Privacy Policy

Last updated: March 27, 2026

1. Information We Collect

When you use ProcureTrail, we collect:

• Account information: Name, email address, username, organization name.
• Usage data: Actions performed within the application (for audit trail purposes).
• Business data: Purchase requisitions, purchase orders, goods receipts, asset records, and related documents you create.

2. How We Use Your Information

We use your information to:

• Provide and maintain the ProcureTrail service.
• Authenticate your identity and manage access.
• Generate audit trails as required for compliance.
• Send transactional emails (password resets, approval notifications).
• Respond to support requests.

3. Data Isolation

ProcureTrail is a multi-tenant application. Each organization's data is strictly isolated using row-level security. No organization can access another organization's data.

4. Data Storage

Your data is stored on secure servers. We use industry-standard encryption for data in transit (TLS/SSL). Database backups are performed daily and retained for 14 days.

5. Data Sharing

We do not sell, rent, or share your data with third parties. We may disclose information only if required by law or to protect our legal rights.

6. Data Export & Deletion

You may request a full export of your organization's data at any time. Upon termination of your account, we will retain your data for 90 days before permanent deletion, unless a longer retention period is required by law.

7. Cookies

ProcureTrail uses only essential cookies for authentication (JWT tokens). We do not use tracking cookies or third-party analytics.

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by email or through the application.

9. Contact

For privacy-related questions, contact us at kiren@oparc.in.