Privacy Policy for ShopFlix AI

1. Introduction

ShopFlix AI ("we," "our," "us," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify app ("ShopFlix AI" or the "App").

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Shopify store name, email address, and billing information
• Product Data: Product titles, descriptions, images, URLs, and other product details you submit for analysis
• Store Data: Store configuration, product listings, and category information
• Payment Information: Billing details (processed securely through Shopify's payment system)

2.2 Information Collected Automatically

• Usage Data: App features used, time spent in the app, actions performed, and interaction patterns
• Technical Data: IP address, browser type, device type, operating system, and referring URL
• Store Data: Shopify store ID, plan information, and subscription status

2.3 Third-Party Data Processing

• AI Processing: Product data is sent to Google Gemini API for AI-powered analysis and recommendations
• Web Scraping: URLs provided by you are scraped to gather product information from various platforms (Amazon, eBay, Walmart, AliExpress, and others)

3. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve the App and our services
• Process subscriptions and payments
• Analyze product data using AI to generate corrections and recommendations
• Monitor and analyze trends, usage, and activities for service improvement
• Send transactional emails and service notifications
• Detect, prevent, and address technical and security issues
• Comply with legal obligations

4. Data Retention

• Account Data: Retained as long as your subscription is active, then deleted within 90 days of cancellation
• Product Data: Deleted upon user request or 30 days after account termination
• Usage Data: Retained for 12 months for analytics and improvement purposes
• Backup Data: May be retained in backups for up to 90 days

5. Data Security

We implement industry-standard security measures including:

• HTTPS/TLS encryption for data in transit
• Secure authentication and authorization protocols
• Regular security audits and penetration testing
• Access controls limiting employee access to personal data
• Secure disposal procedures for deleted data

6. Third-Party Services

We share data with the following third parties:

• Shopify: Your app interaction data and store information (required for app functionality)
• Google Gemini API: Product data for AI analysis (encrypted transmission)
• Railway: Cloud hosting and database services
• Payment Processors: Billing information processed through Shopify's secure payment system

These third parties are contractually obligated to use your data only as necessary to provide services.

7. Data Subject Rights (GDPR/CCPA)

Depending on your location, you may have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Opt-out of data processing
• Data portability

To exercise these rights, contact us at: support@shopflixai.com

8. Data Deletion on Uninstall

When you uninstall ShopFlix AI from your Shopify store:

• Your account data is deleted within 7 days
• Product analysis history is deleted within 30 days
• Billing information is retained for accounting purposes (minimum required by law)

9. International Data Transfers

Your data may be transferred to and processed in countries other than where you reside, including the United States. These countries may have different data protection laws. By using the App, you consent to such transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the App. Your continued use of the App constitutes acceptance of updated policies.

11. Contact Us

For privacy inquiries, data subject requests, or concerns:

Email: support@shopflixai.com
Response Time: We aim to respond within 10 business days

Addendum: GDPR Compliance

For EU Customers: ShopFlix AI complies with GDPR regulations. Our legal basis for processing includes:

• Contract performance (providing the app service)
• Legitimate interests (service improvement and fraud prevention)
• Your explicit consent (for marketing communications)

We have implemented Data Processing Agreements with our service providers and maintain records of processing activities.

Data Protection Officer Contact: For GDPR-specific inquiries, contact support@shopflixai.com with "GDPR Request" in the subject line.