Youvfy Privacy policy
# Privacy Policy for Youvfy - Simple AI Chat BotEffective Date: January 1, 2025
Last Updated: January 1, 2025## 1. IntroductionWelcome to Youvfy - Simple AI Chat Bot ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application and related services.Contact Information:
- Company: Youvfy
- Email: [email protected]
- App: Youvfy - Simple AI Chat Bot (Shopify App Store)
- Compliance: Fully compliant with Shopify App Store Requirements## 2. Information We Collect
- Shopify Store Information: Store name, domain, contact details, and store configuration
- Account Information: Email address, billing information, subscription preferences
- Chat Configuration: Custom messages, widget settings, branding preferences
- Support Communications: Messages, feedback, and correspondence with our support team### 2.2 Information Collected Automatically
- Chat Data: Customer conversations, messages, timestamps, and interaction history
- Usage Analytics: App usage patterns, feature utilization, performance metrics
- Technical Data: IP addresses, browser information, device identifiers, log files
- Shopify Integration Data: Order information, customer details, product data (as needed for chat functionality)### 2.3 Information from Third Parties
- Shopify Platform: Store data, customer information, order details as provided through Shopify's APIs
- OpenAI Services: Processed chat messages for AI response generation (anonymized)
- Payment Processors: Billing and subscription information through Shopify's billing system## 3. How We Use Your Information### 3.1 Primary Uses Required for App Functionality
- Service Delivery: Providing AI-powered chat functionality for your store
- Customer Support: Responding to customer inquiries through the chat widget
- Analytics: Generating insights on chat performance and customer satisfaction
- App Functionality: Managing settings, customizations, and integrations### 3.2 Secondary Uses Optional Enhancements
- Service Improvement: Analyzing usage patterns to enhance app features
- Communication: Sending service updates, feature announcements, and support messages
- Compliance: Meeting legal obligations and protecting against fraud
- Marketing: Promoting our services (with your consent where required)### 3.3 AI Processing π€
- Chat messages are processed by OpenAI's GPT-4o model to generate responses
- Messages are anonymized before processing and are NOT used to train AI models
- No personal customer data is permanently stored by OpenAI
Correction: No personal customer data is permanently stored by OpenAI## 4. Data Sharing and Disclosure
We share information with trusted service providers who assist in operating our app:- OpenAI: For AI response generation (anonymized chat content only)
- Render.com: For hosting and infrastructure services
- Shopify: For app integration and billing services
- Analytics Providers: For usage analytics and performance monitoring### 4.2 Legal Requirements βοΈ
We may disclose information when required by law or to:
- Comply with legal processes or government requests
- Protect our rights, property, or safety
- Prevent fraud or abuse
- Respond to emergencies### 4.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of the transaction.
30-day advance notice will be provided## 5. Data Storage and Security π
- Primary Storage: PostgreSQL database hosted on Render.com (United States)
- Backup Storage: Encrypted backups in secure cloud infrastructure
- Geographic Location: Data is primarily stored in the United States### 5.2 Security Measures π‘οΈ
- Encryption: Data encrypted in transit (TLS) and at rest (AES-256)
- Access Controls: Role-based access with multi-factor authentication
- Monitoring: Continuous security monitoring and threat detection
- Regular Audits: Periodic security assessments and vulnerability testing### 5.3 Data Retention β°
- Chat Data: Retained for 2 years or until account deletion
- Account Data: Retained while account is active plus 30 days
- Analytics Data: Aggregated data retained for 3 years
- Legal Hold: Data may be retained longer if required by law## 6. Your Privacy Rights βYou are in control of your data - Exercise your rights anytime### 6.1 Access and Control Universal Rights
You have the right to:
- Access: Request copies of your personal data
- Rectification: Correct inaccurate or incomplete information
- Deletion: Request deletion of your personal data
- Portability: Receive your data in a structured, machine-readable format
- Restriction: Limit how we process your data### 6.2 Marketing Communications π§
- Opt-out: Unsubscribe from marketing emails at any time
- Preferences: Manage communication preferences in your account settings
- Consent: Withdraw consent for marketing communications### 6.3 Regional Rights π
Additional rights may apply based on your location:European Union (GDPR): πͺπΊ
- Right to object to processing
- Right to lodge complaints with supervisory authorities
- Data Protection Officer contact: [email protected]California (CCPA): πΊπΈ
- Right to know about personal information collection and use
- Right to delete personal information
- Right to opt-out of sale of personal information (We don't sell data)
- Right to non-discrimination## 7. Children's Privacy πΆOur app is NOT intended for use by children under 13 years of age. We do NOT knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will delete it immediately.## 8. International Data TransfersIf you are located outside the United States, your information may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international transfers, including:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions where applicable
- Other legally recognized transfer mechanisms## 9. Cookies and Tracking Technologies### 9.1 Types of Cookies
- Essential Cookies: Required for app functionality
- Analytics Cookies: Help us understand app usage
- Preference Cookies: Remember your settings and preferences### 9.2 Cookie Management
You can control cookies through your browser settings. Note that disabling certain cookies may affect app functionality.## 10. Changes to This Privacy PolicyWe may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will:
- Post updated policies on our website
- Notify users of material changes via email
- Provide 30 days' notice before significant changes take effect## 11. Compliance and Certifications π
- GDPR: European Union General Data Protection Regulation
- CCPA: California Consumer Privacy Act
- SOC 2: Security and availability controls (in progress)
- Shopify Partner Requirements: Full compliance with Shopify's partner policies### 11.2 Industry Standards π
- ISO 27001: Information security management (planned)
- Privacy by Design: Built-in privacy protection principles
- Data Minimization: Collect only necessary information## 12. Data Subject Requests πTo exercise your privacy rights or submit data subject requests:Email: [email protected]
Subject Line: "Privacy Request - [Your Request Type]"
Required Information:
- Your name and email address
- Shopify store domain (if applicable)
- Specific request details
- Identity verification may be requiredResponse Time: We will respond to verified requests within 30 days (or as required by applicable law).## 13. Contact Information π
Email: [email protected]
Response Time: 2-3 business daysFor urgent privacy matters or data breaches:
Email: [email protected] (mark as "URGENT - Privacy")## 14. Definitions π- Personal Data: Any information relating to an identified or identifiable individual
- Processing: Any operation performed on personal data
- Data Controller: The entity that determines purposes and means of processing
- Data Processor: The entity that processes data on behalf of the controller
- Data Subject: The individual whose personal data is being processed---### Acknowledgment βοΈBy using Youvfy - Simple AI Chat Bot, you acknowledge that you have read, understood, and agree to this Privacy Policy.Document Version: 1.0
Legal Framework: This policy is governed by applicable data protection laws including GDPR, CCPA, and other relevant privacy regulations.---This privacy policy was last reviewed and updated on January 1, 2025. For the most current version, please visit our Shopify App Store listing or contact us at [email protected].