Privacy Policy

1. Introduction

Pay Saathi Innovation LLP ("Company," "we," "us," or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Takkada software solution, including our desktop application, mobile application, and cloud services.

This policy applies to all users of our services, including businesses, their employees, accountants, and other authorized users.

2. Information We Collect

2.1 Personal Information

Account Information:

• Name, email address, phone number
• Business name, address, and registration details
• Job title and role within the organization
• GST identification numbers and tax details

Authentication Data:

• Login credentials and security questions
• Multi-factor authentication tokens
• Session information and device identifiers

2.2 Business and Financial Data

Tally ERP Data:

• Customer and supplier master data
• Invoice and transaction records
• Inventory and item details
• Accounting entries and financial reports
• GST returns and compliance data

Payment Information:

• Payment transaction details
• Bank account information (encrypted)
• UPI IDs and payment method preferences
• Payment gateway transaction records

Business Intelligence:

• Transaction volumes and patterns
• Payment collection analytics
• Business performance metrics
• Credit assessment data

2.3 Technical Information

Device and Usage Data:

• Device type, operating system, and browser information
• IP addresses and location data
• Application usage patterns and feature interactions
• Error logs and performance data
• Sync activity and data transfer logs

Communication Data:

• WhatsApp integration data for payment reminders
• Email communications and notifications
• Support ticket conversations
• User feedback and survey responses

3. How We Collect Information

3.1 Direct Collection

• Information you provide during account registration
• Data uploaded through Tally ERP integration
• Details entered through our mobile and desktop applications
• Communications with our support team

3.2 Automatic Collection

• Technical data through cookies and similar technologies
• Usage analytics through our applications
• Payment transaction data through integrated gateways
• Error reports and performance monitoring

3.3 Third-Party Sources

• Payment gateway transaction confirmations
• GST portal data for compliance verification
• Bank integration data for reconciliation
• WhatsApp Business API for communication

4. How We Use Your Information

4.1 Core Business Operations

Service Delivery:

• Process payments and facilitate money collection
• Synchronize data between Tally ERP and mobile applications
• Generate invoices, e-invoices, and e-way bills
• Provide real-time financial reporting and analytics

Payment Processing:

• Execute UPI, NEFT, RTGS, and card transactions
• Match payments to invoices automatically
• Send payment reminders via WhatsApp
• Reconcile payments with accounting records

Compliance and Reporting:

• Generate GST returns and regulatory reports
• Maintain audit trails for financial transactions
• Support tax compliance and filing requirements
• Provide documentation for regulatory inquiries

4.2 Business Intelligence and Analytics

Credit Assessment:

• Analyze payment patterns for credit scoring
• Build credit profiles for NBFC partnerships
• Assess business creditworthiness
• Generate credit ratings and recommendations

Performance Analytics:

• Track collection efficiency and payment trends
• Provide business intelligence dashboards
• Generate insights for growth decisions
• Monitor distributor and wholesaler performance

4.3 Communication and Support

Customer Communication:

• Send transaction notifications and alerts
• Provide technical support and assistance
• Communicate product updates and features
• Process feedback and improvement suggestions

Marketing Communications (with consent):

• Send newsletters and product updates
• Share industry insights and best practices
• Notify about new features and services
• Provide educational content and webinars

5. Information Sharing and Disclosure

5.1 Authorized Sharing

With Your Consent:

• Business network features within Takkada ecosystem
• Integration with authorized accounting software
• Sharing with your designated accountants or consultants
• Third-party applications you explicitly connect

Service Providers:

• Cloud hosting and infrastructure providers (AWS, Google Cloud)
• Payment gateway partners (Razorpay, PayU, etc.)
• SMS and WhatsApp service providers
• Technical support and development partners

Business Partners:

• Channel partners and distributors (for customer support)
• NBFC partners for credit services
• Banking partners for payment processing
• GST portal integration services

5.2 Legal and Regulatory Disclosure

We may disclose information when required by:

• Legal obligations and court orders
• Regulatory authorities (RBI, GST Department, Income Tax)
• Law enforcement agencies with valid legal process
• Compliance with applicable financial regulations

5.3 Business Transfers

In case of merger, acquisition, or sale of assets, customer information may be transferred as part of the transaction, subject to the same privacy protections.

