Policy | online point of sale, invoice, receipt, inventory management, sales report, tax invoice, billing app

Privacy Policy

Privacy Policy for OPOS

Effective Date: September 18, 2025

This Privacy Policy describes how OPOS ("OPOS," "we," "us," or "our"), a cloud-based Online Point of Sale (OPOS) Software as a Service (SaaS) platform, collects, uses, processes, discloses, and protects information that we obtain through your use of our services (the "Service"). We are committed to protecting your privacy and handling your data transparently and securely.

1. Introduction

OPOS provides a cloud-based Point of Sale service designed to help businesses manage their sales, inventory, customer relationships, and other operations. In providing this Service, we process various types of information, including personal data. This Privacy Policy explains our practices regarding your data and your rights concerning it.

By accessing or using the OPOS Service, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Service.

2. Information We Collect

We collect information to provide and improve our Service. The types of information we collect depend on how you interact with our Service and the features you use.

2.1. Information Provided Directly by Users:

When you register for an account, subscribe to our Service, or interact with us, you may provide the following types of information:

Account and Contact Information: Name, email address, phone number, company name, business address, and GSTIN/Tax ID.
Billing and Payment Information: Payment card details (processed by secure third-party payment gateways), billing address, and subscription details. Please note that OPOS does not directly store full payment card numbers.
Business Data: Information related to your business operations, such as product lists, pricing, inventory data, employee details (e.g., names, roles, access permissions), and store locations.
Customer Data (collected by you through our POS system): Information about your customers, which you input into our system, such as their names, contact details, purchase history, and loyalty program information. For this data, you are the "Data Fiduciary" (or "Data Controller" under GDPR), and OPOS acts as a "Data Processor." You are responsible for obtaining appropriate consents from your customers and complying with all applicable data protection laws regarding their data.
Communications: Records of your correspondence with our customer support, feedback, or survey responses.

2.2. Information Collected Automatically:

When you access and use the Service, we may automatically collect certain information about your device and usage patterns:

Log Data: Your IP address, browser type, operating system, referring/exit pages, access dates and times, and clickstream data.
Device Information: Information about the device you use to access the Service, including device model, unique device identifiers, and mobile network information.
Usage Data: Information about how you use the Service, such as the features you access, the time spent on pages, and your interactions with the Service.
Location Information: Depending on your device settings, we may collect general location information (e.g., city or region derived from your IP address).

2.3. Information from Third Parties:

We may receive information from third-party services that you integrate with OPOS (e.g., payment gateways, accounting software, e-commerce platforms). The information we receive is governed by the terms and privacy policies of those third-party services.

3. How We Use Your Information

We use the information we collect to provide, maintain, and improve our Service, and for the following purposes:

To Provide and Maintain the Service: To create and manage your OPOS account, process your subscriptions and payments, enable POS functionalities, manage inventory, and provide customer support.
To Improve and Develop the Service: To understand user behavior, perform analytics, and develop new features to enhance the user experience and optimize our operations.
For Marketing and Communication: To send you promotional communications about OPOS products and services. You can opt-out of these communications at any time.
For Security and Compliance: To detect, prevent, and address technical issues, fraud, or other illegal activities; to enforce our Terms of Service; and to comply with legal obligations, including responding to lawful requests from public authorities.
Aggregated and Anonymized Data: We may aggregate and/or anonymize data so that it can no longer be used to identify you or your customers. We may use this data for research, analysis, product development, and marketing, and may share it with third parties.

4. How We Share and Disclose Your Information

We do not sell your personal data. We may share and disclose your information in the following circumstances:

With Your Consent: We may share your information with third parties when we have your explicit consent to do so.
With Service Providers: We may engage third-party companies and individuals to perform services on our behalf (e.g., payment processing, hosting, data analytics, customer support). These service providers are obligated to protect your data and use it only for the purposes for which they were engaged.
With Integrated Third-Party Services: If you integrate your OPOS account with third-party applications, you authorize us to share your data with those third parties as necessary to enable the integration. The use of your data by such third parties is governed by their respective privacy policies.
For Legal Reasons: We may disclose your information if required to do so by law, or in the good faith belief that such action is necessary to comply with a legal obligation, protect the rights or property of OPOS, or protect the personal safety of our users or the public.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Security

We implement reasonable technical and organizational measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include data encryption, access controls, and regular security audits. While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Service. Upon termination or deactivation of your account, we will delete or anonymize your personal data within a reasonable timeframe, unless legal or regulatory requirements necessitate a longer retention period.

Data Deletion for Non-Subscription Users: Please be aware that if your user account is not associated with an active subscription for a continuous period of two months, all data and content associated with that account may be permanently deleted from our servers and cannot be recovered.

7. Your Data Protection Rights

Under the Digital Personal Data Protection Act, 2023 (DPDPA) in India, and if applicable, other data protection laws, you have certain rights regarding your personal data. These rights may include:

Right to Access: You have the right to request a copy of the personal data we hold about you.
Right to Correction/Rectification: You have the right to request that we correct any inaccurate or incomplete personal data.
Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal data under certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
Right to Object to Processing: You have the right to object to the processing of your personal data under certain circumstances.
Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request in accordance with applicable laws.

8. Cookies and Similar Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are small files stored on your device. We use them for essential functions, performance analysis, and to remember your preferences.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

9. Third-Party Links

Our Service may contain links to other websites that are not operated by us. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

10. Children's Privacy

Our Service is not intended for individuals under the age of 18 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children have provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we will take steps to remove that information from our servers.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top. We may also notify you via email or through a prominent notice on our Service prior to the change becoming effective.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.