Privacy Policy for BantayTinda+
BantayTinda+ is an offline-first sari-sari store point-of-sale, inventory, ledger, backup, licensing, and support app. This Privacy Policy explains what information the app collects, how it is used, when it is shared, and the choices available to users.
Who This Policy Applies To
This policy applies to the BantayTinda+ mobile app and related online services used for account login, licensing, purchases, support, and app updates. In this policy, "we," "us," and "our" refer to BantayTinda+.
Information We Collect
BantayTinda+ collects only the information needed to provide store operations, account access, licensing, backups, purchases, diagnostics, and support.
- Account information: email address, password authentication through Firebase Authentication, first name, last name, optional phone number, user ID, account creation time, and last login time.
- Store information: store name, store ID, owner name, owner email, contact phone, membership role, trial or license status, and optional store address details if provided.
- Business records stored in the app: products, barcodes, product names, categories, units, prices, costs, stock levels, reorder levels, sales, receipt numbers, payment methods, payment reference numbers, expenses, cash sessions, audit logs, and reports.
- Utang or customer ledger information: customer names, debt amounts, payment records, due dates, and notes entered by the store owner or authorized user.
- Security and device information: admin PIN security settings, failed unlock attempt state, biometric unlock preference, device-bound installation ID, device fingerprint hash, platform, app version, and build number. The admin PIN itself is not stored; the app stores only a salted one-way hash in secure storage.
- Support information: support request subject and message, store ID, store name, user ID, app version, build number, platform version, device model, recent app audit logs, local error details, ticket status, and upload retry information. Diagnostic logs are included only when the user chooses to include them.
- Purchase and license information: purchase status, entitlement status, product identifiers, app user ID, license ID, activation code, store ID, owner name, email, phone number, device ID, device fingerprint hash, license dates, and activation history.
- Backup information: backup file name, backup type, created date, file size, destination URI or folder label, backup status, restore history, and related error messages.
Camera Permission
BantayTinda+ requests camera access so users can scan product barcodes during inventory and checkout workflows. Camera frames are used for barcode scanning only. The app does not use the camera for advertising, profiling, face recognition, or background recording.
Internet Permission
BantayTinda+ uses internet access for account login, Firebase services, support uploads, license activation, purchase verification, and Google Play related purchase and app distribution services.
Billing Permission
BantayTinda+ uses Google Play Billing for in-app purchases. Payment processing is handled by Google Play. BantayTinda+ does not receive or store full payment card numbers, bank account details, or Google account payment credentials.
How We Use Information
- To create and manage user accounts and store owner sessions.
- To operate sales, inventory, expenses, utang, reports, cash sessions, and day process features.
- To protect admin-only areas using local PIN, biometric, or device-credential checks.
- To activate trials, verify paid access, restore purchases, prevent license abuse, and manage device-bound license access.
- To save, restore, export, and track local backup files selected by the user.
- To respond to support requests, diagnose app problems, and improve reliability.
- To check for and deliver app updates when supported by the installed build.
- To comply with legal, security, fraud-prevention, and platform requirements.
Where Information Is Stored
Most store operating data is stored locally on the user's device in the app database. This includes inventory, sales, expenses, utang records, reports, cash sessions, and audit logs. Security secrets such as license data, Firebase token cache, PIN hash, PIN salt, and device identifiers are stored using secure storage where supported by the operating system.
Account, store ownership, license, purchase verification, and support information may be stored on cloud services used by BantayTinda+, including Firebase and related backend services.
Backups and Restores
BantayTinda+ lets users create backup files and choose where to save them. Backup files may contain the store's local business records, including product, sales, expense, utang, cash-session, and audit-log data. The user controls the destination selected through the system picker or preferred backup folder. Users are responsible for protecting backup files they save outside the app.
Support Diagnostics
When a user submits a support request, BantayTinda+ may send the support message and basic app, store, user, and device details needed to handle the request. If the user chooses to include diagnostics, the request may also include recent audit logs and the most recent local error. Diagnostic information is used for support and troubleshooting.
Third-Party Services
BantayTinda+ uses third-party service providers to operate core app features. These providers may process information according to their own privacy policies and service terms.
- Google Firebase Authentication: account login, account identity, and password reset.
- Google Cloud Firestore and Firebase Cloud Functions: account records, store records, licensing, support, and backend processing.
- Google Play Billing: purchase processing and payment handling.
- RevenueCat: purchase entitlement, receipt validation, product catalog, customer information, and purchase restoration.
- Device operating system services: camera barcode scanning, local secure storage, biometric or device-credential authentication, and file handling used for backups and restores.
Sharing of Information
We do not sell personal information. We do not share personal information for third-party advertising. We share information only when needed to provide the app, process purchases, verify licenses, deliver support, operate cloud services, comply with law, protect rights and security, or with the user's direction such as saving a backup to a selected location.
Data Retention
Local business records remain on the user's device until the user edits them, deletes them, restores another backup, clears app data, or uninstalls the app. Backup files remain wherever the user saved them until the user deletes them.
Account, store, license, purchase, and support records are retained for as long as needed to provide the service, maintain purchase and license records, resolve support issues, prevent fraud or abuse, and meet legal or accounting requirements.
Data Deletion and Account Requests
Users may delete local app data by deleting records inside the app where available, restoring a different backup, clearing app data through the operating system, or uninstalling the app. These actions do not automatically delete cloud account, license, purchase, or support records.
To request deletion of cloud account records, use the dedicated account deletion page at https://bantaytindaplus.com/delete-account.html. The request is reviewed manually before final deletion. Some records may need to be retained when required for purchase records, security, legal compliance, fraud prevention, or dispute resolution.
Security
BantayTinda+ uses reasonable safeguards to protect information, including local secure storage for sensitive tokens and license data, salted one-way hashing for the admin PIN, Firebase authentication for online account access, device-bound license checks, and operating-system controls for camera, files, and biometric or device-credential unlock. No method of storage or transmission is completely secure, but we work to limit access to information to what is necessary for app operation and support.
Children's Privacy
BantayTinda+ is intended for store owners and authorized store staff. It is not directed to children under 13 years old, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information through the app, contact us so we can review and take appropriate action.
International Processing
Information processed through Firebase, RevenueCat, Google Play, support services, and related backend systems may be stored or processed in locations outside the user's country. By using the app, users understand that information may be processed where these service providers operate.
Changes to This Policy
We may update this Privacy Policy when the app, services, legal requirements, or privacy practices change. The updated policy will be posted on this page. Continued use of BantayTinda+ after an update means the user accepts the updated policy.
Contact Us
For privacy questions, account requests, deletion requests, or support related to this policy, contact:
BantayTinda+ Privacy Support
Email: support@bantaytindaplus.com
Website: https://bantaytindaplus.com