Legal
Privacy Policy
Effective: 2026-05-25. Compliant with Bangladesh PDP Act 2023, Apple App Store privacy nutrition labels, and Google Play Data Safety requirements.
What we collect
When you use PharmacyOS, we process: your pharmacy's operational data (sales, inventory, prescriptions), your staff's authentication data (email, hashed password, TOTP secret), and your customers' transaction records (phone, name, drug profile — only with their consent under PDP Act 2023 §5).
Where it lives
Each tenant's business data lives in their own isolated Cloudflare D1 database, encrypted at rest and in transit. No shared database. No third-party analytics has access to your pharmacy's records.
How long we keep it
- Sales / invoices — 6 years (NBR Mushak retention requirement)
- Audit log — archived to R2 after 90 days; never deleted
- Customer data — until customer requests deletion (PDP Act §16); within 30 days after request
- Authentication data — until account deletion; passwords hashed with PBKDF2-SHA256 (100,000 iterations)
Your rights (PDP Act 2023)
- Right to access (PDP §14) — request a CSV+SQLite export of your data
- Right to correction (PDP §15) — edit any inaccurate data at any time
- Right to deletion (PDP §16) — request erasure; honored within 30 days
- Right to portability (PDP §17) — receive your data in a standard format
- Right to object (PDP §18) — opt out of processing for non-essential purposes
Sharing
We share data only with DGDA on lawful official request, with our cloud sub-processors listed in the sub-processor list (Cloudflare, payment providers when enabled), and with no one else. We never share data with marketers, advertisers, or analytics platforms.
Breach notification
We commit to notifying you within 72 hours of any confirmed data breach affecting your pharmacy (PDP Act 2023 §22).
Contact
Data Protection Officer: privacy@pharmacyos.app