pharmaonline

Legal

Privacy Policy

Effective 17 May 2026.

This policy describes how Pharmaonline (“we”, “us”) collects, uses, and protects information when you use pharmaonline.in and the related dashboard application at https://dashboard.pharmaonline.in.

1. What we collect

We collect three categories of data:

  • Account data — your name, email, phone, business name, and password (stored hashed). Provided when you sign up.
  • Operational data — products, customers, invoices, payments, and stock entries you create inside the dashboard. This data belongs to your business.
  • Usage data — request logs (IP, user agent, request ID, timestamps) used for security, debugging and rate limiting.

2. How we use it

  • To provide and maintain the service.
  • To send transactional emails (sign-up confirmation, billing receipts, security alerts).
  • To investigate abuse, fraud and security incidents.
  • To meet legal and tax obligations under Indian law.

We do not sell your data. We do not use it to train AI models. We do not share it with third parties for advertising.

3. Where it lives

All data is hosted in Mumbai (Google Cloud asia-south1). Connections are encrypted in transit (TLS 1.2+). Cloud SQL databases have automated daily backups. Every tenant is logically isolated at the database layer by a unique organisation ID.

4. Sub-processors

We use a small set of vetted sub-processors:

  • Google Cloud Platform — hosting, storage, backups (asia-south1, India).
  • SMS gateway — for OTP delivery to your customers. The OTP and recipient phone number are shared with the gateway; we do not share message content beyond that.
  • Razorpay — for subscription billing (when you upgrade out of trial). Card data never touches our servers.

5. Your rights

You can:

  • Export your data at any time as CSV / Tally-compatible files.
  • Request a full account deletion by emailing support@pharmaonline.in — we'll action it within 30 days.
  • Correct or update account details from your dashboard settings.

6. Retention

Active accounts: data is retained for the duration of the subscription. Cancelled accounts: data is retained for 90 days in case of accidental cancellation, after which it is permanently deleted unless legal retention requirements apply (e.g. tax records, typically 7 years).

7. Children

The service is for businesses. We don't knowingly collect data from anyone under 18.

8. Changes

We'll update this page with any material changes and notify account owners by email at least 14 days before the change takes effect.

9. Contact

Questions or complaints? support@pharmaonline.in

Heads up: these terms are template-grade and have not yet been reviewed by an Indian legal practitioner. Get them reviewed before relying on them in a dispute.