Enrichio Privacy Policy

Overview

Enrichio ("we", "our", "us") helps Shopify merchants generate and publish AI-assisted product descriptions. This policy explains what data we collect, how we use it, and your choices. This page is linked from our Shopify App Store listing and in-app Help.

Data we collect from Shopify

Through the Shopify Admin API, we access store and product data needed to provide the app, including:

• Shop domain and store settings
• Product titles, descriptions, tags, vendor, type, SKU, status, and SEO fields
• OAuth session tokens required to operate the embedded app

API scopes: read_products and write_products only. We do not request access to customer personal data, orders, or payment information.

Data you provide directly

We store information you enter in the app, such as:

• Brand description and content templates
• Generation job history and draft content
• Billing plan and usage quotas

Third-party processors

To generate product content, we send relevant product and prompt data to our AI provider (Perplexity AI). Data is used solely to produce content for your store and is handled according to the provider's terms.

Hosting and database services (e.g. Vercel, Neon) store app data needed to run Enrichio. Billing is processed by Shopify's Billing API; we do not store payment card details.

How we use data

• Generate, score, and publish product descriptions
• Enforce plan limits and process billing through Shopify
• Operate, secure, and improve the app

We do not sell merchant data. We do not use merchant data for unrelated advertising.

Data retention and deletion

Store data is retained while the app is installed. When you uninstall the app, we delete associated store data in response to Shopify's app/uninstalled and shop/redact webhooks. Shopify may send a shop redact request 48 hours after uninstall.

We respond to Shopify mandatory privacy webhooks: customers/data_request, customers/redact, and shop/redact. Because Enrichio does not store end-customer personal data, customer data requests typically require no additional export from us.

Your rights

Depending on your location, you may have rights to access, correct, or delete personal data. Because Enrichio primarily processes store and product data—not end-customer data—most privacy requests are handled at the merchant level through your Shopify admin or by contacting us.

Security

We use industry-standard practices including HTTPS, server-side session storage, and webhook HMAC verification. Access to production systems is limited to authorized operators.

Contact

For privacy questions or data requests, contact us at [email protected] (same address as in-app Help & setup).