Privacy Policy

1. Introduction

POSinity ("we," "our," or "us") is a new entrant in the Indian market, committed to protecting your privacy and data security. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Point of Sale (POS) system designed specifically for retail, restaurant, and grocery businesses in India, along with our website and related services (collectively, the "Service").

As a new POS solution provider in Tamil Nadu and across India, we understand the importance of building trust with our customers. We are committed to complying with the Information Technology Act, 2000 (IT Act), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other applicable Indian data protection laws and regulations.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you provide directly to us, including:

• Account Information: Name, email address, phone number, business name, GST number, PAN number, and business address
• Payment Information: Bank account details, UPI information, card details, billing information, and transaction history
• Business Information: Business type (retailrestaurant/grocery), industry, employee count, operational data, and business registration details
• Customer Data: Customer names, contact information, purchase history, preferences, and loyalty program data
• Inventory Data: Product information, stock levels, supplier details, and HSN/SAC codes for GST compliance
• Tax Information: GST returns, tax filing data, and compliance-related information

2.2 Automatically Collected Information

When you use our Service, we automatically collect certain information, including:

• Device Information: IP address, device type, operating system, browser type, and location data (for GST compliance)
• Usage Data: Pages visited, features used, time spent on the Service, and user behavior patterns
• Transaction Data: Sales transactions, payment processing (including UPI, cards, cash), inventory movements, and GST calculations
• Technical Data: Error logs, performance metrics, system diagnostics, and backup data
• Compliance Data: GST filing information, tax calculations, and regulatory compliance data

3. How We Use Your Information

We use the collected information for various purposes:

3.1 Service Provision

• Provide and maintain our POS system and related services for retail, restaurant, and grocery businesses
• Process transactions and manage payments (UPI, cards, cash, digital wallets)
• Track inventory and manage stock levels with real-time updates
• Generate reports and analytics for business insights
• Provide customer support and technical assistance in English and Tamil
• Facilitate GST compliance and tax calculations
• Manage customer loyalty programs and rewards

3.2 Business Operations

• Improve our services and develop new features based on Indian market needs
• Analyze usage patterns and optimize performance for Indian business environments
• Detect and prevent fraud or security threats
• Comply with Indian legal obligations including IT Act, GST regulations, and Tamil Nadu state laws
• Maintain audit trails for regulatory compliance
• Provide localized features for Indian business practices

3.3 Communication

• Send important service updates and notifications
• Provide customer support and respond to inquiries
• Send marketing communications (with your consent)
• Share product updates and new features

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. However, we may share your information in the following circumstances:

4.1 Service Providers

We may share information with trusted third-party service providers who assist us in operating our Service, including:

• Payment processors and financial institutions (Razorpay, Paytm, PhonePe, etc.)
• Cloud hosting and data storage providers with servers in India
• Customer support and technical service providers
• Analytics and monitoring services
• GST filing and compliance service providers
• Local business consultants and implementation partners

4.2 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal requests from Indian government authorities (Income Tax, GST, RBI, etc.)
• Court orders or subpoenas from Indian courts
• Protection of our rights, property, or safety
• Prevention of fraud or security threats
• GST audit requirements and tax compliance
• Regulatory requirements under IT Act and other applicable laws

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction, subject to the same privacy protections.

5. Data Security and Safeguards

As a new entrant in the Indian market, we are committed to implementing the highest standards of data security. We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction, in compliance with the IT Act and related regulations:

• Encryption: All data is encrypted in transit and at rest using industry-standard protocols (AES-256)
• Access Controls: Strict access controls, multi-factor authentication, and role-based permissions
• Regular Audits: Regular security assessments, vulnerability testing, and compliance audits
• Employee Training: Comprehensive security training for all employees in English and Tamil
• Incident Response: Established procedures for handling security incidents with 24/7 monitoring
• Data Localization: Sensitive data is stored on servers located in India
• Backup Security: Regular encrypted backups with disaster recovery procedures
• Network Security: Firewalls, intrusion detection, and DDoS protection

Our Promise: We commit to safeguarding your data with the same care and security standards used by established financial institutions in India. Your business data, customer information, and financial transactions are protected with enterprise-grade security measures.

6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy, in compliance with Indian regulations. The retention period depends on:

• The type of information collected
• The purpose for which it was collected
• Legal and regulatory requirements (IT Act, GST regulations, Income Tax Act)
• Business needs and operational requirements
• Audit and compliance requirements

Specific Retention Periods:

• Business Records: 8 years (as per Income Tax Act)
• GST Records: 6 years (as per GST regulations)
• Transaction Data: 7 years for audit purposes
• Customer Data: Until account closure or explicit deletion request

When we no longer need your information, we will securely delete or anonymize it using certified data destruction methods.

7. Your Rights and Choices

Under the Information Technology Act, 2000 and related regulations, you have certain rights regarding your personal information:

7.1 Access and Portability

You have the right to access and receive a copy of your personal information in a portable format. We will provide this information in English or Tamil as requested.

7.2 Correction and Update

You can request correction of inaccurate or incomplete personal information. We will update your information within 30 days of receiving your request.

7.3 Deletion

You may request deletion of your personal information, subject to certain legal and business requirements (such as GST compliance and audit requirements).

7.4 Opt-Out

You can opt out of marketing communications and certain data processing activities. You can manage your preferences through your account settings.

7.5 Data Portability

You have the right to receive your data in a structured, machine-readable format for transfer to another service provider.

7.6 Grievance Redressal

You have the right to file a grievance with our designated Grievance Officer under the IT Act. Contact details are provided in the "Contact Us" section.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and collect usage information, in compliance with Indian regulations:

8.1 Types of Cookies

• Essential Cookies: Required for basic functionality and security
• Performance Cookies: Help us understand how visitors interact with our website
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used for targeted advertising and analytics (with consent)
• Compliance Cookies: Track consent and regulatory compliance

8.2 Managing Cookies

You can control cookie settings through your browser preferences or our cookie consent banner. However, disabling certain cookies may affect the functionality of our Service.

8.3 Consent Management

We obtain explicit consent before using non-essential cookies, as required by Indian regulations. You can withdraw consent at any time through your account settings.

9. Children's Privacy

Our Service is not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, please contact us immediately. We will take appropriate steps to remove such information from our records.

10. Changes to This Privacy Policy

As a new entrant in the market, we may update this Privacy Policy from time to time to reflect changes in our practices, applicable laws, or regulatory requirements. We will notify you of any material changes by:

• Posting the updated policy on our website with clear version tracking
• Sending email notifications to registered users at least 30 days before changes take effect
• Displaying prominent notices within our Service
• Providing notifications in both English and Tamil where applicable

Your continued use of our Service after any changes constitutes acceptance of the updated Privacy Policy. We encourage you to review this policy periodically.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For Tamil Nadu Customers: We provide support in both English and Tamil. You can reach our Tamil-speaking support team at the same contact numbers and email addresses.