At BusinessOS, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
1. Information We Collect
1.1 Personal Information
We collect information that you provide directly to us when you:
- Create an account (name, email, phone number, company name)
- Use our Service (business data, inventory, sales, accounting records)
- Communicate with us (support requests, feedback)
- Subscribe to our newsletter or marketing communications
1.2 Automatically Collected Information
- Device information (IP address, browser type, operating system)
- Usage data (pages visited, features used, time spent)
- Cookies and similar tracking technologies
- Log files (access times, errors, performance metrics)
2. How We Use Your Information
We use the information we collect to:
- Provide the Service: Process transactions, manage your account, provide customer support
- Improve the Service: Analyze usage patterns, develop new features, fix bugs
- Communicate: Send service updates, security alerts, support messages
- Marketing: Send promotional materials (only with your consent)
- Security: Detect fraud, prevent abuse, ensure platform security
- Compliance: Comply with legal obligations and enforce our policies
3. Data Security
We implement industry-standard security measures to protect your data:
- Encryption: All data is encrypted in transit (TLS/SSL) and at rest (AES-256)
- Access Controls: Role-based access with multi-factor authentication
- Regular Audits: Security assessments and penetration testing
- Secure Infrastructure: Hosted on secure cloud servers with redundancy
- Data Backups: Regular automated backups with disaster recovery plans
- Employee Training: All staff trained on data protection best practices
4. Data Sharing & Disclosure
We do NOT sell your personal information. We may share your information only in these circumstances:
- Service Providers: Third-party vendors who help us operate the Service (payment processors, hosting providers)
- Business Transfers: In case of merger, acquisition, or sale of assets
- Legal Requirements: When required by law or to protect our rights
- With Your Consent: When you explicitly authorize us to share information
5. Data Retention
We retain your information for as long as your account is active or as needed to provide the Service. You can request deletion of your account and data at any time. We will delete your data within 30 days, except where we must retain it for legal or regulatory compliance (typically 7 years for financial records).
6. Your Rights
You have the following rights regarding your personal information:
- Access: Request a copy of your personal data
- Correction: Update or correct inaccurate information
- Deletion: Request deletion of your account and data
- Portability: Export your data in a standard format
- Opt-Out: Unsubscribe from marketing communications
- Restrict Processing: Limit how we use your data
7. Cookies & Tracking
We use cookies and similar technologies for:
- Essential Cookies: Required for the Service to function (authentication, session management)
- Analytics Cookies: Understand usage patterns and improve the Service
- Marketing Cookies: Deliver relevant advertisements (only with consent)
You can control cookies through your browser settings, but disabling essential cookies may affect functionality.
8. Multi-Tenant Data Isolation
BusinessOS is a multi-tenant platform. Each tenant's data is logically separated and encrypted. We implement strict access controls to ensure that one tenant cannot access another tenant's data. Enterprise customers can opt for dedicated database instances for additional isolation.
9. Children's Privacy
Our Service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
10. International Data Transfers
Your data may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards (such as Standard Contractual Clauses).
11. Third-Party Links
Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies before providing any information.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Continued use of the Service after changes constitutes acceptance of the updated policy.
13. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us at:
Email: privacy@businessos.com
Data Protection Officer: dpo@businessos.com
Website: businessos.com
14. Compliance
BusinessOS complies with:
- India's Information Technology Act, 2000
- India's Personal Data Protection Bill (when enacted)
- GDPR (for European users)
- Industry-specific regulations (GST, Companies Act, etc.)