Privacy Policy

Note: This is a template Privacy Policy document. Please consult with a legal professional to customize this policy for your specific business requirements and jurisdictional obligations.

At posgryd, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

1. Information We Collect

Information you provide to us:

• Account information: Name, email address, phone number, business name, and billing details when you create an account.
• Business data: Products, services, inventory records, employee information, customer data, appointment and booking records, transaction records, and other data you input into the platform.
• Communications: Emails, support tickets, feedback, and other communications you send to us.

Information collected automatically:

• Usage data: Pages visited, features used, time spent on the platform, and other interaction data.
• Device information: Browser type, operating system, IP address, device identifiers.
• Location data: Approximate location based on IP address (not precise GPS location).

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our platform and services.
• Process transactions and manage your account.
• Send you technical notices, updates, security alerts, and support messages.
• Respond to your comments, questions, and support requests.
• Monitor and analyze trends, usage, and activities to improve user experience.
• Detect, investigate, and prevent fraudulent transactions and other illegal activities.
• Comply with legal obligations.

3. Information Sharing

We do not sell your personal information. We may share your information in the following circumstances:

• Service providers: Third-party vendors who help us operate the platform (hosting, payment processing, analytics, customer support).
• Legal requirements: When required by law, subpoena, or government regulation.
• Business transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction.
• With your consent: When you explicitly authorize us to share your information.

4. Data Security

We implement industry-standard security measures to protect your data:

• AES-256 encryption for data at rest.
• TLS 1.3 encryption for data in transit.
• Regular security audits and penetration testing.
• SOC 2 compliant infrastructure.
• PCI DSS Level 1 compliance for payment processing.
• Multi-factor authentication support.
• Role-based access controls.

While we strive to use commercially acceptable means to protect your information, no method of transmission over the Internet or electronic storage is 100% secure.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. When you close your account:

• Your data is retained for 30 days to allow for account recovery.
• After 30 days, your data is permanently deleted from our systems.
• Backup copies may persist for up to 90 days before automatic deletion.
• Certain data may be retained longer if required by law (e.g., financial records, tax obligations).

6. Your Rights (GDPR / CCPA)

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate data.
• Deletion: Request deletion of your personal data ("right to be forgotten").
• Portability: Receive your data in a structured, machine-readable format.
• Restriction: Request restriction of processing of your data.
• Objection: Object to processing of your data for certain purposes.
• Opt-out of sale: Under CCPA, you may opt out of the sale of your personal information (we do not sell personal information).

To exercise any of these rights, contact us at privacy@posgryd.com. We will respond within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to operate and improve our platform:

• Essential cookies: Required for the platform to function (authentication, security, preferences).
• Analytics cookies: Help us understand how users interact with the platform to improve the experience.
• Marketing cookies: Used to deliver relevant advertisements (only with your consent).

You can manage cookie preferences through your browser settings. Disabling essential cookies may affect platform functionality.

8. Third-Party Services

Our platform may contain links to or integrate with third-party services (payment processors, delivery platforms, accounting software). These services have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of third-party services.

9. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us and we will take steps to remove that information.

10. International Data Transfers

Your data may be transferred to and maintained on servers located outside of your country of residence. We ensure that appropriate safeguards are in place (such as Standard Contractual Clauses) for any international data transfers in compliance with applicable data protection laws.

11. Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For material changes, we will provide prominent notice (such as email notification) at least 30 days before the changes take effect.

12. Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@posgryd.com
• Data Protection Officer: dpo@posgryd.com
• Website: posgryd.com