Privacy Policy

1. Introduction

Welcome to Bill Sonic ("we," "our," or "us"), operated by Navyansh Kothari. We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and web service (collectively, "the App").

By using the App, you consent to the data practices described in this Privacy Policy. If you do not agree with the practices described herein, please do not use the App.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address (used for authentication and account recovery)
• Shop/Business name
• Password (stored securely via Firebase Authentication with industry-standard hashing)

2.2 Business Data

To provide our POS services, we store the following data that you input:

• Product inventory information (names, prices, barcodes, categories, stock levels)
• Sales transactions, bills, and payment records
• Coupon and discount configurations
• Cashier names and associated PINs
• Admin PIN code

2.3 Automatically Collected Information

We may automatically collect certain information when you use the App, including:

• Device type and operating system version
• App version and usage patterns
• Crash reports and performance data (via Firebase/Expo diagnostics)

2.4 Camera Access

The App requests camera access solely for barcode scanning functionality. Camera data is processed locally on your device and is not stored, transmitted, or shared. No photos or videos are captured or retained.

3. How We Use Your Information

We use the collected information exclusively for the following purposes:

• Providing, operating, and maintaining the POS service
• Processing and storing your business transactions and inventory data
• Authenticating users and securing accounts via email/password and PIN-based login
• Generating sales reports, analytics, and data exports (PDF, Excel)
• Sending password reset emails when requested
• Improving the App's functionality, performance, and user experience
• Detecting and preventing fraud, abuse, or security incidents

We do NOT use your data for advertising, marketing to third parties, or any purpose unrelated to providing the Service.

4. Data Storage and Security

Your data is stored securely using Google Firebase (Cloud Firestore and Firebase Authentication), which provides enterprise-grade security including:

• Encryption of data in transit (TLS/SSL) and at rest
• SOC 1, SOC 2, and SOC 3 certified infrastructure
• ISO 27001 certified data centers
• Automatic security patches and updates

PIN codes are stored in Firestore and are used for local authentication within your shop's account. We recommend using unique PINs that are not used elsewhere.

While we implement commercially reasonable security measures, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security of your data.

5. Data Sharing and Disclosure

We do NOT sell, rent, trade, or share your personal or business data with third parties for their marketing purposes. We may share your information only in the following circumstances:

• Service Providers: We use Google Firebase for infrastructure. Your data is processed in accordance with Google's privacy policies and data processing terms.
• Legal Requirements: We may disclose your information if required to do so by law, regulation, legal process, or governmental request.
• Protection of Rights: We may disclose information to protect the rights, property, or safety of Bill Sonic, our users, or the public.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction. We will notify you of such changes.

6. Third-Party Services

The App integrates with the following third-party services:

• Google Firebase: Authentication, Cloud Firestore database, and hosting. Subject to Google Firebase Terms and Google Privacy Policy.
• Open Food Facts API: Optional product information lookup via barcode. This is a public API and no personal data is transmitted. Subject to Open Food Facts Terms.

We are not responsible for the privacy practices of these third-party services.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Specifically:

• Account data: Retained until you use the in-app "Delete Account" feature or request account deletion
• Business data (products, bills, analytics): Retained until you delete specific records, use the "Delete Account" feature, or request deletion
• Automatically collected data: Retained for up to 12 months for analytics and troubleshooting

Upon using the "Delete Account" feature, your account credentials and all associated business data are permanently and immediately deleted from our active databases. Otherwise, upon a manual request, we will remove your data within 30 days except where retention is required by law.

8. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Delete your account and all associated data directly via the App settings or by requesting deletion
• Export: Export your sales data via the App's built-in PDF and Excel export features
• Withdraw Consent: Withdraw consent for data processing (which may result in inability to use certain features)

To exercise any of these rights, please contact us at the email address below.

9. Children's Privacy

The App is not intended for use by children under the age of 13 (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly. If you believe we have inadvertently collected data from a child, please contact us immediately.

10. International Data Transfers

Your data may be processed and stored on servers located outside your country of residence, including in the United States (via Google Firebase). By using the App, you consent to the transfer of your data to these locations. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by updating the "Last updated" date at the top of this page. For significant changes, we may provide additional notice within the App. Your continued use of the App after changes constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Developer: Navyansh Kothari

Email: navyansh.kothari2003@gmail.com

Website: https://navygeeks.in