Privacy Policy

Polish AI ("the App") is a Shopify application that scans product catalogs for quality issues and generates AI-powered fixes. This policy explains what data we collect from merchants, how we use it, and how merchants can request deletion.

When a merchant installs the App, we store:

• Shop identifier — the .myshopify.com domain of the installed store.
• OAuth session tokens — used to call the Shopify Admin API on the merchant's behalf. Stored encrypted at rest.
• Shop owner contact details — first name, last name, and email, as provided by Shopify's online access token.
• Product catalog data — titles, descriptions, tags, image URLs, metafields, and product IDs fetched from the merchant's store.
• 30-day order totals per product — revenue amounts only, used to prioritize issues by financial impact. We do not store customer names, emails, addresses, or any other personally identifying order data.
• AI usage counters — timestamps of when fixes were generated, used for billing quota enforcement.

• Customer names, emails, phone numbers, or addresses
• Order line-item details beyond aggregate product revenue
• Payment information (Shopify handles all billing directly)
• Storefront visitor analytics or tracking data

• To scan your catalog and detect quality issues
• To rank issues by 30-day revenue impact
• To send product data (titles, descriptions, image URLs) to our AI provider so we can generate suggested fixes
• To apply approved fixes back to your store via the Shopify API
• To enforce per-plan monthly AI fix quotas

We share limited data with the following sub-processors:

• Cloudflare — application hosting and database (D1). All stored data resides on Cloudflare infrastructure.
• OpenAI (via Cloudflare AI Gateway) — product titles, descriptions, tags, and image URLs are sent to generate AI fixes. Data is not retained by the AI provider for training.
• Shopify — the billing API processes subscription charges; we never handle payment information directly.

When a merchant uninstalls the App, Shopify sends a shop/redact webhook 48 hours later. On receipt, we permanently delete all data associated with that shop: sessions, scanned product data, detected issues, and AI usage records.

Merchants can request immediate deletion by emailing developer@aegion.so. We honor all requests within 30 days as required by GDPR.

The App supports Shopify's mandatory compliance webhooks:

• customers/data_request — we do not store customer data, so requests return immediately.
• customers/redact — removes any cached user-level session data matching the customer ID.
• shop/redact — deletes all shop-scoped data as described above.

Access tokens and all shop data are stored on Cloudflare's encrypted D1 database. Only the authenticated shop owner can access their own data. We enforce per-shop ownership checks on every request that reads or writes product data.

We may update this policy. Material changes will be communicated via the email address associated with the shop owner on file. Continued use of the App after changes constitutes acceptance.

Questions about this policy or data requests: developer@aegion.so