Privacy Policy — ELOS
Effective Date: April 2026 | Last Updated: April 2026
This Privacy Policy explains how ELOS Software Service ("we", "our", "us") processes information through the ELOS mobile application (the "App"). The App is a companion dashboard for business owners using the ELOS Accounting desktop software and is intended for the shop owner's use only.
Quick Summary
| Item | Status |
|---|
| We collect tracking ads or behavioral analytics | No |
| We sell your data to third parties | No |
| We use Google Analytics / Crashlytics | No |
| We show ads | No |
| All communication is encrypted (TLS) | Yes |
| You can request data deletion anytime | Yes |
1. Information We Process
1.1 Account Information
- Email address: used for authentication via Supabase Auth.
- Password: never stored on the device and never sent to us directly — authentication is handled entirely by Supabase.
- License activation code: recorded in our database to link your device to your shop's license.
1.2 Business Data (Displayed, Read-Only)
The App displays the business data belonging to your shop and already present in your ELOS account:
- Sales, inventory, clients, suppliers
- Repair tickets, employees
- Cash drawer and safe transactions, purchases, warehouses
The App does not modify this data — all edits are made from the ELOS desktop software.
1.3 Data the App Writes (System-Only)
For full transparency, the App writes only to a limited set of operational system tables:
- mobile_sessions: device session identifier + last-active timestamp — used to limit the number of devices per account.
- fcm_tokens: Firebase notification token + platform (Android) — used to deliver notifications.
- mobile_licenses: your shop's license/trial status.
- notifications (only the
is_read field): to mark a notification as read.
1.4 Local Storage on Your Device
The App uses Android's secure SharedPreferences to store only the following preferences:
elos_device_id: a random UUID identifying your device session.theme_mode: your light/dark theme preference.notifications_enabled: your notification preference.whatsapp_footer_message: an optional footer text for WhatsApp repair updates.
No passwords or authentication tokens are stored on the device.
1.5 Camera Access
The camera is used only to scan a QR code during initial pairing with the ELOS desktop software. The code is decoded in memory and sign-in credentials are passed directly to Supabase. No images or video are saved, logged, or transmitted.
2. How We Use Information
- To authenticate the account owner.
- To display your business data that already exists in your account.
- To deliver operational notifications (new sale, low stock, repair ticket ready, etc.).
- To maintain a secure session between app launches.
- To verify license status and subscription validity.
We do not use your data for advertising, marketing, behavioral profiling, or resale.
3. Service Providers
We rely on only two providers to operate the App:
- Supabase — database and authentication. Your data is hosted on Supabase servers and isolated via Row-Level Security (RLS) using your account ID. (privacy policy)
- Google Firebase Cloud Messaging (FCM) — push notifications only. We do not use Firebase Analytics, Crashlytics, or Firestore. (privacy policy)
4. External Links the App May Open
The App may open the following links based solely on user interaction:
- Phone calls (
tel:): when tapping a client or supplier's phone number inside the App.
- WhatsApp (
wa.me): to send repair ticket status updates to the customer — the message contains ticket details (number, device, status, price).
These actions are user-initiated.
5. File Export and Sharing
The App allows exporting account statements as PDF files. These files contain transaction history, client/supplier names, and their phone numbers. They are generated in-device memory and shared via Android's native share sheet — the App does not automatically upload them to any server or cloud service.
6. Data We Do NOT Collect
- ❌ We do not collect your geolocation.
- ❌ We do not collect device fingerprints (IMEI, Serial, MAC, IP).
- ❌ We do not access your contacts.
- ❌ We do not collect browsing history.
- ❌ We do not access your photo or media library.
- ❌ We do not collect SMS or call logs.
- ❌ We do not use any advertising or analytics SDKs.
7. Security
- 🔒 All communication between the App and Supabase/Firebase is encrypted with TLS.
- 🔒 Each shop's data is isolated via Row-Level Security.
- 🔒 Passwords are never stored on the device — authentication uses a short-lived JWT managed by Supabase.
- 🔒 Periodic technical review of the App.
8. Data Retention
Business data is retained for as long as your account is active. Upon a deletion request:
- All data associated with your account is deleted from Supabase within 30 days.
- Your device's FCM token is removed from our tables immediately.
- Backups may retain data for a limited additional period before full purging.
9. Children's Privacy
The App is a business tool not directed at children under 13. We do not knowingly collect information from children.
10. Permissions We Request
- Internet (required): to sync your data with your account.
- Camera (optional): only to scan the pairing QR code — you can decline and enter credentials manually.
- Post Notifications (optional): to deliver business alerts — you can disable these from the App settings.
11. Your Rights
You may at any time:
- Access your stored data.
- Correct inaccurate information (via the ELOS Desktop software).
- Export your data in a readable format.
- Request permanent deletion of your account and data.
- Withdraw consent for data processing.
To exercise any of these rights, contact us (Section 12).
12. Contact
ELOS Software Service
El Mahalla El Kubra, Gharbia, Egypt
Email: support@elos-system.com
13. Changes to This Policy
We may update this policy from time to time. The "Last Updated" date at the top reflects any changes. Material changes will be announced in-app.