Privacy Policy
Version 1.0 — Effective May 7, 2026
1. Who We Are
B1ND Systems, Inc. ("Company," "we," "us") operates the Quipu and B1ND platforms. We're headquartered in Wilmington, Delaware. This policy explains what data we collect, how we use it, and the choices you have.
2. What We Collect
- Account information — email, password (hashed), organization name, edition selected
- Financial data — your books, invoices, bills, journal entries, bank-feed transactions, and the counterparties you transact with
- Payment information — billing details collected and stored by our payment processor (Stripe). We do not store full payment card numbers.
- Bank connection metadata — when you connect a bank account through Plaid, we receive transaction data and account identifiers. We do not store your bank login credentials.
- Usage data — IP address, browser type, pages visited, and timestamps for security and product analytics
3. How We Use It
- To provide, maintain, and improve the Service
- To process payments and manage your subscription
- To detect, prevent, and respond to fraud and security incidents
- To send you operational communications (receipts, security alerts)
- To comply with legal and regulatory obligations
4. Who We Share It With
We share data only with vendors that help us deliver the Service, all under contractual confidentiality and data-protection terms:
- Stripe — payment processing
- Plaid — bank connection services (only when you connect an account)
- Anthropic — AI features (chat, suggestions). Your prompts and the data you submit may be sent to Anthropic to generate responses. Anthropic does not train on customer data per their commercial terms.
- AWS — hosting and storage
- Sentry — error monitoring
- Resend — transactional email
We do not sell your personal data or your customers' data to third parties.
5. Data Retention
We retain account and financial data for the duration of your subscription plus twelve months after access expires, after which data may be deleted unless legal obligations require longer retention. You can export your data at any time through platform settings.
6. Your Rights
Depending on where you live, you may have the right to access, correct, delete, or port your personal data, and to object to or restrict certain processing. To exercise these rights, email privacy@b1ndsystems.com. We will respond within 30 days.
7. Security
We use encryption in transit (TLS 1.2+) and at rest, role-based access controls, multi-factor authentication, and routine security testing. No system is perfectly secure, but we work continuously to protect your data. Security incidents affecting your data will be communicated promptly.
8. Children
The Service is not intended for users under 18. We do not knowingly collect personal data from children.
9. Cookies
We use cookies and similar technologies as described in our Cookie Policy.
10. Changes to This Policy
We may update this Privacy Policy. Material changes will be communicated via email or a prominent notice on the Service at least 30 days before they take effect.