Privacy Policy

Last updated: 2026-05-27T00:00:00.000Z

This Privacy Policy describes how Inayat Enterprises (“we”, “our”, or “us”) collects, uses, and discloses your information when you use the EliteRepairPro mobile application (the “App”).

We take your privacy seriously. This policy is written in plain language so you actually understand what we do with your data.

1. Who we are

EliteRepairPro is a repair shop management application developed by Inayat Enterprises, a business registered in India.

  • Business name: Inayat Enterprises
  • Registered address: [YOUR_BUSINESS_ADDRESS]
  • GSTIN: [YOUR_GSTIN]
  • Contact email: inayatenterprises7@gmail.com
  • Support phone: [YOUR_SUPPORT_PHONE]

2. Information we collect

Information you provide directly

When you sign up and use the App, you provide:

  • Account credentials: your phone number (for OTP login) and/or email address and password.
  • Shop profile: shop name, address, GST number (optional), logo, signature image, bank account details (optional, for invoice display).
  • Customer records you create: customer name, phone, address, email, ID proof number (e.g. Aadhaar — stored masked), profile photo.
  • Repair job records: device brand/model, IMEI, lock pattern/PIN (if you choose to record it), accessories submitted, photos of device condition, customer signature on delivery, payment history.
  • Inventory records: part names, supplier, cost prices, stock levels.
  • Dealer records: dealer name, contact, credit ledger entries.
  • Second-hand phone records: brand, model, IMEI, purchase price, repair expenses, sale price, photos of phone condition and documents.

Information collected automatically

  • Crash reports (Firebase Crashlytics) — only collected in production builds. Helps us fix bugs.
  • Performance metrics (Firebase Performance Monitoring) — only collected in production builds. App start time, screen load time, network latency.
  • Anonymous analytics (Firebase Analytics) — feature usage patterns, NEVER your customer/job data.

Information we do NOT collect

We do not collect:

  • Your location
  • Your contacts
  • Your call logs
  • Your SMS messages
  • Your photo library (we only access photos you explicitly pick or capture via the App’s camera)

3. How we use your information

We use your information to:

  1. Operate the App — store and sync your shop’s records across your devices.
  2. Authenticate you — Firebase Auth (Phone OTP, Email/Password).
  3. Provide support — respond to your questions via the contact email.
  4. Diagnose problems — Crashlytics crash reports + Performance metrics help us identify bugs and slow paths.
  5. Comply with legal obligations — respond to lawful requests from Indian authorities if required.

We do not use your data to:

  • Sell or share with advertisers
  • Train AI models
  • Profile you for behavioural advertising
  • Send marketing emails about other products

4. Where your data lives

  • Firestore database (Google Cloud, asia-south1 region — India) — your shop records.
  • Cloud Storage (Google Cloud, India region) — photos and documents you upload.
  • Firebase Auth (Google) — your login credentials, encrypted.
  • Crashlytics + Performance + Analytics (Google Firebase) — diagnostic data.

All data is encrypted in transit (TLS 1.2+) and at rest (Google Cloud’s standard encryption).

5. Who we share data with

We share your data only with:

  • Google Cloud / Firebase — our hosting provider. They process data on our behalf, do not have rights to use it, and are bound by their own privacy commitments.
  • Indian government authorities — only if compelled by a valid legal order, and only the specific data requested.

We do not share your data with any other third party, ever.

6. Your customers’ data

When you create customer records in the App, you act as the data controller for that information. Your customers’ data is stored under your shop’s account. We process it solely on your behalf.

You are responsible for:

  • Informing your customers that you store their information digitally.
  • Honouring their requests to view, correct, or delete their information.
  • Complying with India’s DPDPA (Digital Personal Data Protection Act) and any applicable consumer laws.

7. Data retention

  • While your account is active: we retain all your data so the App works.
  • After you request deletion (Settings → Delete Account): a 30-day grace period during which you can sign back in to reactivate the account with all data intact.
  • After 30 days from deletion request: all your data is permanently deleted from our servers — Firestore documents, Storage files, and your authentication record. This is irreversible.

8. Your rights

Under India’s DPDPA, you have the right to:

  • Access the personal data we hold about you (visible in the App at all times).
  • Correct inaccurate data (edit it directly in the App).
  • Delete your account and all associated data (Settings → Delete Account).
  • Withdraw consent (uninstall the App + delete account).
  • Lodge a complaint with India’s Data Protection Board if you believe your rights have been violated.

To exercise any of these rights, email us at inayatenterprises7@gmail.com.

9. Security measures

  • Firebase App Check Play Integrity — blocks API requests from anything that is not a genuine, signed copy of our App. Prevents reverse-engineered clones from accessing your data.
  • Per-user security rules — Firestore + Cloud Storage rules enforce that you can only read/write data under your own user ID. Other users cannot see your data even if they know your user ID.
  • Encrypted offline cache — the 100 MB local cache on your device is protected by Android’s app sandbox.
  • No password storage on our side — passwords are hashed and managed entirely by Firebase Auth.

10. Children’s privacy

The App is intended for use by adults running mobile repair businesses. We do not knowingly collect data from children under 18. If you believe a child has provided us data, contact us and we will delete it.

11. Changes to this policy

We may update this policy from time to time. The “Last updated” date at the top will reflect any changes. Material changes will be announced in-app on first launch after the change.

12. Contact us

For any privacy-related questions or to exercise your rights:

We respond to privacy requests within 30 days, in line with DPDPA requirements.