Privacy Policy

1. Introduction

Docuro AI ("we," "us," or "our") is an AI-powered accounting automation platform designed for businesses, Chartered Accountants, tax consultants, and professionals across India. We understand that the information you entrust to us — whether it’s your firm’s operational data or your clients’ financial documents — is among the most sensitive you handle. This Privacy Policy explains precisely what information we collect, how we use it, how we protect it, and the rights you have regarding your data.

We are committed to transparency, responsible data practices, and full compliance with the expectations of a modern fintech-grade SaaS platform. By using Docuro AI (the "Platform"), you agree to the practices described in this policy. If you do not agree, please discontinue use of our services.

This policy applies to all users of the Docuro AI platform, including web and mobile applications, and any other services we offer.

2. Information We Collect

To provide our accounting automation services effectively, we need to collect certain categories of information. We only collect what is necessary to operate, improve, and secure the platform.

a) Personal Information

When you create an account or interact with our services, we may collect:

Your full name
Email address
Mobile phone number
Company or firm name
Professional designation (e.g., Chartered Accountant, tax consultant)
Billing address and payment details (processed securely through our payment partners) (details about our payment processing are shared in Section 6)

This information is used to create and maintain your account, verify your identity, send service communications, and provide support.

b) Financial & Document Data

Docuro AI is built to process accounting documents. When you use the platform, you may upload:

Invoices (images, PDFs, WhatsApp-forwarded bills)
GST documents and returns
Vouchers, receipts, and purchase orders
Financial statements and ledger data
Any other accounting-related records

From these documents, our AI systems extract metadata such as vendor names, GSTINs, invoice numbers, dates, taxable amounts, tax breakdowns, and HSN codes. This extracted data, along with the original files, is stored securely within your account workspace. We consider all document content and its derived structured data as sensitive financial information.

c) Technical Information

When you access Docuro AI, we automatically collect certain technical data to ensure security, performance, and a smooth user experience. This may include:

IP address
Device type and operating system
Browser type and version
App version and usage logs
Timestamps of logins and specific feature interactions
Error and crash reports

We use this data for diagnostics, analytics, and to prevent unauthorised access.

3. How We Use Information

Your data is used strictly for purposes directly related to providing, maintaining, and improving the Platform. We do not sell your data to third parties. Specifically, we use collected information to:

Process and extract relevant fields from uploaded invoices and financial documents using AI
Automate GST calculations, ledger creation, voucher generation, and Tally exports
Provide you with a personalised dashboard showing processing statuses, pending reviews, duplicate alerts, and reports
Improve the accuracy and performance of our AI models (in an anonymized or aggregated manner where possible)
Send you service-related notifications (e.g., “Invoice processed”, “Trial expiring”)
Provide customer support and respond to your queries
Detect and prevent fraudulent or unauthorised activity
Comply with legal obligations and resolve disputes
Analyze platform usage trends to enhance user experience and develop new features

All data processing is performed within secure cloud infrastructure with strict access controls. We do not use your document data for any purpose other than delivering the accounting automation service you have subscribed to.

4. AI Processing Disclosure

Docuro AI uses artificial intelligence (including optical character recognition and large language models) to automate accounting workflows. Specifically:

Invoice Data Extraction: When you upload an invoice, our AI reads and extracts information such as vendor name, GST number, invoice date, taxable amount, and tax components.
GST & Accounting Logic: The platform automatically calculates tax liabilities, categorises transactions, and creates ledger entries based on extracted data and Indian GST rules.
Duplicate & Anomaly Detection: We use pattern matching to flag potential duplicate invoices and suspicious transactions.

Important: While our AI achieves a high level of accuracy on typical Indian invoices, no automated system is flawless. We provide a confidence score for each extraction and strongly recommend that you review all AI-generated outputs before using them for official filings, Tally exports, or client reporting. Docuro AI does not guarantee 100% accuracy, and you remain responsible for the final verification of your accounting data.

By using the platform, you acknowledge that your documents may be processed by automated means, and you consent to such processing as an integral part of the service.

