Privacy Policy

Last Updated: March 21, 2026

1. Introduction

This Privacy Policy explains how WhisprBill ("we", "us", or "our") collects, uses, stores, and protects your information when you access or use our platform (the "Service").

By using WhisprBill, you consent to the practices described in this Privacy Policy.

2. Who This Policy Applies To

This Privacy Policy applies to:

  • Users of the WhisprBill application
  • Visitors to our website
  • Individuals who interact with our services or contact us

3. Information We Collect

3.1 Account Information

  • Name
  • Email address
  • Phone number (if provided)
  • Authentication-related data (via third-party providers such as Supabase or OAuth providers)

3.2 Business and Financial Data

  • Invoice data
  • Customer information
  • Product and inventory data
  • Business-related details (including GST-related fields if provided)

3.3 AI Input and Interaction Data

  • Text prompts and inputs provided to AI features
  • Structured data generated from such inputs
  • Interaction history used to improve system performance and reliability

3.4 Usage and Technical Data

  • Server logs and activity records
  • Device and browser information
  • IP address

We may also collect analytics data on our landing page using tools such as Google Analytics.

3.5 Payment Information

Payments are processed via third-party payment providers (e.g., Razorpay).

We do not store complete payment card or banking details. Such information is handled by the respective providers in accordance with their policies.

4. How We Use Your Information

We use your information to:

  • Provide and operate the Service
  • Generate invoices and manage workflows
  • Process subscriptions and payments
  • Improve product performance and reliability
  • Debug, monitor, and fix issues
  • Respond to user queries and support requests
  • Detect and prevent fraud or misuse
  • Comply with legal obligations

We may also use aggregated and anonymized data for analytics and product improvement.

5. AI Data Processing

WhisprBill uses AI to assist with data entry and workflows.

  • Inputs provided by you may be processed by third-party AI providers
  • We aim to use providers that do not retain or train on your data
  • However, we do not guarantee zero retention in all cases

We may store prompts and outputs to:

  • improve system reliability
  • debug incorrect responses
  • enhance user experience

AI-generated outputs may be inaccurate, and you are responsible for verifying all information before use.

6. Data Sharing and Disclosure

We do not sell your personal data.

We may share your data with:

6.1 Service Providers

  • Cloud hosting providers (e.g., AWS)
  • Database and authentication providers (e.g., MongoDB, Supabase)
  • Payment processors (e.g., Razorpay)

These providers may process data on our behalf and are expected to maintain reasonable security standards.

6.2 Legal Requirements

We may disclose your information if required by law, regulation, or legal process.

6.3 Business Transfers

In the event of a merger, acquisition, or restructuring, your data may be transferred as part of business assets.

7. Data Storage and Retention

  • Data is stored on infrastructure primarily located in India (e.g., AWS Mumbai region), though some third-party services may process data outside India
  • We retain your data as long as your account is active or as necessary to provide the Service
  • We may retain certain data to comply with legal, tax, or regulatory requirements

You may delete specific data (such as invoices or customers) through the platform. Full account deletion may not currently be available.

8. Data Security

We implement reasonable technical and organizational safeguards to protect your data.

However:

  • No system is completely secure
  • We do not guarantee absolute security

You are responsible for maintaining the confidentiality of your account credentials.

9. Cookies and Tracking

We use cookies and similar technologies on our website to:

  • understand user behavior
  • improve website performance
  • analyze traffic using tools such as Google Analytics

You can control cookie preferences through your browser settings.

10. Communications

By using the Service, you agree to receive service-related communications, including:

  • account notifications
  • transaction updates
  • important product updates

We may introduce marketing communications in the future, and you may be given options to opt out where applicable.

11. Your Rights

Subject to applicable laws, you may:

  • access your personal data
  • request correction of inaccurate data
  • request deletion of certain data
  • withdraw consent where applicable

Some requests may be limited due to legal or operational requirements.

12. Data Breach

In the event of a data breach affecting your personal information, we will take reasonable steps to investigate and mitigate the issue and notify affected users where appropriate.

13. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect data from minors.

14. Third-Party Services

Our Service may include integrations or links to third-party platforms.

We are not responsible for the privacy practices of such services, and you should review their policies separately.

15. Disclaimer

While we take reasonable steps to protect your data, we are not responsible for any loss or damage arising from:

  • unauthorized access
  • data breaches
  • technical failures
  • user negligence

You are responsible for maintaining backups of critical data.

16. Changes to This Policy

We may update this Privacy Policy from time to time.

Continued use of the Service after updates constitutes acceptance of the revised policy.

17. Governing Law

This Privacy Policy is governed by the laws of India. Any disputes shall be subject to the jurisdiction of courts in Bengaluru, India.

18. Contact

For any questions, concerns, or requests related to this Privacy Policy, contact:

contact@whisprbill.com