Privacy Policy
LenDan ("LenDan", "the App", "we", "us") is a voice-first billing, inventory, and khata (credit ledger) app for small shops, operated by Mrityika99 Technologies (OPC) Private Limited ("the Company"), a company incorporated in India.
Registered office: Balbhadrapur, Dantan, West Bengal 721426, Paschim Medinipur, India
CIN: U62099WB2025OPC279596
Email: dev.sushovandas@gmail.com
This policy explains what data the App collects, why, where it goes, and the rights you have under India's Digital Personal Data Protection Act, 2023 (DPDP Act). We have written it in plain English on purpose.
1. The short version
- We collect only what the App needs to work: your phone number (to sign you in), your shop's details, and the business records you create — inventory, bills, customer/supplier (party) records, and khata entries.
- Voice recordings and parcha (order-list) photos are sent to AI services to be converted into text or bill drafts. We do not store the recordings or the images. We keep only the resulting text.
- We never sell your data, and we never use your customers' contact details for our own marketing.
- Deleting your account deletes your data. There is a Delete Account button inside the App (More tab).
2. Data we collect
2.1 Data you give us
| Data | Where it comes from | Why we need it |
|---|---|---|
| Your phone number | Entered at sign-in; verified by SMS OTP via Firebase Authentication | To create and secure your account. Your account ID is derived from this sign-in. |
| Shop details | The Shop Profile form: shop name, address, contact phone, GST/trade licence number, shop type, preferred language, and an optional payment QR image | Printed on your receipts and statements; the QR is shown on printed bills so customers can pay you. |
| Inventory | Items you add by typing, voice, or AI-assisted entry: names, prices, stock, categories, aliases | Core function of the App. |
| Bills | Bills you create: line items, amounts, discounts, payment method, customer name/phone if you attach one | Core function of the App. |
| Customer & supplier records ("parties") | Names and phone numbers you enter for your customers and suppliers, their balances, and khata (credit ledger) entries | So you can track credit, send reminders, and generate statements. See Section 5 — this is your customers' data, and special responsibilities apply. |
2.2 Data processed transiently by AI features
These are sent for processing and not stored by us:
- Voice recordings. When you tap the mic, your speech (up to 60 seconds) is sent to a speech-to-text service (Sarvam AI; Deepgram as fallback) to be converted into text. We keep the text transcript and the parsed result (see "parse logs" below), not the audio.
- Parcha images. When you photograph or pick an order list, the image is sent to the Google Gemini API to be read into a draft bill. We keep the parsed text result and basic image metadata (dimensions and file size), never the image itself.
2.3 Data collected automatically
- Parse logs (text only). Each voice/photo/typed AI command is logged with its transcript or input text, the parsed result, and outcome (saved, edited, cancelled). We use these to fix recognition mistakes and improve accuracy for your shop (e.g. learning that "basumoti chal" means your "Basmati Rice" item).
- Crash and diagnostics data via Firebase Crashlytics (crash traces, device model, OS version).
- Usage analytics via Firebase Analytics (which features are used — e.g. "a bill was settled", "a voice command was used" — with no personal data attached: no names, phone numbers, or amounts of your customers are sent to analytics).
2.4 What we do NOT collect
- No contact-list access. Adding a party via your phone's contact picker uses the operating system's own picker; the App never reads your address book.
- No location data, no advertising identifiers, no ad networks.
- No camera access on Android (photos come through the system photo picker).
3. Why we use your data (purposes)
We use personal data only to:
- Sign you in and secure your account (phone number, OTP).
- Provide the App's core features: billing, inventory, khata, receipts, statements, and reminders.
- Convert your speech and parcha photos into bill/inventory drafts (AI features).
- Fix bugs and improve reliability (crash reports, anonymous usage analytics, parse logs).
- Respond when you contact support.
We do not use your data for advertising, and we do not sell or rent it to anyone. Consistent with the DPDP Act's purpose-limitation principle, we will not use your data for a new, unrelated purpose without asking you first.
