Data Policy

Last updated: 1 April 2026

1. Data Classification

All data on the Kennis OS platform is classified into four tiers:

  • Tier 1 — Public: Non-sensitive data (e.g., public API endpoints, documentation).
  • Tier 2 — Internal: Operational data (e.g., project names, user roles).
  • Tier 3 — Confidential: Sensitive business data (e.g., financial calculations, fund data).
  • Tier 4 — Restricted: Highly sensitive data (e.g., PII, authentication credentials).

2. Data Storage

All data is stored in Supabase PostgreSQL databases in eu-west-1 (Ireland). Data is encrypted at rest (AES-256) and in transit (TLS 1.3). Row-level security enforces access control at the database level.

3. Data Retention

Active account data is retained for the duration of the account. Deleted accounts have data purged within 30 days. Financial records are retained for a minimum of 7 years per regulatory requirements. Backups are retained for 30 days.

4. Data Processing

Data is processed within the EU (eu-west-1). KORA AI queries are processed to generate responses; query logs are anonymised after 30 days. We do not sell data to third parties.

5. Data Export

You can export your data at any time through the SDK, API, or admin dashboard. We support JSON, CSV, and SQL export formats.

6. Contact

Data inquiries: data@kennisos.com

Part of the Septimius Ecosystem

Kennis CapitalInvestment PlatformSeptimiusProduct SuiteManuscrContent Platform