Privacy Policy
Last updated: July 18, 2026
At Cashvio, your trust is the foundation of everything we build. This Privacy Policy explains what information we collect, why we collect it, how we use and protect it, and the rights and choices you have over it.
It applies to the Cashvio website, the merchant dashboard, the point-of-sale applications, online storefronts we host for merchants, and all related services (together, the "Services"). By using the Services, you acknowledge that you have read and understood this policy.
1. Who We Are and Scope of This Policy
The Services are operated by Cashvio Technologies ("Cashvio", "we", "us", or "our"), headquartered in Cairo, Egypt.
We act in two distinct roles. For the personal information of merchants, their staff, and visitors to our own websites, we are the data controller — we decide how and why that information is processed. For the information that merchants store about their own customers (such as customer profiles and purchase history), we act as a data processor — we process it only on the merchant's behalf and instructions, as described in the section "Your Customers' Data" below.
2. Information We Collect
We collect information in three ways: information you provide to us directly, information generated automatically when you use the Services, and information we receive from third parties (such as payment providers confirming a transaction). This includes:
- Account information — your name, email address, phone number, password (stored only in hashed form), preferred language, and profile settings.
- Business information — your business name, store names and addresses, business type, tax and registration details, logo and branding assets.
- Transaction and operations data — orders, invoices, receipts, refunds, payment methods used, product catalogs, inventory movements, shift records, and reports generated from them.
- Billing information — the subscription plan you choose and billing history. Card payments are processed by licensed payment providers; we never store full card numbers on our servers.
- Customer records you create — information about your own customers that you enter into the platform, such as their names, contact details, purchase history, balances, and store credit.
- Device and usage data — IP address, browser and device type, operating system, pages visited, features used, referral URLs, timestamps, and crash or error diagnostics.
- Cookies and similar technologies — as described in the "Cookies and Analytics" section below.
- Communications — messages, support requests, feedback, and recordings of support conversations where permitted by law.
3. How We Use Your Information
We use the information we collect only for purposes that are compatible with running, protecting, and improving the Services:
- Provide and operate the Services — creating your account, running your point of sale and storefront, processing orders, and syncing your data across devices.
- Secure the platform — authenticating logins, enforcing permissions, detecting and preventing fraud, abuse, and unauthorized access.
- Support you — responding to your questions, troubleshooting problems, and notifying you about incidents that affect your account.
- Improve and develop — analyzing aggregated usage patterns to fix issues, improve performance, and build new features.
- Communicate — sending service announcements, security alerts, billing notices, and (with your consent or where permitted) product news and offers you can opt out of at any time.
- Comply with the law — meeting our accounting, tax, and other legal obligations, and responding to lawful requests from authorities.
We do not use your business data — such as your sales figures, margins, or customer lists — to compete with you, and we never sell it to third parties.
4. Legal Bases for Processing
Where data protection law requires a legal basis for processing (such as the EU GDPR or similar laws), we rely on: performance of our contract with you (to deliver the Services you signed up for); our legitimate interests (to secure, improve, and market the Services in ways that do not override your rights); your consent (for optional marketing and non-essential cookies, which you can withdraw at any time); and compliance with legal obligations (such as retaining tax records).
5. Your Customers' Data
When you record information about your own customers in Cashvio — for example a customer profile, order history, or store credit balance — you are the data controller of that information and we process it strictly on your behalf.
We process such data only to provide the Services to you, never for our own marketing, and we do not contact your customers except as needed to deliver features you actively use (such as sending a digital receipt at your request). You are responsible for collecting your customers' data lawfully, informing them about how it is used, and honoring their privacy requests. If a customer contacts us directly about data you control, we will refer them to you and provide reasonable assistance.
8. International Data Transfers
We may store and process your information on servers located outside the country where you live, including through cloud infrastructure providers operating in multiple regions. Whenever we transfer personal information across borders, we take steps to ensure it receives an adequate and consistent level of protection, including contractual safeguards with our service providers, and we comply with applicable data-transfer requirements.
9. Data Retention
We keep your information for as long as your account is active and as needed to provide the Services. Transaction and billing records are retained for the period required by applicable tax, accounting, and commercial laws even after account closure.
When retention is no longer necessary, we delete or irreversibly anonymize the data. Residual copies may persist in encrypted backups for a limited period until those backups expire on their regular cycle.
10. How We Protect Your Data
We apply layered technical and organizational safeguards designed to protect your information against unauthorized access, alteration, disclosure, or destruction:
- Encryption in transit (TLS) for all connections and encryption at rest for stored data.
- Passwords stored using strong one-way hashing — we can never read your password.
- Strict tenant isolation, so one business's data is never visible to another.
- Role-based access controls and the principle of least privilege for both our systems and your staff accounts.
- Continuous monitoring, logging, and automated alerting for suspicious activity.
- Regular backups and a tested incident-response process.
No system can be guaranteed 100% secure, but if we become aware of a breach affecting your personal information, we will notify you and the relevant authorities without undue delay, as required by law.
11. Your Rights and Choices
Depending on where you live, you may have some or all of the following rights regarding your personal information:
- Access — request a copy of the personal information we hold about you.
- Correction — ask us to fix inaccurate or incomplete information.
- Deletion — ask us to delete your personal information, subject to legal retention requirements.
- Portability — receive your data in a structured, commonly used, machine-readable format.
- Objection and restriction — object to or ask us to limit certain processing.
- Withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior processing.
- Complain — lodge a complaint with your local data-protection authority.
To exercise any of these rights, contact us using the details below. We may need to verify your identity before acting on a request, and we will respond within the timeframe required by applicable law (and in any case within 30 days wherever feasible).
12. Marketing Communications
We may send you news about features, tips, and offers related to Cashvio. You can opt out at any time using the unsubscribe link in any marketing email or through your notification settings. Opting out does not affect essential service communications, such as security alerts, billing notices, and legal or policy updates.
13. Children's Privacy
The Services are business tools and are not directed at children. We do not knowingly collect personal information from anyone under 16 years of age. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
14. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in the Services, technology, or the law. If we make material changes, we will notify you by email or through a prominent notice in the Services before the changes take effect, and we will update the "Last updated" date above. We encourage you to review this page periodically.
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, contact our privacy team at [email protected] or write to Cashvio Technologies, Cairo, Egypt. We aim to respond to every privacy inquiry promptly.