Legal

Privacy Policy

Last updated: February 2026

1. Introduction

Zipybills (“Company”, “we”, “us”) operates the FactoryOS platform. This Privacy Policy explains how we collect, use, store, and protect your information when you use our Service. We are committed to protecting your privacy and ensuring the security of your data. By using FactoryOS, you consent to the practices described in this policy.

2. Information We Collect

We collect the following types of information:

2.1 Account Information

  • Company name and workspace URL (slug)
  • Administrator full name, username, and email address
  • Password (stored securely using industry-standard hashing)
  • Factory details — number of machines, industry type, and operational scale (collected during onboarding to configure your pilot)

2.2 Manufacturing Data

  • Machine configurations, production data, and cycle times
  • Quality parameters (CTQ/CTP readings and checksheet data)
  • Downtime events, reason codes, and maintenance records
  • Energy consumption data
  • Tool inventory, calibration, and usage records
  • Work instruction content and operator acknowledgments

2.3 Usage Data

  • Login timestamps, session duration, and feature usage patterns
  • Browser type, device information, and IP address
  • Pages visited within the application

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve the FactoryOS platform
  • Account Management: To create and manage your workspace, authenticate users, and configure your free pilot deployment
  • Communication: To send important service updates, security alerts, and support responses
  • Analytics: To understand how the Service is used and improve features (aggregated, anonymized data only)
  • Security: To detect, prevent, and address technical issues and security threats
  • Compliance: To comply with legal obligations and enforce our Terms of Service

4. Data Isolation & Multi-Tenancy

FactoryOS uses a multi-tenant architecture where each customer's data is completely isolated. Your manufacturing data, user information, and configurations are stored in your own dedicated database schema. No other customer or tenant can access your data. This isolation is enforced at the database level and cannot be bypassed through the application.

5. Data Storage & Security

We implement the following security measures:

  • Encryption in Transit: All data transmitted between your browser and our servers uses TLS/SSL encryption
  • Encryption at Rest: Databases are encrypted at rest using AES-256 encryption
  • Password Security: User passwords are hashed using bcrypt with salt rounds
  • Access Controls: Role-based access control (RBAC) ensures users only access data relevant to their role
  • Audit Logging: All sensitive operations are logged for audit and compliance purposes
  • Regular Backups: Automated daily backups with point-in-time recovery capability

6. Data Sharing

We do not sell, rent, or trade your personal or manufacturing data to third parties. We may share limited information only in the following circumstances:

  • With Your Consent: When you explicitly authorize us to share data with a third party
  • Service Providers: With trusted hosting providers (e.g., cloud infrastructure) who process data on our behalf under strict confidentiality agreements
  • Legal Requirements: When required by law, subpoena, or government request
  • Business Transfer: In connection with a merger, acquisition, or sale of assets (with prior notice)

7. Google API Services & Google Drive Integration

FactoryOS offers an optional Google Drive integration for tenant administrators to back up their manufacturing data to their own Google Drive account. This section describes how we access, use, store, and share Google user data.

7.1 What We Access

  • drive.file scope: Permission to create and manage files that FactoryOS itself creates in your Google Drive (specifically, a “FactoryOS Backups” folder). We cannot access, read, or modify any other files in your Drive.
  • Email address: Your Google account email address, used only to display which account is connected in the app settings.

7.2 How We Use Google Data

  • We use Drive access exclusively to upload encrypted backup files of your own manufacturing data to your connected Google Drive account.
  • We store your Google OAuth refresh token securely in our database, encrypted at rest, solely to perform authorized backups on your behalf.
  • Your Google email is stored to show you which account is connected — it is never used for marketing or shared with third parties.

7.3 What We Do NOT Do

  • We do not read, download, or process any pre-existing files in your Google Drive.
  • We do not share your Google account data or tokens with any third party.
  • We do not use Google data for advertising, profiling, or any purpose beyond the backup feature you explicitly enable.
  • We do not transfer your Google data to AI or machine learning systems.

7.4 Revoking Access

You can disconnect Google Drive at any time from Settings → Backup & Data → Google Drive → Disconnect. This immediately deletes your stored OAuth tokens from our servers. You can also revoke access directly from your Google Account permissions page.

7.5 Compliance with Google API Services User Data Policy

FactoryOS's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

8. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. If you choose to terminate your account, we will retain your data for 30 days to allow data export, after which it will be permanently deleted from our systems. Usage logs and anonymized analytics data may be retained for up to 12 months for service improvement purposes.

9. Your Rights

You have the following rights regarding your data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate personal data
  • Deletion: Request deletion of your personal data (subject to legal retention requirements)
  • Export: Export your manufacturing data in standard formats (CSV, JSON) at any time
  • Restriction: Request limitation of processing of your personal data
  • Objection: Object to processing of your personal data for specific purposes

To exercise any of these rights, please contact us at contact@factoryos.in.

10. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies. Essential cookies are required for the Service to function and cannot be disabled. We may use anonymized analytics cookies to understand usage patterns — these do not collect personal information.

11. On-Premise Deployments

For customers who choose on-premise deployment, all data resides on your own servers within your own network. In this case, Zipybills does not have access to your data unless you explicitly grant remote access for technical support purposes. The security of on-premise data is your organization's responsibility, and we provide guidelines and best practices for securing the deployment.

12. Children's Privacy

FactoryOS is a business application designed for manufacturing operations. We do not knowingly collect personal information from children under the age of 18. If we become aware that a child has provided us with personal information, we will take steps to delete such information.

13. Changes to This Policy

We reserve the right to update or replace this Privacy Policy at any time, at our sole discretion, with or without prior notice. Changes are effective immediately upon posting to this page. We may — but are not obligated to — notify you of material changes via email or an in-platform notice. We encourage you to review this page periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the revised Privacy Policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at: contact@factoryos.in