Privacy Policy

1. Introduction

Welcome to Idhinisha ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.

Idhinisha is a financial approval platform that helps organizations manage financial requests, approvals, and reporting in a secure and transparent manner.

2. Information We Collect

2.1 Personal Information

When you register and use our app, we may collect:

• Full name and contact information (email address, phone number)
• Organization or company details
• Job title and role within your organization
• Profile picture (optional)
• Authentication credentials (encrypted passwords)

2.2 Financial Information

• Financial request details and amounts
• Budget information and expense categories
• Approval workflows and decision records
• Transaction history and retirement documentation
• Supporting documents and receipts

2.3 Technical Information

• Device information (device type, operating system, app version)
• Usage analytics and app performance data
• IP address and general location information
• App interaction logs and session data

2.4 Communication Data

• Messages and notifications within the app
• Customer support communications
• Feedback and survey responses

3. How We Use Your Information

3.1 Primary Services

• Process and manage financial requests and approvals
• Facilitate multi-level approval workflows
• Generate reports and analytics
• Maintain audit trails for compliance
• Send notifications about request status changes

3.2 Platform Improvement

• Analyze usage patterns to improve our services
• Develop new features and functionality
• Ensure platform security and prevent fraud
• Provide customer support and technical assistance

3.3 Communication

• Send important service updates and notifications
• Respond to your inquiries and support requests
• Share relevant product updates (with your consent)

4. Information Sharing and Disclosure

4.1 Within Your Organization

We share information within your organization as necessary for the approval process, including with designated approvers, finance teams, and administrators as configured in your organization's settings.

4.2 Service Providers

We may share information with trusted third-party service providers who assist us in:

• Cloud hosting and data storage
• Payment processing
• Analytics and performance monitoring
• Customer support services

4.3 Legal Requirements

We may disclose information when required by law, court order, or to protect our rights, users, or the public from harm.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction.

5. Data Security

We implement robust security measures to protect your information:

• Encryption: All data is encrypted in transit and at rest using industry-standard protocols
• Access Controls: Strict role-based access controls and authentication requirements
• Regular Audits: Ongoing security assessments and vulnerability testing
• Secure Infrastructure: Enterprise-grade cloud infrastructure with multiple security layers
• Data Backups: Regular encrypted backups with secure recovery procedures

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Active Accounts: Data is retained while your account is active
• Financial Records: Financial data may be retained for up to 7 years for compliance purposes
• Deleted Accounts: Personal data is deleted within 90 days of account deletion, except where retention is required by law
• Backup Data: Data in backups may persist for up to 12 months

7. Your Rights and Choices

7.1 Access and Control

• Access: Request access to your personal information
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data (subject to legal requirements)
• Portability: Request a copy of your data in a portable format

7.2 Communication Preferences

• Opt out of non-essential communications
• Customize notification settings within the app
• Choose your preferred communication channels

7.3 Account Settings

You can update your privacy settings, manage data sharing preferences, and control visibility of your information through your account settings.

8. Children's Privacy

Idhinisha is designed for business and organizational use. We do not knowingly collect personal information from children under 13 years of age. If we become aware that we have collected information from a child under 13, we will take steps to delete such information promptly.

9. International Data Transfers

Your information may be transferred to and processed in countries other than Tanzania. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.

10. Third-Party Services

Our app may contain links to third-party services or integrate with external platforms. This Privacy Policy does not apply to those services. We encourage you to read the privacy policies of any third-party services you use.

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes through:

• In-app notifications
• Email notifications to your registered email address
• Updates on our website

Your continued use of the app after such notifications constitutes acceptance of the updated policy.

12. Contact Information

13. Compliance

This Privacy Policy is designed to comply with applicable privacy laws and regulations, including:

• Tanzania Data Protection Act
• General Data Protection Regulation (GDPR) where applicable
• Google Play Store privacy requirements
• Other applicable international privacy standards