# Privacy Policy
**Last updated:** 23 June 2026
**Website:** https://inventory.arenvera.com/
**Product:** Inventory Manager / Store OS
**Business / Data Fiduciary:** Tejas S Nayak operating as Arenvera Business Solutions
**Registered address:** # 1311, ” Basanth Mayur”, Hebbal, I stage, Mysuru, Karnataka 570016
**Privacy and grievance contact:** innovations@gmail.com
**Phone:** +91 70905 76704
This Privacy Policy explains how we collect, use, store, share and protect personal data when you visit our website, contact us, buy or use Inventory Manager / Store OS, request support, or use connected services such as mobile scanning, backups, cloud connectivity, billing, inventory, GST reports, khata/credit records and customer/supplier management.
This Policy is intended to support compliance with applicable Indian data protection and technology laws, including the Digital Personal Data Protection Act, 2023, as applicable from time to time. It is not a substitute for separate notices, consents, contracts, security controls or legal review.
## 1. Our role
For data about our own website visitors, leads, customers, account users, licence holders and support contacts, we act as the Data Fiduciary.
For business data entered by a shop, retailer, distributor or business customer into Inventory Manager, such as their customers, employees, suppliers, invoices, stock and khata records, that business customer is usually the primary Data Fiduciary. We process that data only if we host it, back it up, access it for support, sync it, secure it, or otherwise process it on that customer’s instructions.
If you are an end customer, employee or supplier of a store using our software, please contact that store first for privacy requests about data they entered into their Store OS account. If you contact us directly, we will help route the request where reasonably possible.
## 2. Personal data we collect
Depending on how you use Inventory Manager / Store OS, we may collect or process account and login data such as your name, email address, mobile number, username, password hash, role, permissions and login status.
We may process business profile data such as store name, business address, GSTIN, invoice settings, store logo and authorised signatory details.
If a business customer adds staff users, we may process employee or user data such as staff names, roles, contact details, login activity and permissions.
The software may store customer and khata data entered by the business customer, such as customer name, phone number, address, GSTIN where applicable, credit ledger, payment status and purchase history.
The software may store supplier data such as supplier name, contact details, GSTIN, purchase invoices and payment status.
The software may process inventory and transaction data such as products, batches, QR codes, barcodes, stock movement, purchase orders, sales, returns, invoices and GST summaries.
If you purchase or subscribe to the product, we may process billing and subscription data such as plan details, invoice details, payment status and transaction references.
If you contact support, we may process support data such as messages, screenshots, logs, diagnostic files, issue reports and remote support notes.
When you visit our website, we may automatically collect website and device data such as IP address, browser type, device type, pages visited, cookies and security logs.
If you use QR or barcode scanning, the app may process camera-based scan input only for identifying products, batches, billing items or mobile connection details.
We do not intentionally collect Aadhaar numbers, biometric data, health data, payment card numbers, children’s data or precise background location data unless we clearly notify you and obtain any legally required consent.
## 3. Why we use personal data
We use personal data to provide the product, including login, user roles, inventory management, billing, reports, QR scanning, GST summaries and khata records.
We use personal data to provide customer support, including troubleshooting, bug fixing, training, responding to tickets and investigating errors.
We use personal data for security purposes, including authentication, access control, fraud prevention, abuse detection, audit logs and protection against unauthorised access.
We use personal data for billing and administration, including subscriptions, invoices, payment confirmation and account management.
We use personal data for legal, tax and accounting purposes, including maintaining invoices, GST-related records and lawful business records.
We use personal data to improve the product, including debugging, performance monitoring and understanding feature usage.
We use personal data to communicate with you, including service updates, security notices, product notices and support replies.
Where permitted, we may use contact details for marketing communications such as product announcements, demos, offers or newsletters. You may opt out of marketing communications.
## 4. Consent and withdrawal
Where we rely on consent, we will ask for consent through clear action, such as account creation, form submission, permission approval, subscription request or support request.
