I
InventBillBack to Home

Privacy Policy

Last Updated: December 10, 2024

🔒 Your Privacy Matters

This Privacy Policy explains how InventBill collects, uses, stores, and protects your personal information. We are committed to GDPR, CCPA, and other privacy regulations compliance.

Table of Contents

1. Overview

InventBill ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, store, and disclose your personal information when you use our inventory and billing management platform.

By using InventBill, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

When you register and use our Service, we collect:

  • Account Information: Name, email address, password, phone number
  • Organization Information: Company name, business address, GST number, PAN number
  • Business Data: Products, inventory, customers, invoices, employees, attendance records
  • Payment Information: Billing address, payment method details (processed by third-party providers)
  • Profile Information: Profile picture, job title, preferences, settings

2.2 Information We Collect Automatically

  • Usage Data: Pages visited, features used, time spent, actions taken
  • Device Information: IP address, browser type, operating system, device identifiers
  • Log Data: Access times, error logs, API calls
  • Cookies: Session cookies, preference cookies, analytics cookies

2.3 Information from Third Parties

We may receive information from third-party services you connect to InventBill, such as OAuth providers (Google, GitHub), payment processors, or integrations you enable.

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our Service
  • Process transactions and send confirmations
  • Authenticate users and prevent fraud
  • Send service updates, security alerts, and support messages
  • Respond to your requests and provide customer support
  • Analyze usage patterns and optimize performance
  • Develop new features and services
  • Send marketing communications (with your consent)
  • Comply with legal obligations and enforce our Terms
  • Protect against security threats and abuse

4. Information Sharing

We do NOT sell your personal information. We may share your information with:

4.1 Service Providers

  • Cloud hosting providers (for data storage and processing)
  • Payment processors (for billing and transactions)
  • Email service providers (for notifications)
  • Analytics providers (for service improvement)
  • Customer support tools

4.2 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights, safety, or property.

4.4 With Your Consent

We may share your information with third parties when you give us explicit consent to do so.

5. Data Security

We implement robust security measures to protect your information:

  • Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
  • Row-Level Security (RLS): Database-level multi-tenant isolation
  • Access Controls: Role-based permissions and authentication
  • Password Security: Passwords hashed using Argon2
  • Monitoring: 24/7 security monitoring and alerts
  • Regular Audits: Security assessments and penetration testing
  • Backup & Recovery: Regular backups and disaster recovery plans
  • Staff Training: Security awareness training for all employees

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to:

  • Provide our Service to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Maintain business records for tax and accounting purposes

When you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law. Business data may be retained for up to 7 years for tax compliance.

7. Your Rights

Depending on your location, you have the following rights:

7.1 GDPR Rights (EU/EEA Users)

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Object: Object to processing of your data
  • Right to Withdraw Consent: Withdraw consent at any time

7.2 CCPA Rights (California Users)

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information
  • Right to deletion of personal information
  • Right to non-discrimination for exercising rights

7.3 How to Exercise Your Rights

To exercise any of these rights, contact us at privacy@inventbill.com. We will respond within 30 days. You may also access and update most information through your account settings.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Essential Cookies: Required for authentication and security
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Understand how you use our Service
  • Performance Cookies: Improve Service speed and performance

You can control cookies through your browser settings. Disabling cookies may affect Service functionality. See our Cookie Policy for details.

9. Children's Privacy

Our Service is not intended for children under 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete it.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

  • EU Standard Contractual Clauses for GDPR compliance
  • Data Processing Agreements with service providers
  • Adherence to Privacy Shield principles where applicable
  • Encryption during transit and storage

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending you an email notification
  • Displaying a prominent notice in the Service

Your continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Data Protection Officer: privacy@inventbill.com

General Inquiries: support@inventbill.com

Address: [Your Business Address]

Phone: [Your Contact Number]

Compliance Certifications

🔒

GDPR

Compliant

🛡️

CCPA

Compliant

🔐

SSL/TLS

Encrypted

ISO 27001

In Progress

Terms of ServiceCookie PolicySecurityContact Us