ShopOS Privacy Policy

Your name, email address, hashed password, company name, billing address, and subscription details.

Brand assets you upload or configure within ShopOS, including logos, brand guidelines, moodboards, color palettes, fonts, and target audience information.

Product information you provide or sync, including SKUs, titles, descriptions, pricing, images, and videos.

Prompts, instructions, URLs, and files you submit to generate or refine content within the platform.

AI-created content, including images, copy, videos, and other creative assets produced using our Service, along with the parameters used to generate them. Such Outputs may include or relate to personal data depending on the nature of the Inputs and usage.

Non-identifying technical representations extracted during content processing, such as pose vectors, depth maps, and style parameters, used to deliver AI features.

Technical data collected automatically when you use the Service, including IP address, browser type, device information, session duration, page views, API call logs, and error reports.

Data synced from platforms you choose to connect, including product catalogs, ad account structures, listing data, and authentication tokens from services such as Shopify, Amazon, and social platforms.

Analytics and optimization data including A/B test results, ad performance metrics, click-through rates, conversion data, and marketplace analytics associated with your account.

Real-time and near-real-time data accessed from platforms you authorize ShopOS to connect to ("Connected Platforms"), including live advertising performance metrics, inventory levels, order data, pricing data, campaign results, and customer engagement signals. Connected Platforms may include Shopify, Meta, Google, Amazon, Walmart, Target, eBay, Wayfair, Houzz, Noon, Flipkart, Lazada, and any other platform you choose to connect.

Records of all actions executed by ShopOS AI agents on your behalf, including content published, catalog changes made, ad campaigns modified, budget adjustments applied, and workflow executions. Each log entry captures the timestamp, agent identity, platform acted upon, and action parameters.

Third-party companies that help us operate the Service, including cloud hosting providers, analytics tools, security monitoring tools, and customer support platforms. All service providers are bound by contractual confidentiality and data protection obligations.

We use Stripe to process payments. We do not store your full payment card information. Stripe's privacy practices are governed by Stripe's own privacy policy.

Third-party AI providers that power certain features of ShopOS. Some providers may process your Inputs and Outputs in accordance with their own data practices. See Section 3 for details and your opt-out rights.

When you authorize a live data connection, we exchange data with that platform's APIs on your behalf. This includes data sent to and received from Shopify, Meta, Google, Amazon, Walmart, Target, eBay, Wayfair, Houzz, Noon, Flipkart, Lazada, and any other platforms you connect. Data transmitted to Connected Platforms is subject to those platforms' privacy policies and terms.

Authentication services and other tools that facilitate connections between ShopOS and your other business platforms, where you have authorized such connections.

We may disclose your information where required by applicable law, court order, or governmental authority, or where we believe disclosure is necessary to protect our legal rights or the safety of others.

In the event of a merger, acquisition, or sale of all or substantially all of our assets, your information may be transferred to the acquiring entity. We will notify you via email or prominent notice on our platform before your information becomes subject to a materially different privacy policy.

We maintain a list of sub-processors used to process personal data on our behalf. This list is available on request by emailing hi@shopos.ai.

When you connect a Connected Platform, you authorize ShopOS to read specified data categories from that platform and, where you have configured it, to write data and execute agent actions within your authorized scope. We will not access data or take actions beyond what you have authorized.

Your Connected Platforms may contain personal data belonging to your end customers — for example, customer names, email addresses, or purchase histories stored in your Shopify account. You are the data controller of that data. ShopOS processes it only as your service provider, limited to what is technically necessary to carry out your authorized workflows. You are responsible for ensuring your use of ShopOS is consistent with your own privacy and data protection obligations to your customers, including providing any required notices and obtaining any required consents.

You represent that your authorization of ShopOS to access your Connected Platforms is consistent with those platforms' developer, API, and seller policies. ShopOS will operate within these platform constraints; you remain responsible for your account-level compliance on each Connected Platform.

You may revoke ShopOS's access to any Connected Platform at any time through your account settings. Revocation takes effect within 24 hours. Agent Action Logs relating to that platform are retained in accordance with Section 6.

Depending on your location, you may have certain rights under applicable data protection laws, including the right to access, correct, delete, or restrict the use of your personal data.

ShopOS will make reasonable efforts to honor such rights requests in accordance with applicable law.

To exercise any of your rights, please contact us at hi@shopos.ai.