1.1 Account Information

When you create an account, we collect:

• Email address (required for login and communication)
• Password (encrypted and stored securely)
• Account creation date and verification status
• Subscription plan and billing preferences
• Onboarding payment information (processed via Paystack)

1.2 Business Information

To provide our Service, we collect information about your business:

• Shop Details: Shop names, locations, addresses, contact information
• Product Catalog: Product names, descriptions, prices, categories, SKUs, stock levels
• Sales Data: Transaction records, sale amounts, payment methods, timestamps, receipts
• Staff Information: Staff names, roles, permissions, access PINs (encrypted), activity logs
• Customer Data (if collected): Names, phone numbers, purchase history (only if you choose to collect this)

1.3 Usage Information

We automatically collect certain information when you use the Service:

• IP address and general location (city/country level)
• Device type, browser type, and operating system
• Pages visited, features used, and time spent
• Error logs and performance metrics
• Login times and activity patterns

1.4 Payment Information

Payment processing is handled by secure third-party payment processors. We do not store your full payment card details. Our payment processor collects:

• Mobile Money account information
• Credit/debit card details (stored securely by the payment processor, not us)
• Transaction history and payment status
• Billing address (if required)

For more information on how your payment data is processed, please review the payment processor's privacy policy during checkout.

We use the information we collect for the following purposes:

2.1 Service Provision

• Create and manage your account
• Enable you to manage shops, products, and sales
• Process transactions and generate receipts
• Track inventory and stock levels
• Manage staff access and permissions
• Generate sales reports and analytics
• Provide customer support and troubleshooting

2.2 Billing and Payments

• Process the onboarding verification fee
• Charge subscription fees according to your plan
• Send billing statements and payment receipts
• Handle refund requests and payment disputes
• Prevent fraud and unauthorized transactions

2.3 Communication

• Send account verification emails
• Notify you of subscription renewals and payment issues
• Provide customer support responses
• Send important service updates and announcements
• Deliver marketing communications (only if you opt in - you can unsubscribe anytime)

2.4 Improvement and Analytics

• Analyze usage patterns to improve the Service
• Identify and fix bugs and technical issues
• Develop new features based on user needs
• Optimize performance and user experience
• Generate aggregate statistics (anonymized)

2.5 Security and Fraud Prevention

• Verify account legitimacy (onboarding fee purpose)
• Detect and prevent fraudulent activities
• Monitor for suspicious behavior or security threats
• Enforce our Terms of Service
• Protect our systems and other users

We do NOT sell your personal or business data to third parties.

We only share your information in the following limited circumstances:

3.1 Service Providers

• Payment Processors: Trusted payment services to process subscriptions and onboarding fees
• Cloud Infrastructure: Secure cloud hosting providers for database storage, user authentication, and backend services
• Email Services: Transactional email providers for account notifications and communications
• Hosting Providers: Web hosting and content delivery services

These providers have access only to the information necessary to perform their services and are obligated to protect your data.

3.2 Legal Requirements

We may disclose your information if required by law or to:

• Comply with legal processes (court orders, subpoenas)
• Enforce our Terms of Service
• Protect our rights, property, or safety
• Prevent fraud or illegal activities
• Respond to government or regulatory requests

3.3 Business Transfers

If Yemame POS is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your data is transferred and subject to a different privacy policy.

3.4 Aggregated Data

We may share aggregated, anonymized data that cannot identify you:

• Industry trends and insights
• Platform usage statistics
• Marketing materials and case studies

We implement industry-standard security measures to protect your data:

4.1 Technical Safeguards

• Encryption: All data in transit is encrypted using industry-standard protocols
• Password Protection: Passwords are securely hashed and salted using modern cryptographic algorithms
• PIN Security: Staff PINs are encrypted before storage
• Database Security: Multi-layered database access controls and security rules
• Regular Backups: Automated backups for disaster recovery and data protection

4.2 Access Controls

• Role-based access control (admin, staff, user permissions)
• Two-factor authentication for admin accounts
• Session timeouts for inactive accounts
• Activity logging and monitoring

4.3 Limitations

While we use reasonable security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we continuously work to improve our safeguards.

You are responsible for:

• Keeping your password and account credentials secure
• Not sharing staff PINs with unauthorized persons
• Reporting any suspected security breaches immediately
• Using secure devices and networks when accessing the Service

We retain your information for as long as necessary to provide the Service and comply with legal obligations:

5.1 Active Accounts

• All data is retained while your account is active and in good standing
• You can access, modify, or delete your data at any time through the Service

5.2 Deleted/Terminated Accounts

• Upon account deletion, you have 30 days to export your data
• After 30 days, all personal and business data is permanently deleted
• Some data may be retained longer for legal, tax, or regulatory compliance (up to 7 years)
• Anonymized analytics data may be retained indefinitely

5.3 Backup Retention

Backup copies may persist for up to 90 days after deletion but are not accessible and will be automatically purged.

You have the following rights regarding your personal data:

6.1 Access and Portability

• View Your Data: Access all your account and business data through the Service
• Export Your Data: Request a copy of your data in a machine-readable format (CSV, JSON)
• Data Portability: Transfer your data to another service provider

6.2 Correction and Deletion

• Update Information: Modify your account and business details at any time
• Delete Data: Remove specific shops, products, sales, or staff records
• Delete Account: Permanently delete your entire account and all associated data

6.3 Communication Preferences

• Unsubscribe: Opt out of marketing emails at any time (transactional emails still required)
• Notification Settings: Control which notifications you receive

6.4 Object and Restrict

• Object to processing of your data for marketing purposes
• Request restriction of processing in certain circumstances
• Withdraw consent for optional data collection

To exercise these rights, contact us at privacy@yemame.com. We will respond within 30 days.

We use cookies and similar technologies to enhance your experience:

7.1 Essential Cookies

• Authentication cookies to keep you logged in
• Session cookies for security and functionality
• Preference cookies to remember your settings

7.2 Analytics Cookies

• Usage tracking to understand how you use the Service
• Performance monitoring to identify issues
• Feature usage statistics to improve the product

7.3 Your Control

You can control cookies through your browser settings. Note that disabling essential cookies may affect Service functionality.

The Service may contain links to third-party websites or integrate with third-party services (e.g., Paystack, social media). We are not responsible for the privacy practices of these third parties.

We encourage you to review the privacy policies of any third-party services you use in connection with Yemame POS.

Yemame POS is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children.

If you believe we have collected information from a child under 18, please contact us immediately at privacy@yemame.com and we will delete it promptly.

Your information may be transferred to and processed in countries other than Ghana, including countries with secure data center facilities.

These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to these locations. We ensure appropriate safeguards are in place to protect your data.

We may update this Privacy Policy from time to time. When we make changes:

• We will update the "Last Updated" date at the top of this page
• For material changes, we will notify you via email or through the Service
• Changes take effect immediately upon posting unless otherwise stated
• Your continued use after changes constitutes acceptance of the new policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We aim to respond to all privacy inquiries within 30 days.