and/or via an in-app notice at least 90 days before they take effect.

12. Contact

Questions, requests, or complaints:

  • Email: support@kakei.io
  • Legal entity: AlphaBlue Thailand
  • Data protection officer: dpo@alphablueth.com