4. Who processes your data (our processors)
We use the following service providers ("data processors") to run the App:
| Processor | What it does | What it receives |
|---|---|---|
| Google Firebase (Authentication, Cloud Firestore, Cloud Storage, Cloud Functions, Analytics, Crashlytics) | Sign-in, database, file storage, backend, crash reporting, analytics | Your phone number, all shop/business records you create, your payment QR image, crash and usage data |
| Google Gemini API | Reads parcha photos and parses voice/text commands into structured bill/inventory data | Parcha images (transient), command text/transcripts |
| Sarvam AI | Speech-to-text for voice commands (Indian languages) | Voice recordings (transient) |
| Deepgram | Fallback speech-to-text | Voice recordings (transient, only when Sarvam is unavailable) |
Where your data lives. Your data is stored in Google Cloud data centres. Our backend runs in the asia-south1 (Mumbai, India) region; some Google services (such as Authentication, Analytics, and Crashlytics) may process or store data in other Google Cloud regions, including outside India, per Google's infrastructure. All transfers are protected by encryption in transit.
Each processor is bound by its own terms to process data only to provide the service to us.
5. Your customers' data — your responsibilities
LenDan is a tool for shopkeepers. When you enter your customers' or suppliers' names and phone numbers, record khata entries about them, or send them reminders:
- You are the "data fiduciary" (the DPDP Act's term for the party who decides why and how personal data is used) for that data. We act as your data processor — we store and process it only so the App can work for you.
- You are responsible for having the right to use that data — for example, telling your customers you keep their number for the credit ledger, and honouring their requests to correct or delete their information (the App lets you edit and manage party records for this).
- Reminder and statement messages are sent from your own WhatsApp/SMS — the App only drafts them; you review and send. Use them lawfully and don't spam.
We never contact your customers ourselves, and we never use their details for anything other than serving you.
6. How long we keep data (retention)
- Your data is kept as long as your account is active, so your ledger and history remain available to you.
- Voice recordings and parcha images: not stored by us at all (Section 2.2).
- Crash/analytics data: retained per Firebase's standard retention periods.
- Account deletion: deleting your account (below) removes your shop data from our systems, except where Indian law requires us to retain something (e.g. tax or accounting obligations), in which case we keep only what the law requires, for only as long as it requires.
7. Deleting your account and data
Open More → Delete Account in the App. You'll confirm with an OTP, after which your account is signed out and your shop's data is queued for deletion from our systems.
If you can't access the App, you can also request deletion by contacting the grievance officer below — we'll verify you own the account (via the registered phone number) and process the request.
8. Your rights under the DPDP Act, 2023
As a user in India you have the right to:
- Access — ask for a summary of the personal data we hold about you and how it has been processed.
- Correction and erasure — have inaccurate data corrected and data that's no longer needed erased. (Most of your data is directly editable in the App; account deletion is in Section 7.)
- Grievance redressal — complain to us and get a timely response (below).
- Nominate — nominate another person to exercise these rights for you in case of death or incapacity.
If you're not satisfied with our response, you may escalate to the Data Protection Board of India.
To exercise any right, contact the grievance officer:
Grievance Officer: Sushovan Das
Phone / WhatsApp: +91 88985 83879
Email: dev.sushovandas@gmail.com
We aim to acknowledge grievances within 72 hours and resolve them within the timelines prescribed under the DPDP Act and its rules.
9. Security
- All data is encrypted in transit (TLS) and encrypted at rest by Google Cloud.
- Access to your shop's data is restricted to your signed-in account by server-side security rules — no other user can read or write it.
- AI provider API keys are kept on our servers, never inside the App.
- The App stores a local offline copy of your data on your device so it works without internet; protect your device with a screen lock.
No system is perfectly secure. If we become aware of a breach affecting your personal data, we will notify you and the authorities as the DPDP Act requires.
10. Children
LenDan is a business tool intended for adults (18+) running a shop. We do not knowingly collect data from children. Do not use the App if you are under 18.
11. Changes to this policy
If we change this policy, we'll update the "Last updated" date above and, for material changes, notify you in the App. Continued use after a change means you accept the updated policy.
12. Contact
Mrityika99 Technologies (OPC) Private Limited
Balbhadrapur, Dantan, West Bengal 721426, Paschim Medinipur, India
Email: dev.sushovandas@gmail.com
Phone / WhatsApp: +91 88985 83879