Privacy Policy
Effective Date: November 15, 2024. Operated by Manish Kumar Gupta (Proprietor) from Ballia, UP. We strictly adhere to the Digital Personal Data Protection (DPDP) Act 2023.
1. Introduction and Scope of Legal Identity
Vyapar Sathi ("the Application", "We", "Us", or "Our") is a specialized business accounting and management platform operated under the sole proprietorship of Manish Kumar Gupta, a Micro Enterprise (MSME) registered entity based in Ballia, Uttar Pradesh, India. This Privacy Policy is a legally binding document that governs how we collect, store, process, and protect your business and personal information when you use our mobile application, our on-device AI (Kuber ODI), and our official domains including vyaparsathi.co.in and indusavm.in.
By accessing or using the Services, you acknowledge that you have read, understood, and agreed to the practices described in this Privacy Policy. We are committed to the principle of "Data Sovereignty," ensuring that our users retain maximum control over their business data. Our infrastructure is designed to prioritize offline storage, minimizing cloud dependency to enhance security and operational continuity for small retailers and business owners across India.
2. Granular Categories of Data Collected
A. Personal Identification Information (PII)
During the account creation process via Firebase Authentication, we collect your primary mobile number for OTP-based verification. We also collect the Proprietor's official name, business name, and GSTIN details (where applicable). This information is crucial for generating legally compliant invoices and maintaining the integrity of your unique "Vyapar ID." Without this data, we cannot provide the core billing and accounting functionalities of the platform. We ensure that this PII is handled with military-grade encryption at rest.
B. Business and Operational Data
As part of your daily operations, the app processes data related to your inventory items, sales records, purchase entries, expense logs, and customer/supplier ledgers. While the vast majority of this data is stored locally on your device, specific metadata such as your profile status, subscription tier, and offer eligibility are synced with Google Firebase to ensure seamless service delivery. Inventory items imported via Excel or bulk methods are indexed using Supabase to provide high-speed search and retrieval capabilities across your devices.
4. The Offline-First Data Architecture
Unlike traditional cloud-only accounting systems, Vyapar Sathi stores approximately 95% of your business logic and transaction history locally within your device's secure environment. This "Offline-First" approach ensures that your shop remains 100% operational even in areas with zero internet connectivity.
Optional Cloud Sync is powered by Google Firebase and Supabase. We strongly advise users to perform regular "Manual Offline Backups" in our proprietary .bzip format. These backups are exported to your phone's internal storage or SD card and are encrypted such that they can only be read back into the Vyapar Sathi application. This provides a dual layer of protection: cloud-sync for convenience and offline-manual for absolute sovereignty.
5. Kuber ODI (On-Device Intelligence) and AI Ethics
Kuber ODI is the world's first truly offline-first business AI. When you utilize voice commands such as "Record 2 Cold Drinks sold to Rajesh," the audio processing occurs 100% locally on your smartphone's internal Digital Signal Processor (DSP). We do not record, store, or transmit your voice snippets to any cloud server for processing.
For advanced market insights through Google Gemini, the app sends only mathematical context (anonymous numbers like "monthly sales: 50000") to provide advice. This ensures that your sensitive business identity (Name, Phone, GST) is never shared with external AI models. The microphone is only active when you manually trigger the mic icon.
6. Staff Permissions & Personal Data Isolation
For businesses using multi-staff features, the Administrator (Proprietor) has absolute control over what data each staff ID can access. This includes granular permissions for purchase entries, order management, AI usage, and ledger views.
Vyapar Sathi ensures total isolation between the staff member's personal device data and the business environment. Our application does not access a staff member's personal photos, contacts, or messages. The "Staff Login" creates a secure operational tunnel that only syncs store-related activities authorized by the Admin.
7. Authorized Third-Party Service Providers
To maintain high-quality service, we collaborate with industry-leading infrastructure partners:
- Google Firebase: For secure authentication and cloud metadata storage.
- Supabase: For high-performance inventory indexing and secure PostgreSQL management.
- Netlify: For hosting official web portals and secure endpoints.
- PhonePe: Our primary payment gateway. We never see or store your banking credentials.
- Google AdMob: To display ads on the free tier.
8. Data Retention and Deletion Policy
We retain your account-related metadata for as long as your Vyapar ID remains active. If you choose to delete your account, you can request permanent data erasure through our contact portal at help@vyaparsathi.co.in. Upon verification, all cloud-synced records associated with your UID will be purged within 30 business days.
Inactive accounts (those with no login activity for 24 consecutive months) may have their cloud-synced data archived after notification. Note: Local data backups on your device remain under your control and are not affected by cloud deletion.
9. Grievance Redressal & Contact Information
In compliance with the DPDP Act 2023, for any privacy concerns or data access requests, you may contact our designated Grievance Officer:
Manish Kumar Gupta (Proprietor & Grievance Officer)
Vyapar Sathi • Registered Micro Enterprise (MSME)
Address: Gupta Nivas, Sagarpali, Ballia, UP - 277506, India
Official Support: help@vyaparsathi.co.in
Administrative: admin@vyaparsathi.co.in