1. What Data We Collect

InventoryIntel processes merchant, store, and operational commerce data from Shopify, plus the settings merchants add inside the app. This includes:

• Store and account information: shop domain, plan and billing status, timezone and currency settings, and store contact details made available through Shopify.
• Merchant authentication and audit data: Shopify session records and app authentication data, which may include the merchant or staff user ID, name, email address, account-owner flag, locale, and encrypted access tokens. We use this for secure access, operational notices, and to understand who triggered certain actions in the app.
• Product, inventory, and location data: product titles, variant titles, SKUs, barcodes, pricing, compare-at pricing, unit cost, inventory quantities, inventory item IDs, tags, product type, vendor, product images, and location-level inventory facts used to detect stagnant stock and choose recovery actions.
• Order and campaign performance data: recent order-line facts and recovery performance records used to calculate sales velocity, slowing demand, risk, attribution, and recovery outcomes. This can include order IDs, product or variant IDs, quantities, prices, order timestamps, source channel, shipping country code, discount identifiers, and campaign outcome data.
• Merchant-provided inputs: automation rules, AI context notes, storefront campaign settings, approval choices, and other configuration data entered in the app.

InventoryIntel's core operational workflows are designed to avoid storing customer names, email addresses, phone numbers, street addresses, or payment details unless a specific privacy, audit, or support workflow requires them. When a merchant uninstalls, Shopify session data and app access tokens are removed promptly, and we preserve only the minimum non-PII operational data needed for the billing-period restore window. Personal data is removed or redacted as part of the uninstall and privacy workflows.

2. How We Use Information

We use the information described above solely to provide and improve InventoryIntel’s services.

• Analyze product movement and sales velocity over time.
• Calculate inventory velocity, risk scores, and recovery opportunities for your catalogue.
• Generate AI-assisted recovery plans, recommendations, and campaign copy.
• Create and track Shopify discount codes, bundles, tags, and storefront campaign assets when you launch a campaign.
• Record merchant approvals, overrides, state transitions, sync attempts, and recovery outcomes for support, rollback, and audit purposes.
• Send operational reminders, audit notices, and privacy-response emails when needed.
• Process billing and subscription management through Shopify.
• Maintain service reliability, troubleshoot issues, and improve store-specific recommendations.
• Use infrastructure and application telemetry for security, fraud prevention, cost control, and service monitoring.
• Record GDPR webhook handling and operational access events so privacy requests and security incidents can be audited.

We never sell, rent, or share your store data with third parties for marketing or advertising purposes.

The embedded app is designed without third-party advertising trackers. If we introduce product analytics tooling in the future, we will update this policy before using it for merchant-facing behaviour analysis.

3. AI Processing

InventoryIntel sends selected store-operational data to an AI service to generate recovery recommendations and merchant-facing copy. This may include product titles, variant titles, SKUs, prices, inventory levels, velocity metrics, campaign context, and merchant notes or preferences relevant to the recommendation.

This AI input is not fully anonymised because product and SKU data can identify items in a merchant's catalogue. It is intentionally limited to business and operational data. We do not send customer names, payment details, or full customer contact records to the AI service as part of the normal recommendation pipeline.

We may also use store-level operational outcomes, such as which recommendations were accepted, campaign settings, and revenue recovered, to improve future recommendations for that merchant.

4. Data Retention and Deletion

• InventoryIntel uses recent order history, typically the last 90 days, to power velocity calculations and stock-risk analysis. Records older than that are not needed for the core analysis workflow and may be pruned or rolled up into aggregate reporting.
• We retain merchant, store, and operational data only for as long as it is needed to provide the service, maintain auditability, support rollback and billing workflows, and comply with Shopify or legal obligations. Where a shorter retention period is possible, we use it.
• If the app is uninstalled, we promptly remove Shopify session data and revoke app access tokens. When Shopify later sends the mandatory shop/redact webhook, we delete the shop record and related app data unless a longer retention period is required by law. If the merchant reinstalls during the billing-period restore window, only the minimum non-PII operational data needed to restore paid-for settings is retained until that window ends.
• Some raw attribution records may be pruned after they have been rolled up into longer-term reporting records, but audit and operational history needed to run and support the app may remain while the merchant uses the service.

5. GDPR & CCPA Compliance

InventoryIntel is designed with privacy by default. We comply with Shopify's mandatory GDPR webhooks:

• customers/data_request: we review what InventoryIntel holds that relates to the request and process the request through our privacy workflow, including the merchant data export endpoint where appropriate.
• customers/redact: when Shopify provides order IDs to redact, we delete matching order-line records from our database.
• shop/redact: we delete the shop record and related operational app data from our database after Shopify sends this webhook, unless a legal retention obligation applies.

6. Security & Infrastructure

• We implement reasonable administrative, technical, and organizational safeguards to protect merchant data against unauthorized access, disclosure, alteration, or destruction.
• Admin access to the systems we use for the service requires strong, unique passwords and MFA on the core control planes we rely on, including GitHub, Microsoft Azure, Shopify Partner access, and shared mail or password-manager accounts.
• Customer and merchant data is separated from development data where possible, and production secrets are stored in Azure Key Vault rather than in source code.
• We use authenticated Shopify app sessions and protect access tokens and API credentials as sensitive data.
• Our structured application logs redact sensitive fields such as tokens, API keys, and email addresses; we do not rely on logs as a source of customer-facing personal data.
• We use service providers to host the application and support email delivery, AI-assisted features, and operational infrastructure telemetry.
• We maintain a documented security incident response process for containment, investigation, recovery, and required notifications.

7. Privacy Rights

• Merchants and customers may have rights under applicable privacy laws, including rights to request access to or deletion of personal data where applicable.
• Merchants can contact us directly about app data. Customers should usually submit privacy requests through the merchant or Shopify, and we respond to Shopify's mandatory privacy webhooks where applicable.
• Uninstall and reinstall are self-serve: restore previous settings if you reinstall during the billing period you already paid for, or choose Start Fresh to permanently delete the preserved data.

8. Contact Us

For privacy-related requests, data deletion, or questions about this policy:

• Email: privacy@inventory-intel.app
• Export: Download your app data export
• Response time: within 30 days for GDPR requests, 10 days for standard inquiries.