KKBookkeep Privacy Protection Policy

Last Updated: June 5, 2026 Effective Date: June 5, 2026

Introduction

This Privacy Protection Policy (hereinafter referred to as "this Policy") applies to the KKBookkeep / 羊羊记账 iOS client (hereinafter referred to as "the App"). The App is a local-first bookkeeping tool that saves your ledger data locally on your device by default; it only writes relevant data to your chosen iCloud Drive or WebDAV file directory after you actively configure file backup or sync services.

Please read this Policy carefully before using the App. The key points of this Policy are as follows:

1. The App does not currently use the developer's own cloud servers as a ledger synchronization path, nor does it provide a developer-operated account system. Your ledger, accounts, categories, transactions, personal preferences, and other data are saved locally by default.
2. If you enable WebDAV or iCloud Drive file backup/sync, the App will write necessary data files to the file storage location you choose or configure. The WebDAV server address, account, or access token is provided by you; the developer will not actively obtain, store, or host these credentials.
3. The App provides AI photo recognition bookkeeping, voice bookkeeping, and other features. Sensitive permissions such as camera, photo library, microphone, and voice recognition will not be enabled by default and will only be invoked after you actively use the relevant features and grant authorization.
4. Results produced by AI recognition, photo recognition, and voice recognition are only displayed as bookkeeping drafts and will only be formally written to the ledger after your confirmation.
5. You can manage relevant data, permissions, and backup configurations through in-app features or iOS system settings. Deleting the App or clearing local data may result in unrecoverable data loss for unbacked data; please proceed with caution.

1. How We Collect and Use Information

During your use of the App, the App processes the following information depending on specific features:

1.1 Ledger and Bookkeeping Data

When you add, edit, delete, or view bookkeeping entries, the App stores and processes your ledger data locally, including but not limited to:

• Transaction amounts, types, dates, notes, categories, accounts, transfer accounts, etc.;
• Account names, account types, balances, icons, colors, default accounts, etc.;
• Category names, hierarchy, icons, colors, sorting, archived or deleted status, etc.;
• Bookkeeping data required for budgets, reports, and statistical analysis;
• Local operation logs, operation timestamps, device identifiers, serial numbers, globally unique operation identifiers, etc., required for synchronization, backup, auditing, and recovery.

The above information is used to complete bookkeeping, display balances, generate reports, manage account categories, perform local recovery, and file backup/sync. At the current stage, the App saves this information locally by default and does not upload it to the developer's own cloud servers.

1.2 Profile and Preference Settings

When you maintain personal information or preferences in the App, the App may store your nickname, email, avatar, bookkeeping preferences, notes, interface settings, backup settings, and other information. The above information is primarily used for local display, offline access, and file backup/sync that you actively enable.

The App currently does not provide developer-operated account registration, login, logout, or third-party login features, and therefore will not upload your profile to the developer's servers through an account system.

1.3 File Backup and Sync Information

When you actively configure and enable file backup or sync features, the App will write relevant data to iCloud Drive or WebDAV file directories according to your settings.

WebDAV file backup/sync may involve:

• The WebDAV server address you enter;
• WebDAV username, password, access token, and other transport authentication credentials;
• Backup file encryption password or local key material used for encryption;
• Profile backup files;
• Incremental JSONL operation logs for accounts, categories, transactions, etc.;
• Necessary information for connection testing, deduplication, import cursors, backup status, and last backup time.

WebDAV passwords, access tokens, and backup file encryption passwords should only be stored in system secure storage such as iOS Keychain and will not be written to ordinary configuration files, sync JSON, logs, or source code. WebDAV credentials are used only for transport authentication and will not be used as ledger file encryption keys.

1.4 Camera, Photo Library, and Photo Recognition Bookkeeping

When you use AI photo recognition bookkeeping, image-based bookkeeping, or receipt image upload features, the App may, after your authorization, access the camera or photo library and process the images you capture or select. Relevant images may contain merchant names, product details, amounts, times, locations, payment methods, and other information.

