Privacy Policy
Short version: SellerZoom collects store and sales data to power AI recommendations. We don't sell your data. We don't show ads. You can delete your data at any time.
1. Who We Are
SellerZoom ("we", "our", "us") provides an AI-powered product recommendation engine for ecommerce stores. This policy explains how we collect, use, and protect information when you use our platform at sellerzoom.com or install our widget on your store.
2. Information We Collect
We collect the following categories of information:
- Store data: Your store domain, platform (Shopify, WooCommerce, etc.), plan, and integration credentials (stored encrypted via AWS SSM).
- Product catalog: Product titles, prices, categories, inventory levels, and images — used to build recommendation models.
- Order and revenue data: Order totals, line items, and timestamps — used for attribution and recommendation scoring. We do not store full payment details.
- Shopper behavior: Anonymous click events, page views, and conversion signals from your storefront widget. Shoppers are identified by session ID only — no PII is captured.
- Account information: Your name, email address, and hashed password (bcrypt) when you create an account.
- Usage data: Dashboard interactions, API call logs, and feature usage — used to improve the product.
3. How We Use Your Information
- Train and serve AI recommendation models for your store
- Compute revenue attribution and analytics shown in your dashboard
- Send transactional emails (OTP codes, sync notifications)
- Detect and prevent abuse or unauthorized access
- Improve SellerZoom features and recommendation quality
We do not use your data to train models for other stores, sell to third parties, or serve advertising.
4. Data Sharing
We share data only in these limited cases:
- Infrastructure providers: AWS (hosting, SSM, storage), Qdrant (vector embeddings), Redis (caching). Each is bound by a data processing agreement.
- Network partners: If you opt into Network Intelligence, anonymized product affinity scores are shared with opted-in partner stores. No shopper PII is shared.
- Legal requirements: If required by law, court order, or to protect the rights and safety of SellerZoom or its users.
5. Shopify Data Compliance
SellerZoom complies with Shopify's mandatory privacy webhooks. You may submit requests via:
- Customer data request:
POST /webhooks/shopify/customers/data_request - Customer data erasure:
POST /webhooks/shopify/customers/redact - Shop data erasure:
POST /webhooks/shopify/shop/redact
6. Data Retention
We retain store and product data for as long as your account is active. Revenue events and analytics summaries are retained for 24 months. When you uninstall or delete your account, we delete all associated data within 30 days.
7. Security
Store credentials are encrypted at rest using AWS SSM SecureString with KMS encryption. Passwords are hashed with bcrypt. Data in transit is encrypted with TLS 1.2+. We perform regular security reviews.
8. Your Rights
Depending on your jurisdiction, you may have the right to access, correct, export, or delete your data. To exercise any of these rights, email privacy@sellerzoom.com. We respond within 30 days.
9. Cookies
SellerZoom uses strictly necessary cookies for session management and authentication. We do not use third-party tracking or advertising cookies. The storefront widget uses a first-party session cookie to track anonymous recommendation clicks.
10. Children's Privacy
SellerZoom is a B2B platform not directed at children under 13. We do not knowingly collect personal information from children.
11. Changes to This Policy
We may update this policy periodically. We will notify you of material changes via email or a prominent notice on the dashboard. Continued use after changes constitutes acceptance.
12. Contact
Questions about this policy? Email privacy@sellerzoom.com or write to: SellerZoom Inc., Privacy Team, [Address].