📅 Last Updated: December 30, 2025
📧 Contact Us: abby@abbyplus.com
📋 Table of Contents
- 1. Introduction
- 2. Information We Collect
- 3. How We Use Your Information
- 4. Data Storage and Security
- 5. Data Sharing and Disclosure
- 6. Third-Party Services
- 7. Your Rights and Choices
- 8. Permissions Explained
- 9. Children's Privacy
- 10. Data Retention
- 11. International Data Transfers
- 12. Changes to This Privacy Policy
- 13. Contact Us
- 14. Consent
1. Introduction
Welcome to Abby ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use the Abby mobile application.
By using Abby, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
2.1 Personal Information
- Account Information: Username, password, email address, and user ID
- Contact Information: Phone numbers and contact details (when you choose to add customers)
- Business Information: Company name, address, and phone number for invoicing purposes
- Authentication Data: Biometric data (fingerprint/face ID) stored locally on your device for app security
2.2 Device Information
- Device Identifiers: Android ID, device type
- Firebase Cloud Messaging (FCM) Token: For sending push notifications
- Network Information: Internet connection status, WiFi state
2.3 Email Account Information
When you connect your Gmail account in settings to send invoices via email:
- Gmail Address: Your connected Gmail account email
- Email Credentials: Securely stored authentication tokens (not passwords)
- Sent Email Data: Recipient email addresses, invoice attachments, email content
Important: We do not store your Gmail password. We use secure OAuth 2.0 authentication. You can disconnect your Gmail account at any time from settings.
2.4 Contacts
When you use the contact picker feature to add customers, we access:
- Contact names
- Phone numbers
- Email addresses
Important: We only access contacts you explicitly select. We do not automatically scan or upload your entire contact list.
2.5 Camera and Media
- Camera Access: For barcode/QR code scanning in inventory management
- Photo/Video Access: For attaching images to expenses and invoices
- Download Storage: For saving invoices, reports, and documents
2.6 Bluetooth
- Bluetooth Connection: For connecting to Bluetooth receipt printers
- Paired Devices: List of paired Bluetooth devices (for printer selection)
2.7 Usage Data
- App Activity: Pages visited, features used, login times
- WebView Data: Cookies, cached data, local storage for app functionality
- Location: Your general location (city/country) for location-dependent features
3. How We Use Your Information
3.1 Core Business Functions
- Invoicing & Quotations: Create, store, and manage invoices and quotations
- Inventory Management: Track products and services using barcode scanning
- Customer Management: Store customer details for invoicing purposes
- Expense Tracking: Record and categorize business expenses with photo attachments
- Tax Calculations: Calculate and track tax obligations
- Reports: Generate business reports and analytics
3.2 Communication
Push Notifications: Send alerts for:
- Quotation status alerts
- Payment reminders
- Inventory low-stock alerts
- Important business updates
Email Delivery:
- Send invoices and quotations directly to customer email addresses
- Automated payment reminders via email
- Business reports and statements via email
- Email sent using your connected Gmail account
Note: All emails are sent from YOUR Gmail account. We do not send emails on your behalf from our servers. You have full control over what emails are sent.
3.3 Authentication & Security
- Biometric Authentication: Secure app access using fingerprint/face ID
- Auto-Login: Remember your login for convenience (can be disabled)
- Screen Lock: Optional biometric lock when app is minimized
3.4 Third-Party Integrations
- Google Sign-In: Authenticate using your Google account
- Gmail Integration: Connect your Gmail to send invoices and reports via email
- WhatsApp Sharing: Share invoices directly to customers via WhatsApp
- PDF Generation: Create and share PDF invoices and reports
4. Data Storage and Security
4.1 Local Storage
The following data is stored locally on your device:
- Authentication tokens (encrypted)
- User preferences and settings
- Cached invoices and reports
- Temporary files (PDFs, images)
4.2 Server Storage
Your data is stored securely on our servers at:
- Base URL: https://abbyplus.com/abby/public
- Encryption: All data transmission uses HTTPS/TLS encryption
- Authentication: Token-based authentication for API requests
4.3 Security Measures
- Biometric Security: Optional fingerprint/face ID protection
- Secure Token Storage: Encrypted authentication tokens
- Session Management: Automatic logout after inactivity
- HTTPS Only: All network communication is encrypted
- Cookie Security: Secure cookie handling with third-party cookies accepted only for necessary services
5. Data Sharing and Disclosure
5.1 We Share Data With:
Google Services:
- Firebase Cloud Messaging (push notifications)
- Google Sign-In (authentication)
- Gmail API (when you connect your Gmail for sending invoices)
Gmail Integration: When you connect your Gmail account, we use Google's OAuth 2.0 authentication. We only access your Gmail to send emails you explicitly choose to send. We cannot read your existing emails or send emails without your action.