You may withdraw consent by contacting us at [privacy@arenvera.com] or by using available account settings. Withdrawal will not affect processing already completed before withdrawal. Some data may still need to be retained where required for legal, tax, security, dispute-resolution or service-continuity purposes.
If a feature requires certain data to work, withdrawing consent may limit or stop that feature.
## 5. Mandatory and optional data
Some data is required to provide the service, such as login details, store account details, product/invoice records and security logs. Optional data may include business logo, additional contact details, marketing preferences, optional support attachments or optional analytics preferences.
We aim to collect only the data reasonably necessary for the stated purpose.
## 6. Cookies and website analytics
Our website may use cookies or similar technologies for:
– essential website operation;
– security and fraud prevention;
– remembering preferences;
– understanding website performance and usage, where enabled.
You can control cookies through your browser settings. If we use non-essential analytics or advertising cookies, we will provide appropriate notice and choice where required.
## 7. Camera and mobile scanning
If you use QR or barcode scanning, the app may request camera access. Camera access is used to scan codes for inventory, billing, batch tracking or mobile connection. We do not use camera access for unrelated monitoring.
Camera permission can be disabled through your browser, device or app settings, but scanning features may stop working.
#
# 8. Sharing of data
We do not sell personal data.
We may share personal data only with:
– hosting, cloud, database, backup or infrastructure providers;
– payment providers, if you purchase a subscription or licence online;
– email, SMS, WhatsApp, push notification or communication providers, where enabled;
– analytics, crash reporting or monitoring providers, where enabled;
– accountants, auditors, legal advisers and compliance professionals;
– support or implementation contractors bound by confidentiality;
– government, court, law-enforcement or regulatory authorities where legally required;
– another entity only if there is a business transfer, merger or restructuring, subject to appropriate safeguards.
Current key vendors/processors:
[LIST ACTUAL VENDORS, E.G. CLOUD HOST, DOMAIN/CDN, PAYMENT GATEWAY, EMAIL PROVIDER, ANALYTICS, ERROR MONITORING, SUPPORT TOOL]
We require processors to use personal data only for authorised purposes and to apply reasonable security safeguards.
## 9. International transfers
Personal data may be stored or processed in India or in other countries where our service providers operate. Where Indian law restricts transfer or access to personal data outside India, we will follow those restrictions and use appropriate contractual, technical and organisational safeguards.
## 10. Security safeguards
We use reasonable technical and organisational safeguards to protect personal data, including where appropriate:
– password hashing;
– role-based access controls;
– access logging;
– encrypted network connections;
– database and backup controls;
– least-privilege access for staff and contractors;
– audit trails for important business actions;
– vulnerability fixes and security updates;
– restricted support access;
– incident review and remediation.
No software or network is completely secure. You are responsible for keeping your login credentials confidential, using strong passwords, restricting staff access, and promptly informing us about suspected unauthorised access.
## 11. Retention and deletion
We keep personal data only for as long as needed for the purpose for which it was collected, or as required for legal, tax, accounting, security, dispute-resolution or contractual reasons.
Account data is retained while the account is active. After account closure, it may be deleted or archived depending on legal, security, tax, accounting or dispute-resolution requirements.
Store, inventory and invoice data is retained while the customer uses the product and for any period required under applicable tax, accounting, GST or business-record laws.
GST, invoice and accounting records may need to be retained for statutory and audit purposes. Business customers should confirm their exact retention obligations with their chartered accountant or tax adviser.
Security logs are retained for security, audit, abuse prevention and legal purposes. Where applicable, logs may be retained for at least one year or for a longer period if required by law, investigation, dispute or security need.
Support tickets, screenshots, diagnostic files and issue reports are retained while needed for support, warranty, audit, security, training or dispute-resolution purposes.
Backups are retained according to our backup cycle and are deleted or overwritten in the normal course of backup rotation, unless a backup must be retained for security, legal, recovery or dispute-resolution reasons.
Marketing contact data is retained until you opt out, withdraw consent where applicable, or the marketing purpose ends.
