Privacy Policy

Your privacy matters to us. This policy explains how RushTech POS collects, uses, and protects your information.

Effective Date: 14 June 2026
Table of Contents
Information We Collect How We Use Your Information Data Storage & Security Cookies & Tracking Third-Party Services Data Sharing & Disclosure Your Rights Data Retention Children's Privacy Changes to This Policy Contact Us

1 Information We Collect

This policy applies to RushTech POS business services and the RushTech Online Order customer app. We collect only information needed to operate accounts, orders, bookings, payments, delivery, support, and security.

Personal Information:

  • Name, email address, phone number, delivery address, saved addresses, and business name when applicable
  • Account identifiers and authentication information, including Google or phone verification identifiers when those sign-in methods are used
  • Billing and payment information when you subscribe to a paid plan
  • Login credentials (passwords are stored in encrypted/hashed form)

Online Ordering & Delivery Data:

  • Cart contents, orders, bookings, coupons, payment method, order notes, support messages, and order history
  • Precise or approximate device location only when you choose current-location delivery; manual address entry remains available where supported
  • Customer delivery coordinates, serviceable area, and pincode needed to calculate delivery eligibility and charges
  • Documents or images you voluntarily attach to an order when a store enables document upload
  • Push-notification tokens and app/device information used to deliver order, booking, payment, and support notifications

Business & Operational Data:

  • Products, categories, inventory, and pricing data you enter into the system
  • Sales transactions, order history, and customer records managed through the POS
  • Employee/user accounts and role assignments created within your POS account

Technical Data:

  • IP address, browser type, device information, and operating system
  • Usage logs, access times, pages visited, and feature interactions
  • Error logs and performance metrics for service improvement

2 How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, operate, and maintain the RushTech POS platform and services
  • To process transactions, generate invoices, and manage your subscription
  • To create and fulfil customer orders and bookings, contact customers about those requests, and coordinate delivery or pickup
  • To calculate delivery eligibility and charges, provide address assistance, and show order-status updates
  • To verify payments and payment status without storing full card, UPI PIN, CVV, or banking credentials in RushTech POS
  • To send transactional push notifications about orders, bookings, payments, delivery, and support
  • To personalise your experience and deliver relevant feature recommendations
  • To communicate with you about account updates, support enquiries, and service notifications
  • To send promotional communications (only with your consent; you can opt out at any time)
  • To monitor, analyse, and improve platform performance, security, and reliability
  • To comply with legal obligations and enforce our terms of service

Note: We will never sell your personal information to third parties for marketing purposes.

3 Data Storage & Security

We take the security of your data seriously and implement industry-standard measures to protect it:

  • All data is transmitted over encrypted connections using SSL/TLS protocols
  • Passwords are hashed using strong one-way hashing algorithms and are never stored in plain text
  • Database access is restricted to authorised personnel and systems only
  • Regular security audits and vulnerability assessments are performed
  • Automated backups are maintained to ensure data recovery in case of system failure

Your data is stored on secure servers located in India. We employ physical, administrative, and technical safeguards to protect against unauthorised access, alteration, disclosure, or destruction of your information.

4 Cookies & Tracking

RushTech POS uses cookies, app storage, session tokens, and similar technologies to provide secure authentication and app functionality:

  • Essential Cookies: Required for authentication, session management, and core platform functionality
  • Analytics Cookies: Help us understand how you use the platform so we can improve features and performance
  • Preference Storage: Remembers selected stores and app preferences
  • Secure App Storage: Customer session tokens are stored using encrypted device storage; Android cloud backup is disabled for the online-order app

You can manage cookie preferences through your browser settings. Please note that disabling essential cookies may affect platform functionality.

5 Third-Party Services

We may use trusted third-party service providers to support our operations:

  • Razorpay: To securely process online payments. Razorpay may receive the amount, order reference, customer name, email, phone number, and payment transaction details required for checkout and fraud prevention.
  • Google Firebase: For Google sign-in, phone verification, and push notifications. Firebase may process account identifiers, phone verification data, notification tokens, and technical device information.
  • Google Maps / Device Geocoding: To resolve delivery addresses when the user requests current-location or address-assistance features.
  • Cloud Hosting: For reliable data storage and infrastructure
  • Email Services: To deliver transactional and support-related communications
  • Analytics Providers: To gather anonymised usage insights for platform improvement

These third parties are contractually obligated to handle your data securely and only for the purposes we specify. They are not permitted to use your information for their own marketing.

6 Data Sharing & Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share data only in the following circumstances:

  • Store fulfilment: The selected store and its authorised staff receive the customer and order details needed to prepare, contact, and deliver the order. The customer app does not display internally assigned rider identity or location.
  • Service providers: Razorpay, Firebase, hosting, mapping, email, and notification providers receive only the data needed to provide their contracted service.
  • With your consent: When you explicitly authorise additional sharing
  • Legal compliance: When required by law, regulation, court order, or government request
  • Business transfers: In connection with a merger, acquisition, or sale of assets (with prior notice to you)
  • Protection: To protect the rights, property, or safety of RushTech POS, our users, or the public

7 Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of any inaccurate or incomplete data
  • Deletion: Request deletion of your personal data, subject to legal retention requirements
  • Data Portability: Request your data in a structured, machine-readable format
  • Withdraw Consent: Withdraw consent for marketing communications at any time
  • Objection: Object to processing of your data for certain purposes

Online-order customers can update their profile and permanently delete their account from the app. Account deletion removes the customer account, sessions, support messages, and loyalty data, and anonymises historical orders or bookings that must remain for accounting, tax, fraud prevention, or legal compliance.

You may also submit a deletion request at our account deletion page or contact us using the details below. We will respond to verified requests within 30 days.

8 Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

  • Active Accounts: Data is retained while the account is active and as needed to provide ordering, booking, delivery, support, and POS services
  • Location Data: Customer delivery coordinates are retained with the related order only as needed for delivery eligibility, fulfilment, dispute handling, and fraud prevention
  • Uploaded Order Documents: Retained while needed to process the order and according to the selected store's legal or operational requirements
  • Closed Accounts: Personal data is deleted or anonymised within 90 days of account closure, except where legally required to retain
  • Transaction Records: Financial and transaction records may be retained for up to 7 years for tax and regulatory compliance

9 Children's Privacy

RushTech POS business services and the RushTech Online Order app are intended for adults and are not directed at children under 18. We do not knowingly collect personal information from children. If we learn that a child has provided personal data, we will take reasonable steps to delete it.

10 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make significant changes:

  • We will update the "Effective Date" at the top of this page
  • We may notify you via email or through an in-app notification
  • Continued use of RushTech POS after updates constitutes acceptance of the revised policy

We encourage you to review this page periodically to stay informed about how we protect your data.

11 Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us: