Privacy Policy

Effective: May 5, 2026

Vimal TMT ("we", "our", "us") operates this mobile application. This policy explains what data we collect, why we collect it, and your rights over it.

1. Data We Collect

Phone number: Required to create your account and verify identity via OTP.
Name & address: Collected during sign-up to identify you within the platform. Optional fields.
Transaction history: Records of credits and sales tied to your account for ledger accuracy.
Push notification token: A device token from Firebase used to deliver relevant alerts to you.

We do not collect any data beyond what is explicitly mentioned above.

2. How We Use Your Data

  • Authenticate you with a one-time password (OTP) via Twilio Verify.
  • Display your wallet balance and transaction history.
  • Send you push notifications about credits, offers, and announcements.
  • Maintain a financial ledger for audit and dispute resolution.
  • We process your data to provide core app functionality, comply with legal obligations, and improve service reliability.

3. Third-Party Services

We share minimal data with trusted services:

Twilio Verify: Your phone number is shared with Twilio solely for OTP delivery as per their privacy policy.
Firebase Cloud Messaging: Device tokens are processed by Google Firebase to deliver notifications.

We do not sell, rent, or trade your personal data to any third party.

4. Data Retention

Your account data is retained for as long as your account is active. If you delete your account:

  • All personal data (phone number, name, address) is permanently deleted within 24 hours.
  • Transaction records required for legal and audit purposes are retained but are anonymized and cannot be linked back to your identity.

5. Your Rights

  • Account Deletion — You can delete your account at any time from within the app under Profile → Delete Account.
  • Access or Correction — email us at vimaltmt12@gmail.com to request a copy of your data or correct inaccuracies.

6. Security

All data in transit is protected by HTTPS/TLS. Authentication tokens are stored encrypted on your device using AES-256-GCM. We do not store passwords.

7. Children

This app is intended for business users (dealers, masons, suppliers). We do not knowingly collect data from anyone under 18 years of age.

8. Changes to This Policy

We may update this policy. The effective date at the top will reflect the latest revision. Continued use of the app after changes constitutes acceptance.

9. Contact

If you have any questions, requests, or concerns regarding this policy or your data, contact us at vimaltmt12@gmail.com.

10. App and Web Usage

This mobile application may display and load content from our web platform. Any data interactions within the app follow the same privacy practices described in this policy.