Privacy Policy – DukaanBill

Last updated: March 2026. Effective immediately.

DukaanBill ("we", "our", "us") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect personal data when you use the DukaanBill POS and billing platform.

1. Who We Are

DukaanBill is a SaaS platform providing POS and billing software for Indian kirana and grocery stores, operated from India. Contact: support@dukaanbill.in.

2. What Information We Collect

Shop Owners (Admin users)

Business name, owner name, phone number, email address, GSTIN, business address, and state. Payment metadata (Stripe subscription identifiers — we do not store raw card numbers).

End Customers (shop customers)

Name, phone number, optional email address, delivery address, and purchase history. Loyalty points balance and Udhar (credit) account data.

Automatically collected

Login timestamps, IP addresses for security monitoring, browser type, and device type.

3. How We Use Your Information

To provide the POS and billing service, process payments, send GST-compliant receipts, send order notifications via WhatsApp or email, generate business reports, detect and prevent fraud, and communicate service updates.

4. Payment Data

Subscription payments are processed by Stripe. DukaanBill does not store raw card numbers or CVVs. Customer payments in-store (UPI, cash, card) are recorded as transaction metadata only.

5. Data Storage and Security

All data is stored on Neon PostgreSQL (cloud-hosted in the USA). Passwords are hashed using bcrypt. Sessions are protected with CSRF tokens and HTTP-only cookies. All connections use TLS. We apply strict tenant isolation — each store's data is completely separate.

6. Your Rights

You may request access to, correction of, or deletion of your personal data by emailing support@dukaanbill.in. Accounts and all associated data can be deleted on request. For questions about data protection, contact us at support@dukaanbill.in.