Egudam Logo
SaaS B2B Privacy Protocol

Privacy Policy

হোম/SaaS Privacy

Last Updated: May 20, 2026

At Egudam, we prioritize the confidentiality, security, and isolation of your business information. As a multi-tenant SaaS provider, we serve as a data controller for merchant accounts, and a data processor for the storefront customer transactions you run.

1. Information We Collect

We collect only the essential business parameters necessary to host and scale your multi-tenant workspace:

  • Merchant Account Data: Registration name, authorized business email, phone contact, secure password hashes, and recurring billing/subscription details.
  • Operational Tenant Configs: Logo assets, customized domain settings, layout selections, and API credentials for dispatch integrations.
  • Analytics & Logs: Audit logs of employee sessions, accounting ledger changes, and webhook events for system integrity and safety.

2. How We Use Your Information

We utilize tenant data to maintain a robust, lightning-fast storefront and business dashboard experience:

  • To render custom subdomain storefront routes and process order queues correctly.
  • To push real-time updates and notification streams (via secure Laravel Echo/Pusher integrations).
  • To automate settlement processes, compile inventory ledgers, and manage warehouse balance sheets.
  • To verify subscription status, prevent cross-tenant billing spoofing, and compile accounting audit trails.

3. Multi-Tenant Database & Data Isolation

Our core architecture guarantees strict business-level boundary enforcement:

  • Multi-Tenancy Isolation: All datasets are query-restricted using custom tenant middleware (X-Tenant-Idvalidation). No merchant can access or execute queries over another merchant's ledger.
  • Staff Access Scoping: Access within your tenant workspace is restricted using RBAC configurations (such as role permissions). You control which staff members view sensitive accounting metrics.

4. Courier Services & Third-Party APIs

To automate delivery operations, we interface with courier dispatch ecosystems:

  • Selected Couriers: When dispatching orders through the CourierFactory (e.g., Steadfast, Pathao), recipient details (customer name, shipping location, parcel price) are securely transmitted to the third-party courier APIs.
  • We Never Sell Data: Egudam never sells, rents, or licenses your merchant datasets or customer profiles to marketing agencies or unauthorized third parties.

5. Data Protection & Encryption Standards

We enforce Enterprise-grade safety measures to shield your multi-tenant data:

  • All network routing is protected by 256-bit SSL/TLS HTTPS encryption.
  • API communications use secure Sanctum Bearer Tokens stored in HttpOnly cookies or secure local state.
  • Automated database backups are encrypted and stored in secure cloud systems.

6. Merchant Rights & Controls

You retain total administrative command of your workspace:

  • You can request a complete export of all customer, order, and accounting records in structured formats.
  • You can update, correct, or close your tenant account at any time. When deleted, all associated tenant table records are permanently purged after the legal holding period.

7. Operational Cookies

We use cookies solely to preserve functional dashboard states:

  • Authentication and CSRF verification cookies (e.g., Sanctum state).
  • Tenant routing preservation parameters (e.g., tenant_mode, X-Tenant-Id cookies).

Have concerns about database partition boundaries, compliance, or tenant data backups? Our compliance desk is ready to help at hello.egudam@gmail.com.