Privacy Policy

1. Introduction

Billux Software ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your personal and business data when you use Billux ("the Service").

By using Billux, you consent to the practices described in this policy.

2. Information We Collect

Account Information:

• Full name, email address, mobile number
• Business name and city
• Payment information (processed by Razorpay — we do not store card details)

Business Data You Enter:

• Invoices, bills, and transactions
• Customer and supplier (party) details
• Products, items, and inventory data
• GST numbers, bank accounts, and financial records

Technical Data:

• IP address, browser type, device information
• Login timestamps and session activity
• Pages visited and actions taken within the app

3. How We Use Your Information

• To provide and operate the Billux service
• To process subscription payments via Razorpay
• To send transactional emails (account creation, payment receipts, subscription reminders)
• To provide customer support
• To detect and prevent fraud or unauthorised access
• To improve our software based on aggregate usage patterns

We do not sell, rent, or trade your personal or business data to any third party.

4. Data Storage and Security

Your data is stored on secure servers. We implement the following measures:

• HTTPS/TLS encryption for all data in transit
• Each customer's data is stored in an isolated database
• Passwords are hashed using bcrypt — never stored in plain text
• Session tokens are cryptographically random and httpOnly
• Regular backups to prevent data loss

5. Third-Party Services

We use the following trusted third-party services:

• Razorpay — for payment processing. Razorpay's privacy policy applies to payment data.
• Google Fonts — for typography (no personal data shared)
• SMTP Email Provider — for sending transactional emails

These services have their own privacy policies and we are not responsible for their practices.

6. Cookies

Billux uses the following cookies:

• bp_session — a secure, httpOnly session cookie used to keep you logged in. This cookie does not track you across other websites.
• PHPSESSID — a standard PHP session cookie, deleted when you close your browser.

We do not use advertising cookies or third-party tracking cookies.

7. Data Retention

• Active accounts: data retained for the duration of the subscription
• Expired accounts: data retained for 90 days after expiry
• Deleted accounts: data permanently deleted within 30 days of deletion request
• Payment records: retained for 7 years as required by Indian accounting laws

8. Your Rights

You have the right to:

• Access — request a copy of your personal data
• Correction — request correction of inaccurate data
• Export — download your business data via the CSV export feature
• Deletion — request deletion of your account and data

To exercise any of these rights, email us at support@billux.in.

9. Children's Privacy

Billux is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from minors.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of significant changes via email. The date at the top of this page indicates when the policy was last updated.

11. Contact

For any privacy-related questions or data requests, contact us at: support@billux.in