The purpose of processing this information is to recognize possible bookkeeping content from the images and generate drafts. Recognition results will not be formally entered into the ledger until you confirm them.

If related features require calls to third-party AI, OCR, or image recognition services, the App will explain the processing purpose, processing method, scope of data that may be sent, and service provider in feature interfaces, permission prompts, or separate agreements, and will obtain your authorization when necessary. Unless you actively use the relevant features and confirm authorization, the App will not upload your images for photo recognition purposes.

1.5 Microphone, Voice Recognition, and Voice Bookkeeping

When you use the voice bookkeeping feature, the App may, after your authorization, access the microphone and process your voice content or speech-to-text transcript. Relevant voice or text may contain amounts, times, categories, accounts, merchants, notes, and other bookkeeping information.

The purpose of processing this information is to recognize the bookkeeping intent you express and generate drafts. Voice recognition results will not be formally entered into the ledger until you confirm them.

If related features require calls to third-party voice recognition, AI understanding, or cloud transcription services, the App will explain the processing purpose, processing method, scope of data that may be sent, and service provider in feature interfaces, permission prompts, or separate agreements, and will obtain your authorization when necessary. Unless you actively use the relevant features and confirm authorization, the App will not upload your recordings or speech-to-text transcripts for voice bookkeeping purposes.

1.6 Clipboard, Import/Export, and Manual Files

When you actively paste, import, export, or select files, the App may process the text, JSON, JSONL, images, or other file content you provide, for purposes of quick entry, data import, backup recovery, or troubleshooting. Except for the file backup/sync directories you actively choose, the App will not actively upload this content to the developer's servers.

1.7 Device and Operational Information

To enable local storage, backup deduplication, incremental sync, error diagnosis, and application operation, the App may process necessary device and operational information locally, such as a stable deviceId generated on the device, software version, operation timestamps, sync status, import cursors, backup task status, error messages, etc.

The App does not collect IDFA for advertising purposes, nor does it actively upload device identifiers, ledger data, or usage behavior to the developer's own cloud servers. If crash analytics, statistical analysis, or third-party SDKs are introduced in the future, we will explain the relevant circumstances in this Policy or the third-party information disclosure list.

1.8 Legal and Regulatory Exceptions

In accordance with relevant laws, regulations, and national standards, we may process your relevant personal information without separately obtaining your authorized consent in the following circumstances:

• Where necessary for the personal information processor to fulfill statutory duties or obligations;
• Where necessary for the conclusion or performance of a contract to which you are a party;
• Where necessary to respond to a public health emergency, or to protect the life, health, and property safety of natural persons in an emergency;
• Where processing personal information that you have disclosed yourself or that has otherwise been lawfully disclosed, to a reasonable extent in accordance with the law;
• Other circumstances provided for by laws and administrative regulations.

2. Information Storage

2.1 Storage Location

The App saves ledger data and application settings locally on your iOS device by default, including in the application sandbox, App Support directory, UserDefaults, Keychain, or local SQLite databases and other locations.

When you actively enable WebDAV file backup/sync, relevant backup files will be stored in the WebDAV server directory you configure. This directory is chosen and managed by you and may be located on a home NAS, cloud storage, enterprise server, or third-party WebDAV service. Please understand and comply with the privacy policies and data storage rules of the corresponding service providers yourself.

When iCloud Drive backup/sync is enabled, relevant backup files will be stored in the iCloud Drive associated with your Apple ID. iCloud Drive storage, synchronization, and cross-border transfer rules are governed by Apple and its related terms of service.

2.2 Storage Duration

The App will retain your ledger data and related information on your local device for as long as you continue to use the App. When you delete the App or clear application data, locally stored data will be removed accordingly.

Backup files stored in WebDAV or iCloud Drive directories are managed by you. You may delete these backup files at any time through the corresponding file services.