5. Data Security

We maintain administrative, technical, and physical safeguards designed to protect your information against accidental loss, unauthorized access, alteration, or disclosure. Our security practices include:

Encryption in Transit: All data exchanged between your device and our servers is encrypted using TLS 1.3 (or higher) protocols.
Encryption at Rest: Sensitive data stored on our servers is encrypted using AES-256 encryption.
Access Control: Access to production systems and customer data is strictly limited to authorized personnel only, enforced through multi-factor authentication and role-based permissions.
Network Security: We deploy firewalls, intrusion detection, and regular vulnerability scans to protect our infrastructure.
Monitoring: We continuously monitor for suspicious activity and security incidents.

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to rapidly addressing any verified vulnerability and notifying affected users in accordance with applicable laws.

6. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data or uploaded financial documents. We may share information only in the limited circumstances described below:

Service Providers: We engage trusted third-party companies to facilitate certain aspects of our platform. These include:
- Payment Processing (e.g., Razorpay): When you subscribe to a paid plan, your payment information is collected and processed directly by our PCI-DSS compliant payment gateway. We do not store your full credit card or bank details on our servers.
- Cloud Infrastructure & AI Services: We use reputable cloud providers (e.g., Supabase, Google Cloud) and AI APIs (e.g., Gemini) to host the platform and perform document processing. These providers are contractually bound to process data only on our instructions and with equivalent security standards.
- Analytics & Error Tracking: We use industry-standard analytics tools (such as Firebase Analytics and Crashlytics) to understand platform usage and improve stability. These tools collect pseudonymized technical information.
Legal Compliance: We may disclose information if required to do so by law, in response to valid legal requests by public authorities, or to protect the rights, property, or safety of Docuro AI, our users, or the public.
Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, user data may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on our website of any change in ownership or use of your data.

All third-party integrations are carefully vetted. We do not share your uploaded invoices or extracted financial data with any external parties except those necessary to provide the core service (as listed above) and under strict confidentiality.

7. Cookies & Analytics

Our web platform may use small text files called “cookies” to enhance user experience, remember preferences, and analyse traffic. We may use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted) for purposes such as:

Keeping you signed in
Understanding how you interact with the platform (via analytics)
Improving performance and functionality

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, disabling cookies may affect the functionality of certain parts of the platform.

Our mobile applications do not use conventional cookies, but we do collect pseudonymous usage data through Firebase Analytics or similar tools. This data helps us understand feature usage patterns and optimise the app experience.

8. Data Retention

We retain your data only for as long as it is necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting obligations.

Account Data: Your profile and subscription information is retained for the life of your account plus a reasonable grace period after cancellation to allow for reactivation. If you request account deletion, we will remove your personal information within 30 days, except where retention is required by law.
Uploaded Documents & Extracted Data: Invoices and their derived data remain in your account workspace until you decide to delete them or your account is terminated. You may delete individual documents at any time. Upon account deletion, all associated files and data will be permanently removed from our active systems within 90 days.

Please note that anonymized or aggregated data, from which individual identities cannot be recreated, may be retained indefinitely for research and product improvement purposes.

9. User Responsibilities

Protecting your data is a shared responsibility. While Docuro AI implements strong security measures, you also play a crucial role:

Keep your login credentials (email and password) confidential and do not share them with anyone.
Immediately notify us at support@docuroai.in if you suspect any unauthorized access to your account.
Ensure that you have the necessary consent from your clients before uploading their financial documents to the platform.
Regularly review AI-processed outputs for accuracy before relying on them for tax filings or financial reporting.
Maintain appropriate backups of your critical data. Docuro AI provides cloud storage but you are advised to export important records periodically.

10. Children's Privacy

Docuro AI’s services are intended solely for users who are at least 18 years of age. We do not knowingly collect personal information from anyone under 18. If we become aware that we have inadvertently received personal information from a child, we will promptly delete it.

11. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other operational needs. When we do, we will revise the “Last Updated” date at the top of this page and, for material changes, provide a more prominent notice (such as an in-app alert or email notification). We encourage you to review this policy periodically to stay informed about how we are protecting your information.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the details below.

Docuro AI
Email: support@docuroai.in
Phone: +91-7388913179
Working Hours: Monday–Saturday, 10:00 AM – 7:00 PM (IST)
Location: India

We are committed to addressing your privacy concerns promptly and transparently.

This Privacy Policy is designed to be comprehensive, honest, and compliant with the expectations of a trusted fintech SaaS platform. It forms part of our larger commitment to building reliable, secure, and responsible AI-powered accounting infrastructure for India.

Privacy Policy — Docuro AI