WhatsApp:
- Only when you explicitly choose to share invoices with customers
- We do not automatically send data to WhatsApp
5.2 We Do NOT:
- Sell your personal information to third parties
- Share your data with advertisers
- Access your full contact list without permission
- Track your location continuously
5.3 Legal Requirements
We may disclose your information if required by law or in response to valid legal requests from authorities.
6. Third-Party Services
6.1 Google Firebase
- Purpose: Push notifications, analytics
- Privacy Policy: https://firebase.google.com/support/privacy
6.2 Google Sign-In
- Purpose: Authentication
- Privacy Policy: https://policies.google.com/privacy
6.3 Gmail API
- Purpose: Sending invoices and reports via email
- Access: We only send emails when you explicitly choose to do so
- Permissions: Send emails only (we cannot read your emails)
- Privacy Policy: https://policies.google.com/privacy
Important: You can disconnect your Gmail account at any time from the app settings. This will not affect your Google account, only remove the connection to Abby.
6.4 WhatsApp
- Purpose: Sharing invoices with customers
- Privacy Policy: https://www.whatsapp.com/legal/privacy-policy
7. Your Rights and Choices
7.1 Account Control
- Access: View all your stored data within the app
- Update: Edit your profile and business information
- Delete: Request account deletion by contacting us
7.2 App Settings
You can control:
- Screen Lock: Enable/disable biometric security
- Notifications: Turn push notifications on/off
- Auto-Login: Enable/disable automatic login
- Contact Access: Grant or revoke contact permissions
- Gmail Connection: Connect or disconnect your Gmail account
- Email Preferences: Control which emails are sent automatically
7.3 Data Deletion
To delete your account and data:
- Contact us at abby@abbyplus.com
- We will delete your data within 30 days
- Some data may be retained for legal compliance (e.g., tax records)
8. Permissions Explained
8.1 Required Permissions
8.2 Optional Permissions
Note: You can deny these permissions, but some features may not work.
9. Children's Privacy
Abby is a business application intended for users aged 18 and above. We do not knowingly collect personal information from children under 18. If we discover that a child has provided us with personal information, we will delete it immediately.
10. Data Retention
- Active Accounts: We retain your data while your account is active
- Inactive Accounts: Data may be deleted after 2 years of inactivity
- Legal Requirements: Some financial data may be retained for 7 years for tax compliance
- Temporary Files: Cached PDFs and images are automatically deleted after 30 days
11. International Data Transfers
Your data may be transferred to and stored on servers located outside your country. We ensure appropriate safeguards are in place to protect your data in compliance with applicable laws.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Posting a notice in the app
- Sending a push notification
- Updating the "Last Updated" date
We encourage you to review this policy periodically.
13. Contact Us
If you have questions about this Privacy Policy or your data:
📧 Email: abby@abbyplus.com
🌐 Website: https://abbyplus.com
For data access, correction, or deletion requests, please contact us with:
- Your registered email address
- Account username
- Specific request details
We will respond within 30 days.
14. Consent
By using Abby, you consent to:
- This Privacy Policy
- Collection and use of your information as described
- Processing of your data for the purposes stated
You can withdraw consent at any time by:
- Disabling specific permissions in Android settings
- Adjusting app settings
- Deleting your account