2.3 Cross-Border Data Transfer

When you use WebDAV backup/sync, the storage location of backup files is determined by the WebDAV server address you configure. If you use WebDAV services located outside the People's Republic of China, relevant data will be transmitted to and stored on servers in the corresponding country or region. Please understand and evaluate the data protection and privacy risks of cross-border storage yourself.

When you use iCloud Drive backup/sync, data storage and synchronization are managed by Apple. For cross-border data transfer rules of iCloud, please refer to Apple's privacy policy and iCloud terms of service.

3. How We Protect Your Information

3.1 The App employs industry-standard security measures to protect your information, including but not limited to:

• Storing sensitive credentials (WebDAV passwords, access tokens, encryption passwords) through iOS Keychain;
• Supporting backup file encryption (encrypted using passwords or key material you provide);
• Not embedding or hardcoding WebDAV credentials or encryption passwords in plaintext configuration files, logs, or source code;
• Not transmitting your ledger data to the developer's own cloud servers.

3.2 While we take reasonable security measures, please understand that no security measure is absolutely foolproof on the internet or in information technology systems. We recommend that you:

• Set strong passwords and keep encryption passwords properly secured;
• Regularly check backup status and file availability;
• Protect your device, system, and the credentials for related services;
• Use secure and trustworthy WebDAV services or cloud storage.

3.3 The security of your data depends not only on the App's security mechanisms but also on the security of your iOS device, Apple ID, WebDAV credentials, encryption passwords, and related file services. You should take appropriate protective measures yourself.

4. Your Rights

4.1 You have the following rights over your personal information:

• Right of Access: You can view and manage your ledger data, account categories, transaction records, and personal preferences at any time through the App's interface.
• Right of Correction: You can edit and correct your ledger data and personal information at any time through the App's interface.
• Right of Deletion: You can delete specific data through the App's interface, or delete all local data by uninstalling the App or clearing application data.
• Right of Data Portability: You can export your ledger data or create backups through the App's WebDAV backup/export features.
• Right to Withdraw Consent: You can withdraw authorization for system permissions (camera, photo library, microphone, etc.) at any time through iOS Settings.

4.2 Since the App currently does not provide a developer-operated account system, your data is primarily stored locally. You may directly manage your data through the App's features without submitting data access or deletion requests to the developer.

4.3 If you have any questions about this Policy or need to contact us regarding personal information matters, you can reach us through the following channels:

• Email: support@ksuser.cn
• Website: https://www.ksuser.cn

5. Protection of Minors' Information

5.1 The App is not directed at minors under the age of 14. If you are a minor under 14, please use the App and provide personal information only under the guidance and consent of your parent or legal guardian.

5.2 If we become aware that we have collected personal information of a minor under the age of 14 without verifiable parental or guardian consent, we will take steps to delete the relevant information as soon as possible.

6. Third-Party SDKs and Services

6.1 The App currently does not integrate advertising SDKs, user behavior analytics SDKs, or crash reporting SDKs provided by third parties.

6.2 If third-party SDKs or services are introduced in future versions, we will update this Policy and the third-party information disclosure list before such introduction, explaining the name of the SDK or service, the provider, the purpose of processing, the types of data involved, and the provider's privacy policy link.

6.3 When you use third-party services provided through the App (such as AI recognition, OCR, voice recognition services, etc.), your information may be processed by the corresponding service providers in accordance with their privacy policies. Please review the privacy policies of the relevant third parties before using such features.

7. Policy Updates

7.1 We may update this Policy from time to time. When we update this Policy, we will notify you through the App's interface, pop-up notices, or other means.

7.2 For material changes, we will provide prominent notice and, where required by law, obtain your consent.

7.3 Unless otherwise stated, the updated Policy will take effect from the date specified in the update notice.

8. Contact Us

If you have any questions, comments, or suggestions regarding this Privacy Protection Policy, please contact us at:

• Email: support@ksuser.cn
• Website: https://www.ksuser.cn