Privacy Policy
How we collect, use, and protect your information
Last updated: December 30, 2024
Introduction
SwiftBill SaaS Platform ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our point-of-sale and store management application.
This policy applies to all users of our system, including store owners, employees, and customers whose information may be stored in the system.
Information We Collect
Personal Information
- Account information (name, email address, phone number)
- Employee details (position, hire date, permissions)
- Customer information (name, contact details, purchase history)
- Authentication credentials (encrypted passwords)
Business Information
- Store details (name, address, contact information)
- Product catalog and inventory data
- Sales transactions and financial records
- Business analytics and reporting data
Technical Information
- Device information (IP address, browser type, operating system)
- Usage data (login times, features accessed, session duration)
- Security logs (authentication attempts, audit trail)
- Performance metrics and error logs
How We Use Your Information
Primary Uses
- Provide and maintain the store management system
- Process transactions and manage inventory
- Authenticate users and maintain security
- Generate business reports and analytics
- Facilitate customer relationship management
Secondary Uses
- Improve system performance and user experience
- Detect and prevent fraudulent activities
- Comply with legal and regulatory requirements
- Provide customer support and troubleshooting
- Send important system notifications
Data Security
Security Measures
Technical Safeguards
- End-to-end encryption for data transmission
- Advanced encryption standard (AES-256) for data storage
- Multi-factor authentication for admin accounts
- Regular security audits and penetration testing
- Automated backup and disaster recovery
Administrative Safeguards
- Role-based access control (RBAC)
- Employee background checks and training
- Incident response and breach notification procedures
- Regular security awareness training
- Third-party security certifications
Information Sharing
We DO NOT sell your personal information
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
Limited Sharing Scenarios
- Service Providers: Trusted partners who help us operate the system (cloud hosting, payment processing)
- Legal Compliance: When required by law, court order, or regulatory authority
- Business Transfer: In case of merger, acquisition, or asset sale (with user notification)
- Consent: When you explicitly authorize us to share specific information
Your Rights and Choices
Data Access Rights
- View your personal information we have stored
- Request copies of your data in a portable format
- Understand how your information is being used
- Access audit logs of your account activity
Data Control Rights
- Correct inaccurate or incomplete information
- Delete your account and associated data
- Restrict processing of your information
- Opt-out of non-essential communications
Data Retention
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Account lifetime + 3 years | Legal compliance, dispute resolution |
| Transaction Records | 7 years | Tax and regulatory requirements |
| Security Logs | 2 years | Security analysis and compliance |
| Analytics Data | 3 years | Business intelligence and improvement |
International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure adequate protection through:
- Adequacy decisions from relevant authorities
- Standard contractual clauses approved by regulatory bodies
- Certification under recognized privacy frameworks
- Explicit consent where required
Children's Privacy
Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last updated" date at the top of this policy
- Sending you an email notification for material changes
- Displaying a prominent notice within the application
You are advised to review this Privacy Policy periodically for any changes. Changes are effective immediately upon posting.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
Email: privacy@swiftbill.app
Phone: +91-XXX-XXX-XXXX
Address: [Your Business Address]
Response Time: We aim to respond within 48 hours
This privacy policy is compliant with GDPR, CCPA, and Indian Personal Data Protection regulations.