Privacy policy

SmartConvertAI ("we", "us") is a CRO diagnostics tool for Shopify merchants, operated by Elkad SAS, registered in France. Contact: support@elkad.fr.

When you install and use the app, we collect:

• Shop identifier — your my-shop.myshopify.com domain, used to scope data to your store and authenticate API calls.
• Shopify session credentials — OAuth tokens issued by Shopify, stored encrypted at rest. We hold no user passwords.
• URLs you submit — public storefront URLs you voluntarily add for analysis, with the page-type label you select.
• Analysis artifacts — the rendered HTML, screenshots, and AI output produced by analyzing those URLs.
• Usage telemetry — request logs (timestamp, endpoint, status code) for security and debugging. Retained 30 days.

We do not request any Shopify API scope. We have no access to your products, orders, customers, themes, or storefront data outside of the URLs you manually submit.

• End-customer personal data (names, emails, addresses, IP).
• Order, cart, or checkout data.
• Payment information.
• Cookies set on your storefront.

• To run the CRO diagnostics you request.
• To deliver the app inside your Shopify Admin (session auth).
• To monitor performance, prevent abuse, and debug failures.
• To improve the AI prompts using anonymous, aggregated feedback verdicts (👍 / 👎) on individual recommendations.

We never sell or rent your data.

To deliver the service we share data with the following processors, each under a data-processing agreement:

• Anthropic (Claude API) — receives the rendered content of pages you submit, for analysis. Anthropic does not train on API data.
• Render (US/EU) — application hosting.
• Supabase / PostgreSQL (EU) — primary database.
• Cloudflare R2 — private object storage for screenshots.
• Upstash Redis — analysis job queue.
• Shopify — embedding host and OAuth provider.

• While installed: URLs, analyses, and screenshots are retained until you delete them in-app or uninstall.
• On uninstall: session tokens are deleted immediately. Within 48 hours of Shopify's shop/redact webhook, all remaining shop data is permanently erased.
• Logs: retained 30 days, then rotated.

Even though we hold no end-customer PII, the merchant administrator can at any time:

• Access the data we hold (visible in-app).
• Export or delete a URL and its analyses (in-app).
• Uninstall the app to trigger full erasure within 48h.
• Email support@elkad.fr for any additional request.

We respond to customers/data_request, customers/redact, and shop/redact compliance webhooks per Shopify's GDPR program.

• HTTPS everywhere (HSTS enabled).
• Database and object storage encrypted at rest.
• OAuth tokens never exposed to the client.
• Least-privilege access controls on production infrastructure.

We'll notify merchants in-app when this policy changes materially. The current version is always available at /privacy.

Data Protection Officer: support@elkad.fr