Privacy Policy

SizLix Payroll · Last updated: 27 May 2026 · Effective: 1 June 2026

This policy explains what personal data the SizLix Payroll app and dashboard collect, how we use it, who can see it, and what rights you have over it. We follow the Digital Personal Data Protection Act, 2023 (DPDP) of India.

Plain-English summary: We collect what's needed to mark your attendance (your phone, name, work location, optional selfie + face match). Your employer (the firm that gave you the app) sees this data. We do not sell it, we do not share it with advertisers, and you can ask us to delete it.

1. Who runs this service

SizLix Payroll is operated by SizLix Technologies (proprietor: Rohit Jindal), based in Surat, India. We act as a Data Processor on behalf of each employer (CA firm or business) using the app. Your employer is the Data Fiduciary under DPDP for the data they collect about you.

Contact for privacy questions: support@sizlix.com

2. What we collect, why, and how long we keep it

Data	Why	Retention
Phone number	One-time password (OTP) login. No SMS marketing.	Until your employer removes you from staff.
Name, employee code, shift hours, monthly salary	Identify you on the dashboard, calculate pay.	Until your employer removes you from staff.
GPS location (only when you tap Punch IN / Punch OUT)	Verify you punched from inside the office geofence.	Stored on the punch row indefinitely. Anonymisation after 18 months on request.
Selfie photo (only when you tap Punch IN / Punch OUT, if your employer requires it)	Visual proof that you (not someone else) punched in.	Selfies are deleted automatically after 90 days. Owner may export earlier if needed.
Face match data (only if you opt in to Face Verification)	Confirm the selfie matches the reference face you enrolled, so a coworker cannot punch in as you with your phone.	See §3 below.
Login session token	Keep you signed in so you don't OTP every time.	30 days, renewable. Deleted on logout.
App version, Android version, device model (anonymous)	Crash diagnostics + Play Store update prompts.	Aggregate only; no identification.

3. About face verification (sensitive data — opt-in only)

Face verification is optional. You see a one-time consent screen the first time the app prompts you. You can decline at setup, and you can revoke consent any time from Profile → Face verification → Revoke.

We do not store your selfie as a face record. We compute a 192-number mathematical fingerprint (a “face embedding”) on your phone and upload only that fingerprint.
The fingerprint is encrypted on our servers with AES-256-GCM before being written to disk. The encryption key is held by the application server only.
You cannot reconstruct your face from the fingerprint — it is a one-way derivation, not a reversible image.
On revocation, the fingerprint is overwritten with random bytes within seconds. A revocation audit row is kept (with no biometric content) for DPDP compliance.
The fingerprint is used only to compare against future punch-in selfies of yours. We do not share it, sell it, or use it for any other purpose.

4. Who can see your data

Your employer (the firm owner / their authorised admin) sees your punch records, selfies, locations, classification (full day / half day / absent / leave), and payslip data. This is the whole point of the system — it replaces a paper register.
You see your own data via the app (Today, Calendar, Payslip, Profile).
We see whatever the system stores, but we do not browse it for any purpose other than fixing bugs, providing support, or responding to legal requests.
Nobody else. No advertisers, no analytics brokers, no third-party AI services. The face fingerprint never leaves our encrypted database.

5. Where your data is stored

All data is stored on a single server hosted in Mumbai, India, on the Hostinger India VPS network. Backups are stored on the same server. No data is transferred outside India. (Our business is registered in Surat; the hosting infrastructure happens to be in Mumbai — both are within India and DPDP-compliant.)

6. Your rights under DPDP

You have the right to:

Access — ask for a copy of the data we hold about you.
Correct — ask us to fix wrong data (name, phone, etc.).
Erase — ask us to delete your data. Note: your employer may need to retain certain records (payroll, attendance) for tax / labour compliance; we will tell you what stays and why.
Withdraw consent — specifically for face verification, at any time from inside the app.
Nominate — specify another person who can exercise these rights on your behalf if you cannot.
Complain — raise a grievance with us first, and to the Data Protection Board of India if unresolved.

To exercise any of these rights, email support@sizlix.com from your registered phone number's matching email, or contact your employer directly. We respond within 30 days.

7. How to delete your data

Under DPDP Article 27 you can ask us to delete your personal data at any time. Three ways to make the request:

WhatsApp — message +91 261 350 3977 from your registered number with the text "delete my data". The bot logs the request and a human reviews within 1 working day.
Email — write to support@sizlix.com from the email associated with your account (or any email if you include your registered phone number for verification).
In-app — if you are a staff member, open the dashboard at sizlix.com/app/ → Settings → DPDP → Request data deletion. Owners can also raise deletion requests for their own tenant.

What gets deleted within 30 days

Your phone number, name, profile photo, and any face verification fingerprint.
Your individual punch records, leave requests, and chat history with the bot.
Push notification tokens and authentication sessions on all devices.

What we may retain (and why)

Aggregated payroll records for periods you were paid — retained as long as required by Income Tax / labour law (typically 7 years). These are linked to your employer, not directly to your identifiable PII after deletion.
Audit log of the deletion itself — a single row recording "deletion request received and fulfilled" with timestamp. This proves to the Data Protection Board that we acted on your request.
Anonymous, non-identifying telemetry if any (page views, feature usage counts) is retained but cannot be linked back to you.

Timeline

We confirm receipt within 1 working day. Deletion is completed and confirmed within 30 days. If your employer's records have legal-retention reasons that prevent immediate deletion of payroll line items, we tell you what stays, why, and for how long.

8. Permissions the app asks for, and why

Permission	Why
Camera	Take selfies at punch and during face enrollment.
Location (precise)	Verify you are inside the office geofence at punch time. Only read when you tap Punch IN/OUT.
Internet	Send punches to our server.
Notifications	(future) remind you when you forget to punch.

We do not read your contacts, SMS, call logs, files, photos library, calendar, or microphone. We do not run background location tracking — location is read only at the moment you tap Punch.

9. Security

Login is by OTP to your registered phone. We use HTTPS (TLS 1.2+) for all app-to-server communication. Face fingerprints are encrypted at rest. The login session token is stored on your phone in the Android Keystore (or iOS Keychain), not in plain storage.

10. Children

This app is for employed adults only. We do not knowingly collect data from anyone under 18. If you believe an underage person has been enrolled, contact us and we will remove them.

11. Changes to this policy

We may update this policy. When we do, we change the “Last updated” date at the top, and (for material changes) prompt you in the app on your next login. Continuing to use the app after a change means you accept the updated policy.

12. Contact

SizLix Technologies
Surat, Gujarat, India
Email: support@sizlix.com