Privacy Policy

Last Updated: November 25, 2025

Version: 1.1.0

Your data, your call

BizManage is built for small business owners, so we treat every piece of information with the same care you do. Here's what we collect and how we handle it.

1. Introduction

BizManage ("we," "our," or "us") is committed to protecting your privacy. This policy explains how we collect, use, safeguard, and disclose information when you use our mobile or web application.

2. Information We Collect

2.1 Personal Information

  • Full name
  • Email address
  • Phone number
  • Physical address
  • Profile picture or avatar

2.2 Business Information

  • Business name and logo
  • Product catalog and inventory details
  • Customer information and contact details
  • Sales records and transaction history
  • Expense records and categories
  • Team member information and roles

2.3 Technical Information

  • Device information and identifiers
  • IP address and location data
  • Usage patterns and analytics
  • Session information and authentication tokens

3. How We Collect Information

3.1 Direct Collection: Information you provide when creating an account or using app features.

3.2 Automated Collection: Technical data collected through cookies, device sensors, and usage tracking.

3.3 Camera and File Access: Images you upload for products, business logos, and avatars.

4. How We Use Your Information

We use your data to:

  • Provide and maintain app services
  • Process business transactions
  • Generate basic business analytics and summaries
  • Authenticate users and secure accounts
  • Improve app performance and user experience
  • Send updates and important notifications
  • Comply with legal obligations

5. Important Disclaimer: Reports and Analytics

5.1 Informational Only: All financial summaries, reports, and analytics are provided only for general understanding of your business.

5.2 Not Official Documents: These are NOT:

  • Certified financial statements
  • Audited reports
  • Tax-compliant documents
  • Regulatory reporting
  • Official accounting records
  • Suitable for government submissions or legal proceedings

5.3 Professional Advice Required: For accounting, tax, legal, or compliance matters, consult licensed professionals.

5.4 No Accuracy Guarantee: We process data as provided. We do not verify, audit, or guarantee accuracy.

5.5 No Liability: We are not responsible for any financial, legal, or business consequences arising from reliance on generated reports.

6. Data Storage and Security

6.1 Storage: Data is stored using Supabase's secure cloud infrastructure.

6.2 Encryption: Data is encrypted in transit and at rest.

6.3 Row Level Security: Ensures users only access authorized data.

6.4 Sessions: Sessions expire after one week of inactivity.

6.5 Authentication: Supabase Auth with secure password hashing is used.

7. Data Isolation and Multi-Tenancy

7.1 Business Isolation: Every business operates as a separate tenant.

7.2 Role-Based Access: Permissions depend on user roles (Admin, Staff).

7.3 Cross-Business Protection: Data from one business cannot be viewed from another.

8. Data Sharing and Disclosure

8.1 We do not sell your data.

8.2 We may share information with:

  • Supabase (hosting, authentication)
  • Authorized team members
  • Legal authorities when required

8.3 Business Transfers: Your data may be transferred in case of merger, acquisition, or sale.

9. Your Privacy Rights

You have the right to:

  • Access your data
  • Correct inaccurate data
  • Delete your account
  • Export your business data
  • Opt out of non-essential communication
  • Withdraw consent

9.1 Data Deletion Options

There are two types of deletion:

9.2 Business Deletion

Deletes all data inside a specific business: sales, customers, products, expenses, files, and team associations.

Irreversible. Only business owners can do this.

9.3 Account Deletion

Deletes your full account after deleting all businesses you own.

Removes your profile, login credentials, and all personal data.

9.4 Recommendations Before Deletion

We suggest you:

  • Export business data
  • Download reports
  • Save customer contacts
  • Back up inventory and product details
  • Notify team members
  • Review your legal data retention requirements
  • Consult professionals when needed

9.5 Limitations on Deletion

We cannot delete data that is:

  • Under legal hold
  • Needed for regulatory compliance
  • Stored as anonymized analytics
  • Required for dispute resolution
  • Needed for fraud prevention

9.6 How to Request Deletion

Business Deletion: Settings → Business Settings → Delete Business

Account Deletion: Settings → Privacy → Delete Account

Deletion is immediate after confirmation.

10. Data Retention and Deletion

10.1 Active Account Retention

We store your data while your account is active. No automatic deletion.

10.2 Business Deletion

All business data is removed immediately using PostgreSQL CASCADE to ensure complete removal.

10.3 Account Deletion

Deletes your user profile, login credentials, all businesses you own, and all related data.

10.4 Data Deleted During Removal

Includes:

  • Business settings and configuration
  • Sales and transaction history
  • Customer information
  • Product catalog and inventory
  • Expense records
  • Reports and analytics
  • Team relationships
  • Cart data
  • Uploaded files
  • Notification history
  • User profile (for account deletion)

10.5 Deletion Timeline

Database records: Removed within seconds

Storage files: Deleted immediately

CDN cache: May persist up to 7 days

Backups: Retained up to 30 days

Analytics logs: Anonymized within 90 days

10.6 Backup Retention

Backups exist only for disaster recovery. They cannot be used to restore individual user data.

10.7 Legal Retention

Some data may be kept longer for:

  • Tax regulations
  • Fraud prevention
  • Court orders
  • Dispute resolution
  • Required compliance reporting

10.8 Non-Deletable Data

We cannot remove:

  • Fully anonymized analytics
  • Aggregated statistics
  • Legally restricted data
  • Fraud investigation records

10A. Data Deletion Process and Guarantees

10A.1 Business Deletion Process:

Only owners can delete businesses. Requires a preview and two-step confirmation.

10A.2 Account Deletion Process:

Requires deleting all owned businesses first and confirming with your password.

10A.3 Automatic CASCADE Deletion:

All related records are deleted in one atomic operation.

10A.4 Storage File Removal:

All uploaded files are removed from cloud storage. CDN cache may take up to 7 days.

10A.5 Team Member Notices:

Team members are automatically notified when a business is deleted.

10A.6 Irreversibility:

All deletions are permanent and cannot be undone.

10A.7 No Recovery Service:

We cannot restore deleted data from backups.

11. Children's Privacy

The app is not intended for users under 18. If we learn we've collected data from a minor, we delete it quickly.

12. International Data Transfers

Your data may be processed in other countries. We use appropriate safeguards to protect it.

13. Cookies and Tracking

13.1 Essential Cookies: Used for authentication and app functionality.

13.2 Analytics: Anonymous usage tracking.

13.3 Local Storage: For preferences like theme and language.

14. Third-Party Services

14.1. Supabase: Our backend infrastructure, authentication system, database, and file storage are provided by Supabase. They may process your data solely to deliver the services we rely on.

14.2. Payment Processors (if applicable): If we introduce paid features in the future, payment processors may handle billing information securely.

14.3. Analytics Providers: We may use privacy-focused analytics tools that collect anonymized usage data to help us improve the Application.

14.4. Service Providers: We may share limited data with trusted providers that support hosting, security, notifications, or performance monitoring. All providers are required to follow strict confidentiality and data protection standards.

14.5. No Third-Party Advertising Networks: We do not integrate third-party advertising SDKs or share your business data with marketing or advertising companies.

15. Data Security Responsibilities

15.1. Your Responsibility: You are responsible for maintaining the confidentiality of your login credentials and restricting access to your device.

15.2. Shared Devices: If you use a shared or public device, ensure you log out after each session.

15.3. Suspicious Activity: Notify us immediately if you detect unauthorized access to your account.

15.4. Password Strength: Use a strong password to reduce security risks. Weak passwords increase the risk of unauthorized access.

16. Changes to This Privacy Policy

16.1. Policy Updates: We may update this Privacy Policy from time to time to reflect changes in business operations, legal requirements, or features added to the Application.

16.2. Notification: Significant changes will be communicated through in-app notices or email.

16.3. Continued Use: If you continue using the Application after updates, you accept the revised policy.

17. Limited Liability

17.1. No Guarantee of Accuracy: Reports, analytics, and financial summaries are informational and depend entirely on the data you enter.

17.2. No Financial or Legal Liability: We are not responsible for financial decisions, tax filings, compliance issues, or losses resulting from inaccurate or incomplete data.

17.3. Third-Party Actions: We are not responsible for actions of third-party providers such as hosting, storage, or authentication services.

18. User Obligations

18.1. Accurate Data: You are responsible for entering accurate and complete business information.

18.2. Legal Compliance: You must comply with all applicable laws in your jurisdiction, including tax requirements and recordkeeping obligations.

18.3. Acceptable Use: You may not use the Application for illegal activities, fraud, or unauthorized data access.

19. Business Use Disclaimer

19.1. Not a Financial System: The Application is not a replacement for professional bookkeeping, accounting systems, or tax software.

19.2. Professional Verification Recommended: If you rely on financial data for tax filing or legal matters, consult a certified accountant or legal advisor.

19.3. No Regulatory Filings: Our reports cannot be used for government submissions, audits, investor due diligence, or formal business certifications.

20. App Store Subscription Terms

20.1. Apple App Store Subscriptions: For subscriptions purchased through the Apple App Store, the following terms apply:

  • Payment will be charged to your Apple ID account at the confirmation of purchase.
  • Subscriptions automatically renew unless canceled at least 24 hours before the end of the current period.
  • Your account will be charged for renewal within 24 hours prior to the end of the current period.
  • You can manage or cancel your subscription in your App Store account settings.

20.2. Google Play Store Subscriptions: For subscriptions purchased through the Google Play Store, similar terms apply as governed by Google's subscription policies. You can manage subscriptions through your Google Play account settings.

20.3. Important Links:

Apple Terms of Use (EULA): https://www.apple.com/legal/internet-services/itunes/dev/stdeula

20.4. Subscription Management: To manage your subscription, including viewing your subscription status, changing plans, or canceling:

  • iOS Users: Open Settings app → tap your name → Subscriptions → select BizManage
  • Android Users: Open Google Play Store → Menu → Subscriptions → select BizManage

20.5. Cancellation Policy: You may cancel your subscription at any time. Cancellation takes effect at the end of your current billing period. You will retain access to premium features until the end of the paid period.

20.6. No Partial Refunds: If you cancel your subscription before the end of the current billing period, you will not receive a refund for the remaining time in that period unless required by applicable law or app store policy.

20.7. Free Trial Terms: If we offer a free trial period, you will be charged the subscription fee at the end of the trial period unless you cancel before the trial ends. The trial period and its terms will be clearly displayed during the subscription purchase flow.

21. Contact Information

If you have questions or concerns about this Privacy Policy, you may contact us at:

Email: hengsamkok76@gmail.com

Website: https://bizmanage-landing-page.web.app/

Response Time: We aim to reply within 3–5 business days.

22. Acceptance of This Policy

By creating an account or using the BizManage Application, you agree to the terms described in this Privacy Policy. If you do not agree with this policy, you must stop using the Application and request account deletion.