Privacy Policy

1. Information We Collect

1.1 Merchant Information

When you install and use Spectre AI Reviews through the Shopify Admin, we collect:

• Shopify store domain and access tokens provided by Shopify during OAuth authentication.
• Session data including your Shopify user ID, name, email, locale, and account role (as provided by Shopify during authentication).
• App configuration and preferences you set within the App (e.g., auto-publish settings, reCAPTCHA keys, email sender preferences, feed toggles).
• Billing information is handled entirely by Shopify via the App Subscriptions API. We store only a reference to your Shopify subscription ID and plan tier; we do not collect or store credit card numbers or payment details.

1.2 Customer Information (Storefront Visitors and Reviewers)

When a customer submits a review or interacts with review features on a merchant's storefront, we may collect:

• Review content: star rating, review title, review body text, and reviewer display name.
• Email address: if provided by the reviewer during submission, or included in a review request email.
• Buyer verification data: order number and zip/postal code, if the reviewer opts into buyer verification.
• Media uploads: images and/or videos attached to a review.
• Vote identifier: a session-based or anonymous identifier used to prevent duplicate upvotes/downvotes on reviews. This is not linked to a personal identity.

1.3 Review Request Email Data

When a merchant sends a review request email (triggered from a Shopify order), we collect:

• Customer email address and customer name from the Shopify order.
• Order information: order number/name, product IDs, product names, and product handles from the order's line items.
• A unique token is generated for each review request to authenticate the email link.

1.4 Information from Shopify

Through the Shopify API (using scopes read_products, write_products, read_orders, and read_customers), the App accesses:

• Product data: product titles, handles, images, variants, GTINs, SKUs, and barcodes (used for review display, feed syndication, and rich snippet metafields).
• Order data: order numbers and line items (used for buyer verification and review request emails).
• Customer data: customer name and email on orders (used only for review request emails when initiated by the merchant).

1.5 Automatically Collected Information

• reCAPTCHA data: if a merchant enables Google reCAPTCHA on their review form, Google's reCAPTCHA service may collect usage data per Google's privacy policy. The App stores only the merchant's reCAPTCHA site key and secret key.
• Log data: standard server logs may include IP addresses, request timestamps, and user agents for operational and debugging purposes. These are not stored long-term or linked to personal profiles.

2. How We Use Your Information

2.1 Core App Functionality

• Display and moderate reviews on merchant storefronts and in the Shopify Admin.
• Verify purchases by matching submitted order numbers and zip codes against Shopify order data.
• Send review request emails to customers on behalf of merchants, using the Resend email service.
• Upload and serve review media (images and videos) via Cloudinary.
• Generate review feeds (Google Shopping XML and Meta/Instagram JSON) for merchants who enable feed syndication.
• Sync rich snippet metafields to Shopify products for structured data (aggregate ratings).

2.2 AI-Powered Analysis

• Sentiment analysis and topic extraction: review text (title and body) is sent to the Groq AI service for sentiment scoring and topic keyword extraction. No customer names, emails, or other personal identifiers are sent to the AI service — only the review content itself.
• AI-generated summaries: aggregated review data is used to generate product-level summaries for merchants and customers. These summaries are derived from review content and do not contain personal information.

2.3 Analytics and Insights

Aggregated, non-personally-identifiable review data (ratings, sentiment scores, topic distributions) is used to provide merchants with dashboard metrics, trend analysis, and product insights.

3. Third-Party Services

We use the following third-party services to operate the App. Each service receives only the minimum data necessary for its function:

4. Data Storage and Retention

• Review data is stored in our PostgreSQL database for as long as the merchant's App installation is active, or until the merchant deletes individual reviews.
• Media files (images and videos) are stored in Cloudinary and are deleted when the associated review is deleted, when a customer redaction is processed, or when the App is uninstalled.
• Review request records are retained for the duration of the App installation. Tokens expire 30 days after creation.
• Session data is stored for authentication purposes and is cleared when the App is uninstalled.
• GDPR data request records are retained to provide an audit trail for the merchant and are deleted upon shop redaction (App uninstall).

4.1 Data Deletion on Uninstall

When a merchant uninstalls the App, Shopify sends a shop/redact webhook within 48 hours. Upon receiving this webhook, we permanently delete:

• All Cloudinary media assets associated with the store.
• The store record and all related data (reviews, votes, media records, review statistics, review replies, and review requests) via cascading database deletion.
• All authentication sessions for the store.

5. GDPR and Data Subject Rights

Spectre AI Reviews supports Shopify's mandatory GDPR webhooks:

5.1 Customer Data Request (customers/data_request)

When a customer requests access to their data, Shopify notifies us. We look up all reviews associated with the customer's email address and store the request so the merchant can review and fulfil it. Data returned includes: review content, ratings, author name, product information, verification status, and timestamps.

5.2 Customer Data Erasure (customers/redact)

When a customer or merchant requests deletion of customer data, we:

• Redact personal information from all reviews by the customer: the author name is replaced with "[redacted]", and the email address, order number, and zip code are permanently removed.
• Delete all media (images and videos) associated with those reviews from both our database and Cloudinary.
• The review content (rating, title, body) is retained in anonymized form for aggregate statistics, unless the merchant deletes the review entirely.

5.3 Shop Data Erasure (shop/redact)

See Section 4.1 above. All store data is permanently deleted.

5.4 Your Rights

Depending on your jurisdiction, you may have rights including:

• Access: request a copy of the personal data we hold about you.
• Rectification: request correction of inaccurate data.
• Erasure: request deletion of your personal data.
• Restriction: request that we limit processing of your data.
• Portability: request your data in a portable format.
• Objection: object to processing of your data.

Customers may exercise these rights by contacting the merchant whose store they submitted a review on. Merchants can use the App's review management features to edit, delete, or export reviews. For requests directed at us, please contact us at the address in Section 9.

6. Data Security

We implement reasonable technical and organizational measures to protect personal data, including:

• Encryption in transit: all data transmitted between clients, our servers, and third-party services uses HTTPS/TLS encryption.
• Access controls: Shopify OAuth and HMAC-verified app proxy requests ensure only authorized merchants and authenticated storefront requests can access data.
• Database security: our PostgreSQL database is hosted on Supabase with connection pooling and access restricted to application credentials.
• Minimal data sharing: each third-party service receives only the data necessary for its specific function (see Section 3).
• Webhook authentication: all Shopify webhooks are verified via HMAC signatures before processing.

7. Children's Privacy

Spectre AI Reviews is not directed at children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has submitted personal information through a review, please contact the store merchant or us so it can be promptly removed.

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this document. We encourage you to review this policy periodically.

9. Contact Us

If you have questions about this Privacy Policy, your personal data, or wish to exercise your data rights, please contact us:

• Email: support@spectreapps.io

For data requests related to reviews you submitted on a specific store, we recommend contacting the merchant directly, as they are the data controller for reviews collected through their storefront.

10. Merchant Responsibilities

Merchants using Spectre AI Reviews act as data controllers for the personal data collected through their storefronts. As a merchant, you are responsible for:

• Ensuring your storefront has an appropriate privacy policy that discloses the use of Spectre AI Reviews and the data it collects.
• Obtaining any necessary consent from your customers for review collection, email communications, and media uploads.
• Responding to customer data access, correction, and deletion requests in a timely manner.
• Configuring reCAPTCHA and other optional features in compliance with applicable laws.

Spectre AI Reviews acts as a data processor on behalf of merchants, processing personal data only as necessary to provide the App's functionality as described in this policy.