Privacy Policy

1. Introduction

InteriorOS ("we", "our", or "us") is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, store, and share information when you use the InteriorOS platform, including our web application, mobile applications (iOS and Android), and any related services (collectively, the "Service").

By accessing or using InteriorOS, you agree to the terms of this Privacy Policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

We collect information in several ways to provide, improve, and personalize our Service.

2.1 Personal Information

When you register for an account, create a studio profile, or interact with the Service, we may collect:

• Full name, email address, and phone number
• Studio or business name and address
• Role within your organization (e.g., owner, supervisor, designer)
• Profile photo, if provided
• Billing and payment information when subscribing to paid plans

2.2 Usage Data

We automatically collect information about how you interact with the Service, including:

• Pages and features accessed, actions taken, and time spent
• Projects created, daily progress reports submitted, and tasks managed
• Search queries within the application
• Interaction patterns and feature usage frequency
• Error logs and crash reports

2.3 Device Information

When you access InteriorOS from a device, we may collect:

• Device type, model, and operating system version
• Unique device identifiers
• Browser type and version (for web app usage)
• IP address and approximate geographic location
• Network information (Wi-Fi or mobile data)

3. How We Use Your Information

We use the information we collect for the following purposes:

• Provide and operate the Service — to create and manage your account, enable project management features, process payments, and deliver daily progress reports and notifications.
• Improve and personalize — to understand usage patterns, fix bugs, develop new features, and tailor the experience to your studio's needs.
• Communicate with you — to send transactional notifications (e.g., approval requests, payment reminders, milestone alerts), respond to support inquiries, and share important product updates.
• Ensure security — to detect and prevent fraud, unauthorized access, and other harmful activities.
• Legal compliance — to comply with applicable laws, regulations, and legal processes.
• Analytics and research — to analyze aggregated, anonymized usage trends to improve our platform for all users.

4. Data Storage & Security

We take the security of your data seriously and implement industry-standard measures to protect it.

• Encryption — All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption.
• Access controls — We enforce strict role-based access controls internally. Only authorized personnel can access user data, and only when necessary for support or operational purposes.
• Infrastructure — Our Service is hosted on secure, SOC 2 compliant cloud infrastructure with regular security audits and vulnerability assessments.
• Backups — We perform automated daily backups to ensure data integrity and availability.
• Data isolation — Each organization's data is logically isolated. Team members belonging to multiple organizations cannot cross-access data between them.

While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security but are committed to promptly notifying affected users in the event of a data breach.

5. Third-Party Services

We may share limited information with trusted third-party service providers who assist in operating our Service:

• Payment processing — We use third-party payment processors to handle billing. We do not store your full credit card or bank details on our servers.
• Cloud hosting — Our infrastructure providers store and process data on our behalf under strict data processing agreements.
• Analytics — We use analytics tools to understand usage patterns. Data shared with these providers is anonymized or pseudonymized wherever possible.
• Communication services — We use third-party providers for sending emails, SMS (OTP verification), and push notifications.

We do not sell your personal information to third parties. We only share data with third parties as described in this policy or with your explicit consent.

6. Your Rights

You have the following rights regarding your personal data:

6.1 Access

You may request a copy of the personal information we hold about you at any time. We will respond to such requests within 30 days.

6.2 Correction

If any of your personal information is inaccurate or incomplete, you can update it directly through your account settings, or contact us to request a correction.

6.3 Deletion

You may request the deletion of your account and associated personal data. Upon receiving such a request, we will delete your data within 30 days, except where we are required to retain it by law or for legitimate business purposes (e.g., financial records for tax compliance).

6.4 Data Portability

You have the right to request your data in a structured, commonly used, machine-readable format (such as CSV or JSON). This includes project data, financial records, and any other information you have contributed to the platform.

To exercise any of these rights, please contact us at privacy@interioros.app.

7. Cookies

InteriorOS uses cookies and similar technologies to enhance your experience:

• Essential cookies — Required for the Service to function, such as maintaining your login session and remembering your preferences.
• Analytics cookies — Help us understand how users interact with our platform so we can improve it. These cookies collect anonymized data.
• Functional cookies — Enable enhanced functionality and personalization, such as remembering your preferred language or most recently accessed projects.

We do not use advertising or tracking cookies. You can manage cookie preferences through your browser settings. Note that disabling essential cookies may affect the functionality of the Service.

8. Children's Privacy

InteriorOS is designed for business use by interior design professionals and is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have inadvertently collected data from a child under 16, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@interioros.app so we can take appropriate action.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:

• Update the "Last updated" date at the top of this page
• Notify you via email or an in-app notification if the changes are significant
• Provide a summary of key changes where applicable

We encourage you to review this page periodically to stay informed about how we protect your data. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please reach out to us:

• Email: privacy@interioros.app
• Address: InteriorOS, Hyderabad, Telangana, India

We aim to respond to all privacy-related inquiries within 5 business days.