Privacy Policy — Softbros IN Innovative Business Solutions

1. Introduction

Welcome — Softbros IN ("we", "us", "our") builds a single app that hosts separate instances for each business we serve. This policy explains what information we collect, how we use and protect it, and the choices available to users. The App is provided to businesses (our customers) who create their own instances; each instance has separate data and configuration.

2. Summary (Short)

We host separate instances per business; data is stored separately per instance.
The App uses device-based biometric authentication (Face / Fingerprint) but we do not collect or store biometric data.
Users must enter an Instance ID to access their business instance and must enable notifications to receive owner updates.

3. Data We Collect

3.1 Data you provide

Instance ID: entered by the user to join their business instance.
Support messages: any messages or attachments you send to business support.

3.2 Device & technical data

Device identifiers (device model, OS version, app version).
Network and diagnostic data (error reports, performance metrics).
Push notification token (so we can deliver notifications to your device).

3.3 Biometric & authentication

The App uses the device's built-in biometric APIs for authentication (face, fingerprint). We do not collect, process, or store biometric templates or raw biometric data. Biometric verification is handled locally by the device's secure system (e.g., Android BiometricPrompt / KeyStore). We rely on the device's native security to confirm identity.

4. How We Use Your Data

To authenticate users and provide secure access to the correct instance.
To deliver push notifications and updates from the user’s business owner.
To store and present data that belongs to your business instance (orders, account info, settings).
To troubleshoot problems, analyze performance, and maintain app stability.
To comply with legal obligations or respond to legal requests.

5. Data Segregation & Instance Model

Each business receives a separate instance. Data, databases, and configurations are segregated per-instance so that one business's data is never mixed with another's. The business owner controls instance-level settings and the user data permitted in that instance.

6. Sharing & Disclosure

We do not share instance data with other Softbros customers.
We may share data with third-party service providers necessary to operate the App (hosting, analytics, push notifications). See Third-party services below.
We will disclose information to comply with legal obligations or respond to lawful requests.

Third-party services: We may use third-party services, Firebase Cloud Messaging, Railway Hosting, Hostinger. These services are governed by their own privacy policies.

7. Security

We take reasonable administrative, technical, and physical steps to protect data. Measures include:

Encryption in transit (HTTPS/TLS) and encryption at rest where applicable.
Device-based authentication and secure key storage via platform security APIs.
Access controls and role-based access for our operations team and for business owners.

Important: Because the App relies on the device’s biometric system, the device owner’s security settings and OS updates affect the strength of authentication.

8. Notifications

To receive updates from a business owner, users must enable Notification Access. We store a push token to route notifications to the correct device. You can revoke notification permission in your device settings at any time.

9. Data Retention

We retain data for as long as needed to provide services for the business instance, and to comply with legal obligations. Retention periods may be set by the business owner for certain data types. If you request deletion, we will follow the business owner's policies or, if applicable, delete data in accordance with applicable law and our retention procedures.

10. Your Rights & Choices

Access & correction: You can request access to or correction of your personal data via the business owner or by contacting us.
Delete: You may request deletion of your personal account data; note that deletion requests typically go through the business owner who manages the instance.
Opt-out: You can disable notifications in device settings or uninstall the App to stop data collection from new activity.
Data portability: If applicable by law, you may request a copy of your personal data in a portable format.

To exercise these rights, contact: [email protected]

11. Children

The App is intended for business users and is not directed to children under 13 (or under the age applicable in your jurisdiction). If you believe we have collected data from a child in violation of law, contact us and we will take steps to remove that data.

12. International Transfers

Data may be processed or stored in locations outside your country. When we transfer data internationally we will follow applicable legal requirements and implement appropriate safeguards.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will post changes in the App and update the effective date above. Significant changes will be notified to business owners and, where appropriate, to end users.

14. Contact Us

If you have questions or requests about this policy, contact:

Company: Softbros IN
Email: [email protected]
Address: Jayanagar, Hassan - 573201