1. Introduction

This Privacy Policy describes how we manage, store, and protect your information. By using the Service, you agree to the terms outlined in this policy.

2. Information We Collect

A. Information Provided by the Admin (User Data)

• Account Details: Shop Name, Admin Name, Email, Mobile, Billing Address • Subscription Details: Plan Name, Expiry Date, Billing History, Invoice Data

B. Operational Data (Entered by Admin/Branch/Staff)

• Branch Data: Branch names, addresses, login credentials • Staff Data: Names, photos, mobile numbers, salary type, login credentials • Financial Data: Transactions, payments, advance requests • Inventory Data (if applicable): Products, stock, pricing

C. Customer Data (Entered for Sales & Credit Management)

• Credit/Due Records: Customer Names and Mobile Numbers • Transaction Records linked to customer sales

D. Usage Data & Technical Information

• IP address, browser type, operating system • Pages visited, time spent, activity logs • System messages such as Login Attempts, Staff Limit alerts

3. How We Use the Information

We use the collected data for the following purposes:

• To provide and maintain the Service

• User authentication and privilege management

• Billing, subscription management, and Staff Limit enforcement

• Approval workflows for Staff Advance Requests

• Sales, staff, and credit reporting

• Alerts, notifications, reminders, and communication

• Security monitoring and fraud prevention

4. Data Ownership and Sharing

4.1. Data Ownership

You, the Admin, retain full ownership of all Operational and Customer data stored within the Service. We act solely as a data processor.

4.2. Disclosure to Third Parties

We do not sell or rent your data. We share information only with: • Cloud hosting providers • Payment processors • Service vendors bound by confidentiality • Government or legal authorities if required by law

4.3. Internal Role-Based Access

• Admins: Access all branches and data • Branch Users: Access only branch-specific reports and credit data • Staff: Access only their own sales and reports

5. Data Security

We implement modern security practices including: • SSL/TLS data encryption • Hashing of all passwords • Role-based access control

6. Data Retention

We retain your data as long as your account remains active. After cancellation or expiry, data will be stored for a grace period of [Specify Duration: e.g., 60 days] before secure deletion.

7. Your Rights

You may access, update, and delete your data at any time, subject to system integrity constraints such as historical transaction logs.

8. Changes to this Privacy Policy

We may update this Privacy Policy periodically. Changes will be posted within the Service, and the “Effective Date” will be updated accordingly.