6. Data Security and Protection

6.1 Technical Safeguards

Encryption:

• End-to-end encryption for all financial data
• SSL/TLS encryption for data transmission
• AES-256 encryption for data storage
• Encrypted backup and recovery systems

Access Controls:

• Multi-factor authentication requirements
• Role-based access permissions
• Regular access reviews and audits
• Secure API authentication protocols

Infrastructure Security:

• SOC 2 compliant cloud infrastructure
• Regular security assessments and penetration testing
• Network firewalls and intrusion detection
• Automated security monitoring and alerts

6.2 Operational Safeguards

Data Handling:

• Employee background verification and training
• Strict confidentiality agreements
• Limited access on need-to-know basis
• Regular security awareness programs

Incident Response:

• 24/7 security monitoring
• Incident response and notification procedures
• Data breach notification within 72 hours
• Recovery and remediation protocols

7. Data Retention and Deletion

7.1 Retention Periods

• Financial Data: Retained for 7 years as per Indian accounting standards
• Transaction Records: Retained for 7 years for audit and compliance
• Personal Information: Retained while account is active plus 3 years
• Technical Logs: Retained for 12 months unless required for security investigations

7.2 Data Deletion

Account Closure:

• Personal data deleted within 90 days of account closure
• Financial data retained as per legal requirements
• Anonymous analytics data may be retained
• Backup data purged within 6 months

Right to Deletion:

• Submit deletion requests to admin@paysaathi.com
• Verification of identity required for processing
• Legal obligations may prevent immediate deletion
• Confirmation provided upon completion

8. Your Privacy Rights

8.1 Access and Control

Data Access:

• Request copy of your personal data
• View data processing activities
• Download your financial records
• Access compliance reports

Data Correction:

• Update personal and business information
• Correct inaccurate financial records
• Modify communication preferences
• Update security settings

8.2 Communication Preferences

Marketing Communications:

• Opt-out of promotional emails
• Unsubscribe from newsletters
• Control notification preferences
• Manage WhatsApp communication settings

Operational Communications:

• Essential service notifications (cannot be disabled)
• Security alerts and breach notifications
• Regulatory compliance communications
• Account status and billing notices

9. Cookies and Tracking Technologies

9.1 Cookie Usage

Essential Cookies:

• Authentication and session management
• Security and fraud prevention
• Core application functionality
• Data synchronization status

Analytics Cookies:

• Usage patterns and feature adoption
• Performance monitoring and optimization
• Error tracking and debugging
• User experience improvements

9.2 Cookie Management

You can control cookies through:

• Browser settings and preferences
• Application settings in our software
• Third-party cookie management tools
• Direct opt-out mechanisms where available

10. Third-Party Integrations

10.1 Payment Gateways

Data Shared:

• Transaction amount and currency
• Customer identification for processing
• Payment method preferences
• Transaction success/failure status

Third-Party Privacy: Each payment gateway has its own privacy policy governing their data handling practices.

10.2 WhatsApp Business API

Data Processing:

• Customer phone numbers for payment reminders
• Message delivery status and analytics
• Customer interaction history
• Communication preferences

WhatsApp Privacy: Subject to Meta's WhatsApp Business privacy policy and terms of service.

10.3 Tally Integration

Data Access:

• Read-only access to Tally data files
• Master data extraction and synchronization
• Invoice and transaction information
• No modification of original Tally data

11. International Data Transfers

11.1 Data Localization

Primary Storage:

• All financial data stored within India
• Compliance with RBI data localization requirements
• Indian data centers for core operations
• Local backup and disaster recovery

11.2 Limited International Processing

Permitted Transfers:

• Cloud service providers with Indian operations
• International payment gateway processing
• Technical support and development services
• Adequate safeguards and contractual protections

12. Children's Privacy

Takkada is designed for business use and is not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors without proper business authorization and parental consent.

13. Changes to Privacy Policy

13.1 Policy Updates

We reserve the right to modify this privacy policy to reflect:

• Changes in data processing practices
• New features and services
• Regulatory requirement updates
• Enhanced security measures

13.2 Notification Process

Advance Notice:

• Email notification to registered users
• Website posting with updated effective date
• In-app notifications for significant changes
• 30-day notice period for material changes

Continued Use: Continued use of our services after policy changes constitutes acceptance of updated terms.

14. Contact Information

14.2 Regulatory Complaints

If you believe your privacy rights have been violated, you may file complaints with:

• Our internal privacy team at admin@paysaathi.com
• Relevant regulatory authorities
• Consumer protection forums
• Data protection authorities as applicable

15. Governing Law

This Privacy Policy is governed by the laws of India, including:

• Information Technology Act, 2000
• Information Technology (Reasonable Security Practices) Rules, 2011
• Reserve Bank of India guidelines on data protection
• Other applicable privacy and data protection regulations

Any disputes arising from this privacy policy will be subject to the jurisdiction of courts in India.

16. Acknowledgment

By using Takkada services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. You also confirm that you have the authority to provide business data and consent on behalf of your organization.