Privacy Policy
1. Who we are
AdsChase ("we", "us", "our") provides an application called AdsChase that helps merchants measure and optimise the performance of their digital advertising campaigns.
Contact: [email protected]
2. Scope of this Policy
This Policy explains how we collect, use, disclose and protect personal information when:
- A merchant installs or uses the App.
- The App processes events from the merchant's store customers (e.g., purchase, add‑to‑cart) to send to advertising platforms.
- Anyone visits our marketing site or support centre.
It does not cover the practices of third‑party services that we do not own or control (e.g., Pinterest, Pinterest) or individuals that we do not manage.
3. Information we collect
| Category | Examples | Source |
|---|---|---|
| Merchant account data | Store name, store URL, Shopify ID, ad‑account IDs, billing email | Provided by the merchant / Shopify OAuth |
| Configuration data | Pixel IDs, catalog IDs, ad tokens generated in Pinterest/Pinterest/etc. | Merchant |
| Event data from store | Order ID, value, currency, product IDs, event time | Shopify webhooks |
| Customer identifiers | Hashed email / phone, IP address, user‑agent | Shopify webhooks (hashing done before transmission) |
| Diagnostic logs | API request IDs, error codes, response times | Generated automatically |
| Site analytics | Cookies, page views, referrer | Browser/device |
4. How we use the information
- Provide the service – create server‑side conversion events, pull ad reports, display dashboards.
- Optimise ad delivery – send hashed customer identifiers to platforms for attribution and targeting.
- Support & troubleshooting – monitor error logs, respond to tickets.
- Improve the App – aggregate usage statistics to prioritise features.
- Legal & compliance – detect fraud, enforce Terms of Service, comply with applicable laws.
We rely on one or more of the following legal bases: performance of contract, legitimate interests (running and improving the App), and where required consent.
5. Sharing & disclosure
| Recipient | Purpose | Safeguards |
|---|---|---|
| Advertising platforms (Pinterest, Pinterest, Meta, Google) | Receive server‑side events, return performance metrics | Events contain only hashed PII; sent over TLS |
| Shopify | Webhooks, embedded‑app authentication | OAuth scopes limited to required data |
| Service providers (cloud hosting, logging) | Infrastructure & analytics | Bound by data‑processing agreements; no sale or independent use |
| Legal / regulatory authorities | When lawfully requested | We verify each request and limit scope |
| Business transfer | Merger or acquisition | Successor bound by this Policy |
6. International transfers
Our servers are located in Canada / US‑East‑1; some subprocessors may operate in other jurisdictions. Where data is transferred outside the merchant's country, we rely on legally recognised safeguards such as Standard Contractual Clauses or adequacy decisions.
7. Retention
| Data type | Retention period |
|---|---|
| Event payloads & hashed identifiers | 30 days (for deduplication & debugging), then deleted |
| Aggregated analytics & reporting metrics | 24 months, then anonymised |
| Merchant account & billing data | While the merchant has an active subscription + 2 years |
| Logs & backups | Up to 90 days |
Merchants may request earlier deletion via the in‑app "Delete data" button or by emailing [email protected].
8. Security
- TLS 1.2+ encryption in transit; AES‑256 at rest.
- Principle‑of‑least‑privilege IAM roles.
- Regular vulnerability scans & penetration testing.
- Incident‑response plan with 72‑hour breach notification target.
9. Merchant & consumer rights
Depending on your location (e.g., GDPR, PIPEDA, CCPA/CPRA), you may have the right to:
- Access, correct, download or delete personal data.
- Object to or restrict certain processing.
- Lodge a complaint with a supervisory authority.
Submit requests via [email protected] or in‑app settings. We will verify identity before fulfilling.
10. Cookies & tracking
Our marketing site uses first‑party cookies for essential functions and analytics (e.g., Google Analytics). The App itself does not add client-side cookies to merchants' storefronts; all customer events are received from Shopify server-to-server.
11. Children
The App is not directed to children under 13, and we do not knowingly collect data from them.
12. Changes to this Policy
We may update this Policy from time to time. Material changes will be announced inside the App and via email at least 10 days before they take effect. The "Effective date" at the top will change accordingly.
13. Contact
Questions or concerns?
Email: [email protected]