🔒 Your Privacy Matters
At Business Box, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data.
1. Information We Collect
1.1 Information You Provide
We collect information you voluntarily provide to us, including:
- Account registration information (name, email, phone number, company details)
- Profile information and preferences
- Business data you input into our ERP system
- Communication data (support tickets, feedback, survey responses)
- Payment information (processed securely through third-party payment processors)
1.2 Information We Collect Automatically
When you use our services, we automatically collect:
- Log data (IP address, browser type, operating system, referral URLs)
- Device information (device type, screen resolution, timezone)
- Usage analytics (features used, session duration, click patterns)
- Cookies and similar tracking technologies
2. How We Use Your Information
We use your information for the following purposes:
- Service Provision: To provide, maintain, and improve our ERP services
- Account Management: To create and manage your account and subscriptions
- Customer Support: To respond to your inquiries and provide technical assistance
- Analytics: To analyze usage patterns and improve our platform
- Security: To detect, prevent, and address security issues
- Communications: To send service updates, newsletters, and promotional materials (with your consent)
- Compliance: To comply with legal obligations and enforce our terms of service
3. Data Sharing and Disclosure
3.1 We Do Not Sell Your Data
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
3.2 Limited Sharing
We may share your information only in the following circumstances:
- Service Providers: Trusted third-party vendors who assist in providing our services (cloud hosting, payment processing, analytics)
- Business Transfers: In connection with mergers, acquisitions, or asset sales
- Legal Compliance: When required by law or to protect our rights and safety
- With Your Consent: When you explicitly authorize sharing
4. Data Security
🛡️ Enterprise-Grade Security
We implement industry-leading security measures to protect your data:
- End-to-end encryption for data in transit and at rest
- Multi-factor authentication and access controls
- Regular security audits and penetration testing
- ISO 27001 and SOC 2 Type II compliance
- 24/7 security monitoring and incident response
5. Data Retention
We retain your personal information for as long as necessary to:
- Provide our services and maintain your account
- Comply with legal, regulatory, or contractual obligations
- Resolve disputes and enforce our agreements
- Support business operations and continuity
When data is no longer needed, we securely delete or anonymize it according to our data retention policies.
6. Your Rights and Choices
6.1 Access and Control
You have the right to:
- Access and review your personal information
- Update or correct inaccurate data
- Request deletion of your data (subject to legal requirements)
- Export your data in a portable format
- Object to processing of your personal information
- Withdraw consent for marketing communications
6.2 Cookie Management
You can control cookies through your browser settings, but disabling cookies may limit some features of our service.
7. International Data Transfers
Our services are global, and your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:
- Adequacy decisions by relevant authorities
- Standard contractual clauses
- Binding corporate rules
- Your explicit consent
8. Children's Privacy
Our services are designed for businesses and are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16.
9. Third-Party Links and Services
Our platform may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those external services, and we encourage you to review their privacy policies.
10. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or for legal, regulatory, or operational reasons. We will:
- Notify you of material changes via email or platform notifications
- Provide at least 30 days' notice before changes take effect
- Post the updated policy on our website with the revision date
11. Regional Compliance
11.1 GDPR Compliance (EU)
For EU residents, we comply with the General Data Protection Regulation (GDPR), including:
- Lawful basis for processing personal data
- Data Protection Officer contact: dpo@business-box.in
- Right to lodge complaints with supervisory authorities
11.2 CCPA Compliance (California)
For California residents, we comply with the California Consumer Privacy Act (CCPA), providing additional rights regarding personal information.
12. Contact Information
📞 Privacy Questions?
If you have questions about this Privacy Policy or how we handle your data, please contact us:
- Email: privacy@business-box.in
- Data Protection Officer: dpo@business-box.in
- Phone: +91 7231855552
- Address: Business Box Privacy Team, Bangalore, India
13. Transparency Report
We publish an annual transparency report detailing:
- Government data requests and our responses
- Security incidents and our response measures
- Privacy improvements and initiatives
- Third-party audit results