Privacy Policy

TKR SOFTTECH SOLUTIONS ("we", "us", or "our") operates the POSiX ERP software and the website posix.co.in (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and the choices you have.

We believe in plain language. This policy is written to be read and understood, not to bury important details in legal jargon.

1. Information We Collect

1.1 Information You Provide

• Account information: name, email address, phone number, and business details (company name, GSTIN, address) when you register.
• Billing information: payment details are collected and processed by our payment partner Razorpay. We do not store your credit/debit card numbers on our servers.
• Support communications: emails, chat messages, or phone calls when you contact us.

1.2 Information Collected Automatically

• Usage data: pages visited, features used, time spent, and general interaction patterns to improve the product.
• Device information: operating system, browser type, screen resolution, and app version.
• Log data: IP address, access times, and referring URLs for security and troubleshooting.

1.3 Business Data (Your Data)

Your business data — invoices, inventory, accounting entries, party records, and other operational data — belongs to you.

• Desktop app: this data is stored locally on your machine in a SQLite database. We do not have access to it unless you enable cloud sync.
• Cloud sync: if you enable cloud sync, a copy of your business data is stored on our servers to enable multi-device access and backup.
• Web app: data entered through the web app is stored on our cloud servers.

2. How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Service.
• Process payments and manage your subscription.
• Send transactional emails (receipts, password resets, service updates).
• Respond to support requests and communicate about your account.
• Analyse usage patterns to fix bugs, improve performance, and build better features.
• Comply with legal obligations under Indian law (such as tax record-keeping requirements).

We do not sell your personal information or business data to third parties. We do not use your business data for advertising or profiling.

3. Data Storage & Security

3.1 Desktop App

The desktop application stores all data locally on your device in an SQLite database. You are responsible for backing up this data. We recommend regular backups to an external drive or cloud storage of your choice.

3.2 Cloud Servers

Cloud data is stored on servers located in India. We implement reasonable security practices as required under the Information Technology Act, 2000 (Section 43A) and the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, including:

• Encryption of data in transit (TLS/HTTPS).
• Encryption of sensitive data at rest (AES-256).
• Bcrypt hashing for passwords — we never store plain-text passwords.
• Regular security audits and access controls.
• Automated backups of cloud databases.

While we take every reasonable precaution, no system is 100% secure. If you discover a security vulnerability, please report it to tkrsofttech@gmail.com.

4. Third-Party Services

We use the following third-party services that may process your data:

• Razorpay: payment processing. Razorpay handles your payment information under their own privacy policy. We do not store your card details. See Razorpay's Privacy Policy.

We do not share your business data with any third party except as required by law or with your explicit consent.

5. Data Retention

• Account data: retained for as long as your account is active. If you delete your account, we remove your personal information within 30 days, except where retention is required by law.
• Business data: retained on our cloud servers for as long as your subscription is active. After account deletion, cloud data is permanently deleted within 90 days.
• Desktop data: stored locally on your device. We have no ability to delete it — you control it entirely.
• Billing records: retained for 8 years as required by Indian tax and accounting regulations.

6. Your Rights

Under the Information Technology Act, 2000 and applicable Indian privacy regulations, you have the right to:

• Access the personal information we hold about you.
• Correct inaccurate or incomplete personal information.
• Export your business data at any time (CSV, JSON, or direct SQLite file from the desktop app).
• Delete your account and associated data (subject to legal retention requirements).
• Withdraw consent for optional data processing (such as analytics).

To exercise any of these rights, email us at tkrsofttech@gmail.com. We will respond within 30 days.

7. Cookies

Our web application uses essential cookies for authentication and session management. These are strictly necessary for the Service to function and cannot be disabled.

We may use analytics cookies to understand how the website is used. You can disable these through your browser settings.

8. Children's Privacy

POSiX is a business application designed for use by businesses and professionals. We do not knowingly collect personal information from anyone under the age of 18. If we learn that we have collected data from a minor, we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by email or through an in-app notification. The "Last updated" date at the top of this page indicates when the policy was last revised.

Continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or how we handle your data, reach out to us: