This Privacy Policy explains what data we collect when you use Hisab Manager, how we use it, and how we keep it secure.
1. Information We Collect
- Account information: Name, email, hashed password, role (admin/partner/employee)
- Business data: Expenses, sales, orders, products, bank accounts, drawings — whatever you enter
- Technical information: IP address, browser, login attempts (for brute-force protection)
- Cookies: Session (for login), language preference. No tracking cookies.
2. How We Use It
- Only to provide the Hisab Manager service
- To manage your accounts and generate reports
- Security (login, anomaly detection)
We never sell your data. No advertising, no third-party tracking.
3. Data Sharing
We share your data only in these circumstances:
- Hosting provider (Hostinger/Cloudways) — for server storage
- Payment processor (Razorpay, in future) — for subscription billing
- Legal requirements — if compelled by a court order under Indian law
4. Security
- HTTPS (TLS) encryption for all transmissions
- Passwords hashed with bcrypt — never stored in plain text
- Login brute-force protection (5 attempts per 15 minutes)
- Session hijack protection (User-Agent fingerprint)
- Daily automated backups
- Audit log — every action tracked
5. Your Rights
- View: See all data you've entered
- Edit: Modify any entry
- Export: Download as CSV
- Delete: Contact admin to close your account
6. Data Retention
For active accounts — as long as you use the service. After closure — permanently deleted within 30 days (except as required by law).
7. Children
This service is not intended for users under 18. We do not knowingly collect data from minors.
8. Changes to This Policy
We may update this policy. For significant changes, we will notify you by email.
9. Contact
For any privacy questions: info@lyrainfotech.com