Privacy Policy

Effective Date: 1st August 2025
Company: Gohil Infotech Private Limited

1. Introduction

At Gohil Infotech Private Limited, we value your privacy and are committed to safeguarding the personal information of all individuals and businesses who interact with us. This Privacy Policy describes how we collect, use, disclose, and protect your information when you engage with our software, services, websites, and communications.

Important: By accessing or using our service, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy. If you do not agree, please do not use our services.

This policy complies with:

  • The Information Technology Act, 2000 (India) and its amendments
  • General Data Protection Regulation (GDPR) for EU users
  • California Consumer Privacy Act (CCPA) for California residents

2. Definitions

Personal Data
Any information relating to an identified or identifiable natural person.
Processing
Any operation performed on Personal Data, whether automated or manual.
Data Subject
The individual to whom Personal Data relates.
Consent
Freely given, specific, informed and unambiguous indication of the Data Subject’s wishes.

3. Information We Collect

We collect several types of information to provide and improve our services to you:

3.1 Personal Information You Provide

When you register for an account or use our services, we may collect:

  • Identity Data: Full name, username, government ID (for verification)
  • Contact Data: Email address, phone number, business address
  • Financial Data: Bank account details, GSTIN, payment card information
  • Transaction Data: Details about payments and other transactions
  • Profile Data: Username and password, preferences, feedback
  • Marketing Data: Your preferences for receiving marketing communications

3.2 Automated Collection

When you interact with our services, we automatically collect:

  • Technical Data: IP address, login data, browser type/version, time zone
  • Usage Data: Information about how you use our platform
  • Device Data: Device identifiers, operating system, mobile network
  • Location Data: Approximate location based on IP or precise location (with consent)

3.3 Data from Third Parties

We may receive information about you from:

  • Business partners (payment processors, analytics providers)
  • Advertising networks
  • Publicly available sources

4. How We Use Your Information

We use your information for the following purposes:

4.1 Service Delivery

  • To provide and maintain our GVOICE Software POS System platform
  • To process transactions and generate invoices
  • To enable KG-based calculations for product sales
  • To provide tax/non-tax invoice segregation
  • To generate real-time revenue dashboards

4.2 Business Operations

  • To manage payments, fees, and charges
  • To track employee incentives and performance
  • To maintain our marketing-ready shop portfolio system
  • To implement role-based access control (RBAC)
  • To maintain activity logs for debugging purposes

4.3 Communication

  • To send service-related notifications
  • To provide customer support
  • To send promotional messages (with your consent)
  • To notify you about changes to our services

4.4 Analytics & Improvement

  • To understand how users interact with our platform
  • To develop new features and functionality
  • To troubleshoot and prevent technical issues
  • To measure effectiveness of our marketing

4.5 Legal Compliance

  • To comply with tax and accounting regulations
  • To respond to lawful requests from authorities
  • To protect our legal rights and prevent fraud

5. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal information under the following legal bases:

  1. Contractual Necessity: When processing is necessary for the performance of our contract with you
  2. Legitimate Interests: When processing is necessary for our legitimate business interests
  3. Legal Obligation: When processing is necessary to comply with legal requirements
  4. Consent: When we have obtained your explicit consent

6. Data Sharing and Disclosure

We may share your information in the following situations:

6.1 With Service Providers

We may share your data with third-party vendors who provide services including:

  • Payment processing (Razorpay, Stripe)
  • Cloud hosting (AWS, Google Cloud)
  • Customer support tools
  • Marketing and analytics services

6.2 For Business Transfers

If we undergo a merger, acquisition, or asset sale, your data may be transferred.

6.3 With Affiliates

We may share information with our parent company, subsidiaries, and other affiliated companies.

6.4 With Business Partners

We may share information with partners who offer complementary services.

6.5 For Legal Reasons

We may disclose information when required by law or to protect our rights.

7. Data Security

We implement robust security measures to protect your data:

  • Encryption of data in transit (TLS 1.2+) and at rest (AES-256)
  • Regular security audits and penetration testing
  • Role-based access controls with least privilege principle
  • Multi-factor authentication for administrative access
  • Regular employee security training

Note: While we implement these measures, no system is 100% secure. We cannot guarantee absolute security of your information.

8. Data Retention

We retain personal information only as long as necessary:

  • Account Data: Until account deletion request (plus 90 days for recovery)
  • Transaction Records: 7 years for tax compliance
  • Marketing Data: Until consent withdrawal or 3 years of inactivity
  • System Logs: 12 months for security monitoring

After retention periods expire, we securely delete or anonymize your data.

9. Your Rights

Depending on your jurisdiction, you may have the following rights:

9.1 Access and Portability

You can request a copy of your personal data in a structured format.

9.2 Correction

You may update or correct inaccurate information.

9.3 Deletion

You can request deletion of your personal data under certain conditions.

9.4 Restriction

You may request we limit processing of your data.

9.5 Objection

You may object to certain processing activities.

9.6 Consent Withdrawal

You can withdraw consent for marketing communications anytime.

9.7 Complaint

You have the right to lodge a complaint with a supervisory authority.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • EU Standard Contractual Clauses for transfers outside the EEA
  • Data processing agreements with all vendors
  • Limiting access to personnel who need the information

11. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Authenticate users and prevent fraud
  • Remember user preferences
  • Analyze site traffic and usage patterns
  • Deliver targeted advertisements

You can manage cookie preferences through your browser settings.

12. Children’s Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children. If we become aware of such collection, we will take steps to delete the information.

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of changes by:

  • Posting the new policy on this page with a new “Last Updated” date
  • Sending email notifications for material changes
  • Displaying prominent notices within our application

Your continued use after changes constitutes acceptance of the updated policy.

14. Contact Information

If you have questions about this policy or wish to exercise your rights:

Data Protection Officer

Our Data Protection Officer can be contacted at:

GOHIL INFOTECH PRIVATE LIMITED
Attn: Data Protection Officer
Aamrakunj Business Centre, 209, nr. PANCHSHLOK RESIDENCY, Zundal, Ahmedabad, Gujarat 382424
Email: help@gohilinfotech.com

This Privacy Policy was last updated on 1st Augest, 2025