Effective July 10, 2026

Privacy Policy

How we collect, use, share, and protect your information across the minimal platform.

01

Introduction

minimal (“minimal”, “we”, “us”, or “our”) provides a textile and garment ERP platform that helps manufacturers and wholesale sellers manage inventory, orders, invoicing, customers, and their overall business operations. This Privacy Policy explains what information we collect, why we collect it, and how it is used, shared, and protected when you use our website, mobile applications, and services (collectively, the “Service”).

By creating an account or using the Service, you agree to the collection and use of information in accordance with this policy.

02

Information We Collect

a. Account & Business Information

When you register for and use minimal, we collect:

  • Mobile number — used as your primary login identifier and verified via a one-time password (OTP).
  • Business name — the legal or trade name of your business as it appears on invoices, orders, and other business documents generated in the Service.
  • GST number — your Goods and Services Tax registration number, used for invoicing, tax compliance, and identity verification.
  • Business address — your registered or operating business address, used on invoices and for tax and compliance purposes.
  • Images — your business logo and product images you upload within the Service.

b. Payment & Subscription Information

minimal uses Razorpay as our third-party payment processor to manage subscription billing. When you subscribe to a paid plan, Razorpay collects and processes your payment details (such as card, UPI, net banking, or wallet information) directly. We do not store your full card numbers or banking credentials on our servers. We receive and store limited subscription-related information from Razorpay, such as subscription status, plan, billing cycle, invoice history, and transaction identifiers, to manage your account and provide support.

c. Usage & Device Information

We automatically collect certain information when you use the Service, including device type, operating system, browser type, IP address, log data, and how you interact with the Service (features used, pages visited, timestamps), to help us maintain security and improve the product.

d. Business Operations Data

As you use the Service, you and your team may enter data related to your business operations — such as inventory records, orders, customer details, pricing, and manufacturing data. This data is controlled by you (or your business) and is used solely to provide the Service to you.

03

How We Use Your Information

  • To create and authenticate your account using mobile number OTP verification.
  • To generate invoices, orders, and business documents using your business name, GST number, and address.
  • To process and manage subscription payments and billing through Razorpay.
  • To provide, maintain, and improve the features of the Service.
  • To send important account, billing, and service-related communications via SMS, WhatsApp, or email.
  • To detect, prevent, and address fraud, abuse, security incidents, and technical issues.
04

Data Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share data only in the following circumstances:

  • Within your business workspace: Business owners can see all team, order, inventory, and customer data within their business. Employees and salesmen only see data relevant to their assigned role — for example, salesmen have access to orders and customers with read-only inventory, while payments and team management are visible to owners only.
  • Payment processing:With Razorpay, to process subscription payments and manage billing on our behalf, subject to Razorpay’s own privacy policy.
  • Service providers: Trusted third-party services (SMS/OTP delivery, cloud hosting, infrastructure) that process data only as instructed and under confidentiality obligations.
  • Legal compliance: We may disclose data if required by law, court order, or to protect the rights, property, or safety of minimal, our users, or the public.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred, with prior notice provided.
05

Data Retention

We retain your data for as long as your account is active or as needed to provide the Service:

  • Account and business data is retained while your subscription is active.
  • Invoicing and tax-related records, including GST-linked information, may be retained for longer periods to comply with applicable statutory and accounting requirements.
  • After account termination, data is retained for 30 days to allow recovery, then permanently deleted, subject to any legal retention obligations.
  • You may request earlier deletion of your data by contacting us at support@minimalerp.com.
06

Data Security

We implement the following security measures:

  • Encryption in transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption.
  • No stored passwords: minimal uses mobile number OTP authentication only — we never ask for or store a password.
  • Role-based access: Each team member (owner, employee, or salesman) can only access data permitted by their assigned role within your business.
  • Scoped authentication tokens: Login tokens are scoped to your specific business account, preventing cross-business data access.
  • Secure token storage: Authentication tokens are stored on your device and sent only over encrypted connections; we recommend keeping your device and browser secured.

Despite our best efforts, no method of transmission over the internet is 100% secure. Please use a trusted device and keep access to your mobile number secure, as it is used to authenticate your account.

07

Your Rights

Under the Digital Personal Data Protection Act, 2023 (DPDPA) and other applicable laws, you have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to retention obligations.
  • Portability: Request your data in a structured, machine-readable format.
  • Withdraw consent: Withdraw consent for optional data processing at any time.

To exercise any of these rights, contact us at support@minimalerp.com. We will respond within 30 days.

08

Cookies & Local Storage

We use browser local storage to store your authentication token and to cache your active business context and UI preferences (such as theme) on your device.

We do not use tracking cookies or third-party advertising cookies. Storage required for platform operation (such as keeping you signed in) cannot be disabled without affecting core functionality.

09

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by displaying a prominent notice in the Service or via the mobile number/email associated with your account. Continued use of the Service after changes are posted constitutes acceptance of the updated policy.

10

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at support@minimalerp.com and we will respond within 30 business days.