Privacy Policy
Last Updated: May 28, 2026
Welcome to the Privacy Policy for our mobile application (the "App"), owned and operated by Pentian AI Solutions ("we," "us," or "our"). We are committed to protecting the privacy of our merchants, business users, and their clients.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related backend services. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
1. Information We Collect
We only collect data that is strictly necessary to provide core business automation, messaging synchronization, and inventory tracking services.
A. Personal Data
While using our App, we may ask you to provide or grant access to certain personally identifiable information that can be used to contact or identify users, including:
- Account Credentials: Names, business names, email addresses, and phone numbers used to create merchant accounts.
- Customer/Lead Information: Names, WhatsApp numbers, and social media identifiers (e.g., Instagram User IDs) of your customers, pulled strictly to facilitate chat routing and order generation.
B. Transaction and Order Data
To manage your store's operations, the App processes:
- Inventory stock quantities, product descriptions, pricing details, and order statuses.
- Manual payment verification data entered by the user (such as M-Pesa transaction reference details) to reconcile retail sales. Note: We do not process or store raw credit card numbers or banking PINs directly inside the App.
C. Device and Network Information
We automatically collect certain information when you access the App:
- Push Notification Tokens: Unique device identifiers (such as ExponentPushTokens) required exclusively to deliver real-time order and message alerts.
- Log Data: IP addresses, device types, operating system versions, and system crash logs to ensure application stability and security.
2. How We Use Your Information
We use the collected information strictly to maintain your business operations, including to:
- Provide, operate, and maintain the App's core services (Order tracking, inventory decrementing, and communication syncing).
- Route real-time push notifications to your device when new customer messages or orders arrive.
- Authenticate merchant access and secure your database tenancy.
- Monitor, diagnose, and fix technical errors and performance bugs.
3. Data Sharing and Third-Party Disclosures
We do not sell, rent, trade, or monetize your data or your customers' data. Information is only transferred to secure infrastructure partners necessary to run the service:
- Cloud Infrastructure: Data is securely stored and processed using encrypted cloud database providers (such as Supabase) and managed Virtual Private Servers (VPS).
- API Integrations: Communication data is routed securely through authorized third-party messaging systems (such as Meta’s Graph API for WhatsApp/Instagram communication).
- Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., the Office of the Data Protection Commissioner in Kenya).
4. Security of Your Data
The security of your data is a priority.
All data transmitted between the mobile application, our backend API (api.pentianai.co.ke), and third-party databases is fully encrypted in transit using industry-standard Transport Layer Security (TLS/HTTPS).
We implement multi-tenant isolation barriers on our database backend to ensure that one merchant can never view or access the data, leads, or orders of another merchant.
5. Data Retention and Deletion
We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy.
Account Closure and Deletion Rights
In compliance with global app store standards and regional data regulations, users have the absolute right to request data deletion.
You may request the permanent deletion of your account, business data, and customer histories at any time.
To initiate a deletion request, please contact us at info@pentianai.co.ke. Upon receiving a valid request, we will delete or anonymize all associated data within the legally mandated timeframe, unless required to retain it for legal compliance or financial auditing.
6. Target Audience and Children’s Privacy
Our App is strictly a business-to-business (B2B) management utility designed for commercial use by operators and adults. Our services do not target, and are not intended for use by, individuals under the age of 18. We do not knowingly collect personal identifiable information from children. If we discover that a child under 18 has provided us with personal data, we will immediately delete it from our servers.
7. Regional Compliance (Kenya Data Protection Act, 2019)
As a digital service handling data within Kenya, we acknowledge and adhere to the principles of data protection set out under the Kenya Data Protection Act, 2019. Merchants and their consumers reserve the right to:
- Be informed of how their data is being used.
- Access their personal data held by us.
- Object to the processing of all or part of their personal data.
- Request correction of false or misleading data.
8. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this policy. You are advised to review this Privacy Policy periodically for any changes.
9. Contact Us
If you have any questions, concerns, or deletion requests regarding this Privacy Policy, please reach out to us:
- By Email: info@pentianai.co.ke
- By Visiting our Website: https://pentianai.co.ke
Have questions or data deletion requests?
We fully comply with the Kenya Data Protection Act and global privacy standards. Contact our privacy team.