Legal

Privacy Policy

Last updated: 12 April 2026

Introduction

JewelerPOS ('we', 'our', 'us') is committed to protecting the privacy of jewellers, their staff, and their customers who use our software.

This policy describes what data we collect, how we use it, and what rights you have over it.

Data we collect

Business information: shop name, GSTIN, PAN, business address, owner name, phone, email.

User accounts: staff names, roles, email/phone, hashed passwords.

Transaction data: bills, inventory records, karigar jobs, girvi pledges, scheme accounts, ledgers.

Customer data (entered by you): your customers' names, phones, PAN, Aadhaar (encrypted), GSTIN, purchase history.

Technical: IP addresses, browser type, device info, usage logs — for security and support.

How we use your data

Providing and maintaining the service you subscribed to.

Customer support — responding to your tickets, issues, queries.

Billing and subscription management.

Security monitoring and fraud prevention.

Product analytics in aggregate (never individual tracking).

We never sell your data. We never share it with third parties for their marketing.

Data storage & location

All data is hosted in AWS Mumbai (ap-south-1) region.

Your data never leaves India. No cross-border transfers.

Hourly incremental backups. Daily full backups to a separate AWS availability zone.

Aadhaar handling

Aadhaar numbers entered for KYC are encrypted with AES-256-GCM before storage.

Plain-text Aadhaar is never stored, logged, or transmitted.

Only the last 4 digits are displayed in the UI for verification.

We comply with UIDAI guidelines for Aadhaar storage and handling.

Data retention

Financial records are retained for 7 years as required by the Income Tax Act.

If you cancel your subscription, data is retained for 90 days in case you want to reactivate, then permanently deleted.

You can request full data export at any time via your dashboard or email.

You can request account deletion at any time — financial records are retained per law, all other personal data is deleted.

Your rights

Access: download all your data as structured files at any time.

Correction: edit any data directly in the software or via support.

Deletion: request deletion of your account and personal data (subject to legal retention requirements).

Portability: data exports are in open formats (JSON, CSV, Excel) — fully portable.

Contact

For any privacy question, email privacy@jewelerpos.com.

We respond to all privacy requests within 15 days per IT Act requirements.