Privacy Policy

1. Information We Collect

When you install Auri on your Shopify store, we access the following data through the Shopify API:

• Order data (read-only): order numbers, item details, fulfillment and tracking status, and customer email addresses associated with those orders.
• Return requests (write): we create return records on your behalf when a customer initiates a return through the chat widget.

We do not collect payment information, passwords, or any data beyond the Shopify API scopes you authorize during installation (read_orders, write_returns).

2. How We Use Your Data

Your data is used solely to power the Auri chat experience:

• Looking up customer orders by email to display in-chat order cards.
• Creating return or exchange requests on the customer's behalf.
• Providing shipment tracking information.
• Generating usage analytics visible on your admin dashboard.

3. Data Storage & Security

Your Shopify access token is encrypted at rest using AES-256-CBC. Session cookies are signed with HMAC-SHA256. All data is transmitted over HTTPS.

We do not sell, rent, or share your data with third parties. Conversation data is processed by the AI language model configured in your settings and is not stored beyond the active chat session.

4. Data Retention

Ticket records and usage statistics are retained for the duration of your subscription. When you uninstall Auri, your store data and access tokens are permanently deleted from our systems.

5. Third-Party Services

Auri uses an AI language model provider (configurable) to generate chat responses. Messages sent to the AI model do not include your Shopify access token or any authentication credentials.

6. Your Rights

You may request a copy or deletion of your data at any time by contacting us. Uninstalling the app automatically triggers data deletion.

7. Contact

If you have questions about this privacy policy, please contact us at support@imauri.com.