Privacy Policy

Bizmitra.io is committed to safeguarding your privacy. Contact us at mkr2005@gmail.com if you have any questions or concerns regarding the use of your Personal Data, and we will gladly assist you.

By using this site or our services, you consent to the processing of your Personal Data as described in this Privacy Policy.

Table of Contents

1. Definitions used in this Policy
2. Data protection principles we follow
3. Data Storage and Hosting
4. What rights you have regarding your Personal Data
5. What Personal Data we collect
6. How we use your Personal Data
7. Who else has access to your Personal Data
8. Information about cookies
9. Contact information
10. Legal Basis for Processing(GDPR-only)
11. Changes to this Privacy Policy

Data Protection Principles

We promise to follow these data protection principles:

  • Processing is lawful, fair, and transparent.
  • Processing is limited to the purpose for which the data was collected.
  • Processing is done with minimal data.
  • Processing is limited with a defined time period.
  • We strive to ensure data accuracy, integrity, and confidentiality.

Data Storage and Hosting

Bizmitra ERP is hosted on Akamai’s dedicated secure infrastructure in Mumbai, India, and Hetzner’s ISO-certified data centers in Germany. Both providers comply with international security standards, and we use dedicated (non-shared) servers to ensure data isolation and high availability. Data is not transferred to any other location except as required for backups and service continuity.

What Personal Data We Collect

We collect the following types of Personal Data:

  • **Registration Information:** Name, email address, and mobile number are collected for account creation and login purposes. This data is used solely for user authentication and sending automated personalized emails.
  • **Location Data:** Employees can share their location for check-in purposes. This data is used to validate attendance and is not used for any other tracking purposes.
  • **Profile Photos:** Employees may upload selfies to personalize their profiles. This data is visible only within the app for identification.
  • **Uploaded Files:** ERP users can upload files such as Excel documents and images. These files are used only for the intended functionality within the app.
  • **Device ID:** We collect the device ID to enable PIN-based login functionality, providing users with an easy and secure way to log in.

How We Use Your Personal Data

How We Secure Your Data All traffic is encrypted using TLS 1.2+ (HTTPS). Data is stored on secure, access-controlled servers with network firewalls and intrusion prevention systems (Fail2Ban, IP banning). Each company’s data is logically isolated via unique company_id scoping at the application level. Access to production systems is restricted to authorized personnel using SSH keys only; passwords are never used. Regular security updates, monitoring, and logging are in place to detect and prevent unauthorized access. Automated daily backups are maintained for disaster recovery.

We use your Personal Data for the following purposes:

  • To create and manage your account.
  • To authenticate your login credentials.
  • To validate check-ins using location data for attendance purposes.
  • To allow you to upload and manage files as part of the ERP functionalities.
  • To send automated emails for personalized communication.

Who Else Has Access to Your Personal Data

We do not share your Personal Data with any third parties. All data is used solely within the app for the purposes outlined above.

How We Secure Your Data

We take the following measures to protect your data:

  • Data is stored securely with access limited to authorized personnel.
  • We use encryption and anonymization where appropriate.
  • We regularly monitor and update our security measures to prevent breaches.

Despite our best efforts, we cannot guarantee absolute security. In the event of a data breach, we will notify you and the appropriate authorities promptly.

Cookies and Other Technologies

We use cookies and similar technologies to:

  • Enhance your experience on our website.
  • Analyze website performance and usage through tools like Google Analytics.

You can manage or disable cookies through your browser settings. Note that disabling cookies may affect certain functionalities of the website.

Contact Information

If you have any questions or concerns regarding this Privacy Policy, you can contact us at: mkr2005@gmail.com

Legal Basis for Processing (GDPR-only)

We process your Personal Data on the following legal bases: Contractual necessity: to provide you with the ERP services you sign up for. Legitimate interests: to improve and secure our platform. Consent: for optional features such as cookies or location check-ins.

Changes to This Privacy Policy

We reserve the right to make changes to this Privacy Policy. Any updates will be posted on this page. Last updated: 01/10/2025.