When you request deletion, we will delete or anonymise applicable personal data unless retention is necessary for legal compliance, tax or accounting obligations, security, fraud prevention, dispute handling, backup recovery, or completion of pending services.
## 12. Your rights
Subject to applicable law, you may request:
– access to information about your personal data;
– correction of inaccurate or misleading data;
– completion or updating of incomplete data;
– erasure of personal data no longer required;
– withdrawal of consent where processing is based on consent;
– grievance redressal;
– nomination of another person to exercise your rights where applicable.
To make a request, contact:
**Privacy and grievance contact:** Tejas S Nayak
**Email:** tejasnayak860gmail-com
**Address:** # 1311, ” Basanth Mayur”, Hebbal, I stage, Mysuru, Karnataka 570016
We may ask for information needed to verify your identity and locate your account. We aim to respond within 30 days, and in any case within the period required by applicable law.
If your request relates to data controlled by a store or retailer using our software, we may direct you to that business customer.
## 13. Grievance redressal
If you have a privacy concern, complaint or request, contact us at innovations@gmail.com.
Please include:
– your name;
– contact details;
– store/account name, if relevant;
– description of the issue;
– data or transaction involved, if known;
– the remedy you request.
We will acknowledge and review grievances within a reasonable period. Where the Digital Personal Data Protection framework applies, we will maintain a grievance redressal process consistent with applicable timelines.
## 14. Children’s data
Inventory Manager is intended for businesses and is not designed for children. We do not knowingly allow children under 18 to create accounts or use the service directly.
Business customers should not enter children’s personal data into the software unless they have a lawful basis, provide appropriate notice, obtain required parental consent where applicable, and comply with all child-data obligations.
If you believe a child’s personal data has been provided to us improperly, contact us immediately.
## 15. Marketing communications
We may send service messages, security notices and product updates. We may send marketing messages only where permitted. You can opt out of marketing emails by using the unsubscribe option or contacting us.
Opting out of marketing does not stop essential service, billing, security or legal notices.
## 16. Business customer responsibilities
If you use Inventory Manager for your store or business, you are responsible for:
– informing your customers, suppliers and employees about how their data is used;
– collecting consent where required;
– entering only necessary data;
– keeping user roles and passwords secure;
– disabling access for former staff;
– verifying invoice, GST, tax and khata records;
– complying with labour, tax, accounting, consumer and privacy obligations applicable to your business;
– ensuring that data entered into the product is lawful and accurate.
You must not use the software to store unlawful, unnecessary or highly sensitive information unless the law permits it and appropriate safeguards are in place.
## 17. Personal data breaches
If we become aware of a personal data breach affecting data under our control, we will take steps to investigate, contain, mitigate and notify affected persons and authorities where required by applicable law.
Business customers must promptly inform us if they suspect unauthorised access to their account, device, database or backup.
## 18. Automated decisions and AI
We do not currently use the product to make legally significant automated decisions about individuals, such as credit eligibility, employment termination, insurance, healthcare or legal eligibility.
If we introduce AI, recommendation, prediction or automated decision features that process personal data, we will update this Policy and provide appropriate notices and controls.
## 19. Legal compliance and disclosures
We may process or disclose personal data where necessary to:
– comply with law;
– respond to lawful government, court or regulatory requests;
– enforce agreements;
– prevent fraud, abuse or security incidents;
– protect rights, safety and property;
– establish, exercise or defend legal claims.
## 20. Changes to this Policy
We may update this Privacy Policy from time to time. The updated version will be posted on this website with the “Last updated” date. For material changes, we may provide additional notice through the website, app, email or other appropriate means.
## 21. Contact
For privacy requests, grievances or questions:
**Arenvera Business Solutions
**Address:** # 1311, ” Basanth Mayur”, Hebbal, I stage, Mysuru, Karnataka 570016
**Email:** innovations@arenvera.com]
**Phone:** +91 70905 76704
**Website:** https://inventory.arenvera.com/