Privacy Policy for moPos
Last updated: June 01, 2026
This privacy policy explains how moPos ("we", "our", or "us") collects, uses, and protects your information when you use our Point of Sale application.
1. Information We Collect
1.1 Business Information
- Business Data: Store name, address, currency settings, tax settings, and other receipt requirements/preferences
- Product Data: Product names, prices, barcodes, stock levels, suppliers, categories and other product related fields
- Sales Transactions: Items sold, quantities, prices, payment methods, timestamps, and cashier information
1.2 User Information
- Staff Credentials: User IDs, names, roles (admin/manager/cashier), and encrypted PINs
- Login History: Records of user logins for security auditing
1.3 Device Information
- Device model and operating system version (for compatibility)
- App version and crash reports (for improvement purposes)
- Device Identifier: A unique device ID derived from your device's hardware serial number or machine ID. This is used to generate unique receipt/invoice numbers and to identify which device made changes during cloud synchronization
2. How We Use Your Information
- POS Operations: Process sales, manage inventory, print receipts/labels, and calculate taxes
- Business Analytics: Generate sales reports, data visualisations and track inventory levels
- Cloud Synchronization: Optionally sync data to Firebase for multi-device access
- Low Stock Alerts: Send email notifications when products need restocking
- Security: Authenticate users and prevent unauthorized access
3. Data Storage
3.1 Local Storage
All data is primarily stored locally on your device in JSON format. This includes products, sales records, user credentials, and configuration settings
3.2 Cloud Storage (Optional)
If you enable Firebase synchronization, your data (products, sales, users) will be stored on Google Firebase servers. You can switch between local-only and cloud modes at any time. Maintenance operations allow purging cloud data when needed. Based on your business needs, it is up to you whether you use this functionality or not.
4. Data Sharing
We do not sell, trade, or share your data with third parties. Your business data is yours alone. The only exception is:
- Email Service: If you enable low stock alerts or report sending, your email credentials are used solely to send those communications via Gmail's SMTP service
- Firebase (Google): If you enable cloud sync, data is stored on Google's Firebase platform, governed by Google's privacy policy and security standards
5. Data Security
- User PINs are stored using SHA-256 hashing (one-way encryption)
- Local data is stored in your device's private app storage, inaccessible to other apps
- Cloud data is transmitted over HTTPS and stored on Firebase's secure infrastructure
- Bluetooth printing is local only and does not transmit data over the internet
- Device ID is used solely for receipt numbering and sync tracking. It does not contain personal information and cannot be used to identify individuals.
6. User Control and Rights
You have full control over your data:
- View: All data is accessible through the app's interface
- Export: Sales reports can be generated and exported as CSV files
- Delete: Products, sales records, and users can be permanently deleted from within the app (Maintenance tab). Type-to-confirm protection prevents accidental deletion. Deleting users resets admin to default PIN
- Maintenance: The app provides maintenance tools to verify data integrity between local and cloud storage, and to permanently purge all products, sales, or users when needed. These operations require explicit confirmation and execute on app restart
- Cloud Control: You can enable or disable Firebase synchronization at any time
- Data Removal: Uninstalling the app removes all local data. Firebase data can be deleted through the Firebase console or through the app's maintenance tools
7. Permissions We Request
- Internet: For optional Firebase sync and email alerts
- Bluetooth: For connecting to receipt/label printers
- Storage: For saving sales data reports, crash reports, product import template and receipts/labels locally when no printer is configured
- Location: Required by Android for Bluetooth device scanning (not used for tracking)
8. Children's Privacy
moPos is a business application intended for use by adults. We do not knowingly collect information from children
9. Changes to This Policy
We may update this privacy policy from time to time. Changes will be reflected in the app's settings and on this page
10. Third-Party Services
moPos integrates with the following third-party services:
© 2026 moPos. All rights reserved.