Privacy Policy

1. Introduction

Finlens ("we", "our", "us") is a product of Kredo Analytics. This Privacy Policy explains how we collect, use, store, and protect your information when you use our financial reporting platform at finlens.kredo.in.

By using Finlens, you agree to the collection and use of information as described in this policy.

2. Information We Collect

We collect the following categories of information:

• Account Information: Your name, email address, phone number, and password (hashed) when you register.
• Zoho API Credentials: Client ID, Client Secret, and OAuth tokens required to connect your Zoho Books organization. These are encrypted at rest using AES-256 encryption.
• Financial Data (Cached): Trial balance, chart of accounts, reporting tags, and transaction summaries fetched from your Zoho Books account. This data is cached temporarily (up to 6 hours) for performance and is not stored permanently.
• MIS Configuration: Custom bucket mappings and tagging configurations you upload via Excel.
• Billing Information: Subscription plan, payment history, and wallet transactions. Payment processing is handled by Razorpay — we do not store credit card or bank details.
• Usage Data: Pages visited, features used, and session information for improving our product.

3. How We Use Your Information

• To provide and operate the Finlens reporting platform
• To connect to your Zoho Books account and generate financial reports
• To process payments and manage your subscription
• To send important service updates and notifications
• To improve our platform based on usage patterns
• To provide customer support

4. Data Security

We take data security seriously:

• Encryption in Transit: All data between your browser and our servers is encrypted via HTTPS/TLS.
• Encryption at Rest: Zoho API credentials are encrypted using AES-256 before storage in our database.
• OAuth Security: We use Zoho's OAuth 2.0 protocol. We never see or store your Zoho username or password.
• Temporary Caching: Financial data is cached for performance (up to 6 hours) and can be manually refreshed or cleared anytime.
• No Raw Data Storage: We do not permanently store your raw transaction data, invoices, bills, or ledger entries.
• Payment Security: All payment processing is handled by Razorpay, a PCI DSS compliant payment gateway.

5. Third-Party Services

We integrate with the following third-party services:

• Zoho Books API: To fetch your financial data for reporting. Data flows directly via API and is cached temporarily.
• Razorpay: For subscription payment processing. Razorpay handles all card/bank data securely.

We do not sell, rent, or share your personal or financial data with any other third parties for marketing or advertising purposes.

6. Data Retention

• Account Data: Retained as long as your account is active. Deleted upon account closure request.
• Cached Financial Data: Automatically expires after 6 hours. Can be manually cleared from the dashboard.
• MIS Configurations: Retained as long as your account is active.
• Payment Records: Retained for 7 years as required by Indian tax regulations.

7. Your Rights

You have the right to:

• Access: Request a copy of your personal data stored with us.
• Correction: Update or correct inaccurate information from your profile.
• Deletion: Request deletion of your account and associated data.
• Revoke Zoho Access: Disconnect your Zoho Books organization at any time from the Companies page or from your Zoho Developer Console.
• Data Portability: Export your MIS configurations and report settings.

8. Cookies

We use essential cookies for session management and authentication. We do not use tracking cookies, advertising cookies, or analytics from third-party ad networks.

9. Children's Privacy

Finlens is a B2B financial reporting tool and is not intended for use by individuals under the age of 18. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or an in-app notification. Continued use of Finlens after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights:

• Email: info@kredo.in
• Company: Kredo Analytics, Bengaluru, India