Privacy Policy
NexaTill · Effective 24 June 2026
This Privacy Policy explains how NexaTill ("NexaTill", "we", "us") handles information when you use the NexaTill point-of-sale application for iPad and Android tablets (the "App"). By creating an account and using the App, you agree to the practices described here.
1. Who we are
NexaTill is operated by an independent developer based in the Philippines. For any privacy question or request, contact us at nexatill.support@gmail.com.
2. Information we collect
Account information
- Your name, email address, and (optionally) phone number, provided when you create your owner account.
- Your password, stored securely by our authentication provider (we never see it in plain text).
- The names and pincodes of staff you add. Staff sign in under your account by pincode; they do not create their own accounts.
Business data you enter
- Your business profile, products, categories, taxes, payment methods, and printer settings.
- Your sales history, orders, shifts, and reports generated as you use the App.
- Any customer details you choose to add to a sale (see Section 6).
Subscription & purchase information
- If you subscribe to a paid plan, your subscription status, plan tier, and renewal/expiry are recorded so we can unlock the right features. Payments are processed by Apple or Google; we do not receive or store your card details.
Crash logs & diagnostics
- If the App crashes, we collect crash reports and basic diagnostic information (such as device model, operating-system version, and the app's state at the time) to find and fix problems.
Device identifiers
- A per-installation device identifier used to enforce your plan's device limit and to associate crash reports with an install. This includes identifiers generated by our service providers (e.g. a Firebase Installation ID).
3. How we use your information
- To run the App — authenticate you, store and sync your business data, and provide the point-of-sale features.
- To manage your account — sign-in, email verification, password reset, and your subscription.
- To enforce plan limits — e.g. the number of active devices on your plan.
- To keep the App reliable — diagnose crashes and improve stability.
We do not use your data for advertising, and we do not sell your data.
4. Service providers
We use a small number of trusted providers who process data on our behalf, under their own security and privacy commitments:
- Google Firebase (Authentication, Firestore database, Crashlytics) — account sign-in, cloud storage/sync of your business data, and crash reporting. See Google's Firebase privacy information.
- RevenueCat — manages your subscription entitlements. See the RevenueCat privacy policy.
- Apple App Store / Google Play — process subscription payments. See their respective privacy policies.
5. How we share information
We do not sell your personal information and do not share it with third parties for their own purposes. We share data only with the service providers above (acting on our behalf), or where required by law.
6. Data about your customers
If you add customer details to a sale, you (the business owner) are responsible for that information and are its data controller; NexaTill merely stores it on your behalf as part of your account. You are responsible for having any consent or notice your local laws require to collect and store your customers' details.
7. Data storage, retention & deletion
- Your data is stored on your device (locally) and, on paid plans with cloud sync, in Google Firebase.
- We keep your data for as long as your account is active.
- You can permanently delete your account and all associated data at any time from Settings → Subscription → Delete account in the App, or by following the steps at nexatill.web.app/delete-account. Deletion is irreversible.
8. Security
All data transmitted between the App and our servers is encrypted in transit (HTTPS/TLS). On your device, your business data is stored in an encrypted database (encryption at rest), with the encryption key kept in the device's secure storage (the iOS Keychain or Android Keystore). We rely on Google Firebase's infrastructure security for data stored in the cloud. No method of transmission or storage is 100% secure, but we take reasonable measures to protect your information.
9. International data transfers
Our service providers may store and process data on servers located outside your country (for example, Google's data centers). By using the App, you consent to such transfers.
10. Children
NexaTill is a business tool intended for users aged 18 and over. It is not directed at children, and we do not knowingly collect personal information from anyone under 18.
11. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can exercise most of these directly in the App, or contact us at nexatill.support@gmail.com. We honour rights under the Philippines Data Privacy Act of 2012, and, where applicable, the EU/UK GDPR and the California CCPA/CPRA.
12. Changes to this policy
We may update this Privacy Policy from time to time. We will revise the "Effective" date above and, for material changes, provide notice in the App or by email. Continued use of the App after an update means you accept the revised policy.
13. Contact us
Questions or requests about your privacy? Email nexatill.support@gmail.com.