Privacy Policy

FactoryBook (“we”, “our”, “us”) operates the FactoryBook mobile application and the website factorybook.me. This policy describes what we collect, how we use it, and the choices you have. It’s written to align with Google Play’s Data safety and permissions guidance.

1) Data we collect

1.1 Account & app data

• Phone number for OTP sign-in.
• Factory membership (factory you belong to and your role).

1.2 Contacts (optional, user-initiated)

If you tap Import from contacts, we may collect the name and phone number of the contacts you explicitly select. We do not access or upload your entire address book.

1.3 Photos & camera (optional, user-initiated)

• User-selected photos (e.g., invoice/receipt images for attachments or OCR to extract GSTIN).
• Camera captures (e.g., scanning a GSTIN label). Captured images are stored in app-private storage and may be removed after extraction unless you choose to attach them to a record.

1.4 Diagnostics

Basic crash logs and performance data to improve stability. We avoid storing personally identifiable text in logs.

2) How we use data

• App functionality: manage parties, sales, invoices, expenses; import selected contacts; extract GSTIN from images you choose.
• Security: OTP verification and abuse prevention.
• Reliability: diagnose crashes and improve performance.

We do not sell your personal data.

3) On-device vs server processing

Images may be temporarily processed on the device (e.g., resizing, text recognition) and, if required for OCR, transmitted securely to our server or a vetted service provider solely to extract text (e.g., GSTIN). We store the extracted GSTIN and minimize retention of raw images (see Retention).

4) Legal bases

• Consent: contacts, photos, and camera are permission-based and user-initiated.
• Legitimate interests: operate and secure the app; improve reliability.

5) Retention

• Contacts: imported names/phone numbers remain in your Parties until you delete them.
• Images: temporary copies created for processing are deleted after completion. If you attach an image to an invoice/expense, it’s retained with that record until you remove it.
• Server-side OCR cache (if used): auto-deleted within 7 days unless linked to a record you chose to keep.
• Crash logs: up to 90 days.

6) Your choices & controls

• Permissions: you can deny Contacts, Photos, or Camera permissions; you can still use the app (e.g., enter GSTIN manually).
• Delete account: in-app from Settings → Account → Delete Account, or contact us (see below). Account deletion removes personal data associated with your profile and factories you own, except where retention is required by law.
• Clear local data: remove cached/temporary files from the app settings.

7) How we share information

• Service providers: infrastructure, crash reporting, and optional OCR—bound by confidentiality and data protection obligations; used only to provide the service.
• Legal: when required by law or to protect rights, safety, and security.

We do not share your contacts or images for advertising.

8) Security

Data is encrypted in transit (HTTPS). We use access controls and minimize stored personal data. No method is 100% secure, but we apply commercially reasonable safeguards.

9) Children

The app is not directed to children under 13 (or the minimum age in your jurisdiction), and we do not knowingly collect data from children.

10) International transfers

Data may be processed in countries where we or our providers operate. Where required, we use contractual safeguards for cross-border transfers.

11) Changes to this policy

We may update this policy; material changes will be highlighted in the app or on this page with an updated date.

12) Contact us

Email: support@factorybook.me
Address: SRI SIDDARTHA QUALITY GRANITES, 503/2B1A & 503/2A2, UPPUMAGULURU, BALLIKURUVA, Prakasam, Andhra Pradesh, India