Privacy Policy for ProAudits

Last Updated: July 10, 2025

AmbraiSoft LTD ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use the ProAudits application ("ProAudits" or the "App"), available on Web, iOS, and Android platforms. ProAudits provides tools for conducting audits, certifications, and managing checklists, routines, and role-based access to forms, including integration with business organizational structures and dashboards for detailed statistics. This policy applies to both free and subscription-based users, as well as business clients using ProAudits.

By using ProAudits, you agree to the collection and use of your personal data as described in this Privacy Policy. If you do not agree, please do not use the App.

1. Company Information

AmbraiSoft LTD is the operator of ProAudits. You can contact us at:

  • Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
  • Email: support@ambraisoft.com

2. Information We Collect

We collect the following personal data when you use ProAudits:

  • Personal Information: When you sign up for ProAudits (via email or third-party services such as Telegram, Google, or Apple), we collect your name, email address, and phone number.
  • Usage Data: We may automatically collect information about your device (e.g., device type, operating system, IP address) and how you interact with the App (e.g., pages visited, features used).
  • Cookies and Tracking Technologies: On our web platform, we use cookies through NextAuth to manage user authentication and sessions. We provide a cookie consent mechanism for web users to control non-essential cookies.

We do not collect sensitive data such as financial information or confidential business data beyond what is necessary for the App's functionality.

3. How We Use Your Data

We use your personal data solely to provide and improve the functionality of ProAudits, including:

  • Creating and managing your account.
  • Enabling role-based access to forms and integration with your business organizational structure.
  • Providing dashboards with statistics about branches, auditors, and managers.
  • Authenticating users via third-party services (e.g., Telegram, Google, Apple).
  • Communicating with you about your account or updates to the App.

We do not use your data for marketing purposes or share it for advertising.

4. Data Sharing

We do not share your personal data with third parties, except in the following limited circumstances:

  • Third-Party Service Providers: We use Twilio for one-time password (OTP) authentication and Stripe for payment processing for subscription-based accounts. These providers process data on our behalf and are bound by strict confidentiality and data protection agreements.
  • Legal Obligations: We may disclose your data if required by law, such as in response to a court order or government request, or to protect our rights, property, or safety.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to a successor entity, subject to equivalent privacy protections.

We do not sell your personal data to any third parties.

5. Data Storage and Security

Your personal data is stored securely on a MongoDB cluster with access controls to prevent unauthorized access. We implement industry-standard security measures, including encryption and restricted access protocols, to protect your data. Data is retained only for the duration of your account's activity. If your account is deleted, your personal data is securely removed from our systems in accordance with applicable laws.

6. Your Data Rights

As a user of ProAudits, you have the following rights regarding your personal data:

  • Access: You can view your personal data through the App or web interface.
  • Correction: You can update or correct your data directly in the App or web interface.
  • Deletion: You can delete your account and associated data through the App or web interface.
  • Data Portability: You can export your data using our API, as described in the App's documentation.

To exercise these rights, please use the relevant features in the App or contact us at support@ambraisoft.com. We will respond to your requests in accordance with applicable laws, including GDPR.

7. Business Clients

For business clients using ProAudits to manage audits, certifications, or organizational workflows, we act as a data processor on your behalf. The personal data you or your users input into ProAudits (e.g., employee names, roles, or audit data) is processed strictly to provide the App's services. We do not use this data for any other purpose. Business clients are responsible for ensuring that their use of ProAudits complies with applicable data protection laws, including obtaining consent from their users or employees where required. Upon request, we can provide a Data Processing Agreement (DPA) to outline our responsibilities as a data processor. Please contact support@ambraisoft.com for more information.

8. International Data Transfers

ProAudits is available in the European Union (EU) and the Commonwealth of Independent States (CIS) region. We comply with GDPR for EU users and applicable regional laws for CIS users. If your data is transferred outside the EU or CIS, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), to protect your data in accordance with GDPR requirements.

9. Cookies and Tracking Technologies

On our web platform, we use cookies through NextAuth to manage user authentication and sessions. Cookies may also be used to collect usage data for improving the App. When you first visit our web platform, you will be presented with a cookie consent mechanism to accept or decline non-essential cookies. Essential cookies required for the App's functionality cannot be disabled.

10. Third-Party Integrations

ProAudits integrates with the following third-party services that may process personal data:

  • Twilio: Used for OTP authentication during sign-up or login.
  • Stripe: Used for processing payments for subscription-based accounts.

These services are contractually obligated to handle your data securely and only for the purposes specified by us.

11. Compliance with Laws

We comply with the General Data Protection Regulation (GDPR) for users in the EU and applicable data protection laws in the CIS region. We do not knowingly collect data from users under 16 in the EU (per GDPR) or under 13 in other regions (per applicable laws) without parental consent. If you believe we have collected data from such users, please contact us immediately at support@ambraisoft.com.

12. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes via email or through an in-app notification. The updated policy will be posted on our website and App, with the "Last Updated" date revised accordingly.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

  • Email: support@ambraisoft.com
  • Address: AmbraiSoft LTD, 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom

We will respond to your inquiries promptly and in accordance with applicable laws.