LOTHIANSPOS

Privacy Policy

Introduction

LOTHIANSPOS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our Software-as-a-Service (SaaS) platform.

By using our service, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

We collect the following information when you create an account:

  • Name: Your name or business name
  • Email Address: Used for account authentication and communication
  • Business Information: Details about your business, including business name, address, and other relevant information you provide

Usage Data

We automatically collect information about how you interact with the platform, including:

  • Login times and session duration
  • Features and pages accessed
  • Device information (browser type, operating system)
  • IP address and general location data

Business Data

You may store business-related data on our platform, including:

  • Sales transactions
  • Inventory information
  • Customer data
  • Product information
  • Other business records

Payment Processing

Payment processing is handled securely through PowerTranz, a PCI DSS compliant payment processor. We do not store full credit card numbers on our systems.

Tokenization

For recurring billing, we use tokenization. This means that instead of storing your full card number, we store a secure token that can only be used by our payment processor to charge your account. This token cannot be used to retrieve your actual card number.

Payment Information

The following payment-related information may be stored:

  • Payment method type (e.g., Visa, Mastercard)
  • Last four digits of card number (for identification purposes only)
  • Billing address
  • Payment history and transaction records

Full card numbers, CVV codes, and expiration dates are never stored on our systems.

Data Storage

Your data is stored on Firebase cloud infrastructure, which provides:

  • Secure Cloud Storage: Industry-standard security measures and data redundancy
  • Cross-Device Access: Access your data from any authorized device
  • Real-Time Synchronization: Changes are synchronized across all your devices in real-time
  • Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS (Transport Layer Security)

Data Location

Firebase infrastructure may store data in multiple geographic regions. By using our service, you consent to the storage of your data in Firebase's secure data centers, which may be located outside of Jamaica.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our service
  • Process payments and manage your subscription
  • Send you important service-related communications
  • Respond to your inquiries and support requests
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: Data is encrypted in transit using TLS
  • Access Controls: Strict access controls limit who can access your data
  • Authentication: Secure authentication mechanisms protect your account
  • PCI Compliance: We follow PCI DSS best practices for payment data security
  • Regular Security Audits: We regularly review and update our security measures

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.

Your Rights

You have the following rights regarding your personal information:

Data Access

You may request access to the personal information we hold about you. To make such a request, please contact us using the information provided below.

Data Correction

You may update or correct your account information at any time through your account settings.

Account Deletion

You may request deletion of your account and associated data. Upon account deletion, we will remove your personal information from our systems, subject to any legal obligations to retain certain records.

Note: Some information may be retained for a limited period after account deletion to comply with legal obligations, resolve disputes, or enforce our agreements.

Cookies and Tracking

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze how you use our service. You can control cookie settings through your browser preferences.

Third-Party Services

Our service integrates with third-party services, including:

  • Firebase: For data storage and hosting
  • PowerTranz: For payment processing

These services have their own privacy policies. We encourage you to review their policies to understand how they handle your information.

Children's Privacy

Our service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. You are advised to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: lothiansrgm@gmail.com
Phone: +1-876-829-7062

Last Updated: March 2026