Privacy Policy

When you install the App, we are automatically able to access certain types of information from your Shopify account via the following APIs:

• Products API: Product data including titles, descriptions, pricing, images, and inventory information for AI-powered store building and product page generation.
• Themes API: Theme templates, assets, and configurations to customize and optimize your store's appearance using our AI-powered design tools.
• Orders API: Order details and purchase history for performance tracking, analytics, and optimizing upsell recommendations.
• Discounts API: Discount codes and automatic discount configurations to enable cart upsells, bundle pricing, and promotional features.
• Content & Files API: Store pages, blog content, and media files to generate AI product photos and manage store content.
• Publications API: Sales channel configurations and product publication status to manage product visibility across channels.

We may also collect the following information directly from you:

• Account Information: Name, email address, and business details when you register or contact support.
• Billing Information: Payment details processed securely through Shopify's billing system.
• Usage Data: How you interact with our App, including features used and preferences set.
• Support Communications: Messages and information you provide when contacting our support team.

When you use our App, we automatically collect:

• Log Data: IP address, browser type, device information, and timestamps.
• Cookies: We use essential cookies to maintain your session and preferences. See our Cookie section below.
• Analytics: Aggregated usage statistics to improve our services.

We use the collected information for the following purposes:

• Provide Services: To operate our AI store builder, product photo generator, and cart upsell features.
• Improve Our App: To analyze usage patterns and enhance functionality.
• Customer Support: To respond to your inquiries and provide technical assistance.
• Communications: To send service updates, feature announcements, and (with consent) marketing materials.
• Compliance: To meet legal obligations and enforce our terms of service.

For users in the European Economic Area (EEA), we process personal data based on:

• Contract Performance: Processing necessary to provide our services as agreed when you install the App.
• Legitimate Interests: Processing for analytics, security, and service improvement where it doesn't override your rights.
• Consent: Where you have given explicit consent for specific processing activities.
• Legal Obligation: Processing required to comply with applicable laws.

We may share your information with:

• Service Providers: Third-party vendors who help us operate our services (cloud hosting, analytics, AI processing). These providers are contractually bound to protect your data.
• Shopify: As required to integrate with the Shopify platform.
• Legal Requirements: When required by law, court order, or to protect our rights and safety.

We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.

We retain your personal information for as long as necessary to:

• Provide our services while you have the App installed
• Comply with legal obligations
• Resolve disputes and enforce agreements

Store configuration data and analytics are retained for up to 24 months after App uninstallation. You may request earlier deletion by contacting us.

If you are in the European Economic Area (EEA), you have the following rights:

• Right to Access: Request a copy of your personal data we hold.
• Right to Rectification: Request correction of inaccurate data.
• Right to Erasure: Request deletion of your personal data ("right to be forgotten").
• Right to Restrict Processing: Request limitation of how we use your data.
• Right to Data Portability: Receive your data in a structured, machine-readable format.
• Right to Object: Object to processing based on legitimate interests.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise these rights, contact us at privacy@swiftshopai.com. We will respond within 30 days.

If you are a California resident, you have the right to:

• Know what personal information we collect and how it's used
• Request deletion of your personal information
• Opt-out of the sale of personal information (we do not sell personal data)
• Non-discrimination for exercising your privacy rights

We comply with Shopify's mandatory GDPR webhooks to handle data subject requests:

• Customer Data Request: When a customer requests their data, we compile and provide all stored information within 30 days.
• Customer Data Erasure: When a customer requests deletion, we remove all their personal data from our systems within 30 days.
• Shop Data Erasure: When you uninstall our App, we delete all shop data within 48 hours, unless retention is required by law.

Your information may be transferred to and processed in countries outside your country of residence, including the United States and Canada, where our servers and service providers are located.

We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses approved by the European Commission
• Compliance with the EU-U.S. Data Privacy Framework where applicable

We use the following types of cookies:

• Essential Cookies: Required for the App to function properly.
• Analytics Cookies: Help us understand how you use our App (you can opt out).

We do not use advertising or tracking cookies. To manage cookies, adjust your browser settings.

We implement industry-standard security measures to protect your data, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security audits and vulnerability assessments
• Access controls and authentication requirements
• Secure data centers with physical security measures

While we strive to protect your data, no method of transmission over the Internet is 100% secure.

Our Service is not directed to individuals under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us.

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes by:

• Posting the updated policy with a new "Last Updated" date
• Sending an email notification for significant changes
• Displaying a notice in the App

For questions about this Privacy Policy or to exercise your data rights, contact us:

If you are in the EEA and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.