Descripio
HomePricingBlog
Sign InSign Up

SHOPIFY APP

Privacy Policy — Shopify App

1. Introduction

This Privacy Policy describes how the Descripio Shopify app (“the App”), operated by softwaresupport RAAB GmbH (“we”, “us”, “our”), collects, uses, stores, and protects data when you install and use the App in your Shopify store.

This policy applies specifically to the Descripio Shopify app and supplements the general privacy policy at descripio.com/en/data-protection.


2. Data We Collect

2.1 Shopify Store Data

When you install the App, we access the following data through Shopify's API:

DataPurposeStored?
Store domain (e.g., your-store.myshopify.com)Identify your account, associate analysis dataYes
Product titlesDisplay product list in the AppYes
Product descriptions (body HTML)Analyze content gapsYes
Product images (URL reference only)Display in the AppYes (URL only)
Product IDsLink analysis results to productsYes
Staff user name & emailShopify session authentication (managed by Shopify)Yes (session table)
OAuth access tokenAuthenticate API requests to ShopifyYes (session table)

API Scopes: read_products, write_products

We do not access or store: customer data, order data, payment information, shipping addresses, or browsing behavior of your store's customers.

2.2 Data You Provide

DataPurposeStored?
Amazon product URLsFetch competitor reviews for analysisYes (URL and extracted ASIN)
Language preferenceGenerate content in your chosen languageYes (per analysis job)

2.3 Data from Third-Party Sources

SourceDataPurpose
Amazon (via Descripio API)Publicly available product reviews (title, text, date, country)Feature extraction and content gap analysis

Review text is processed in real time and not stored permanently in the App's database. Only extracted feature summaries (interpretive codes, descriptive codes, and brief citations) are retained.


3. How We Use Your Data

We use the collected data exclusively to provide the App's functionality:

  1. Product Analysis: Analyze Amazon reviews to identify positive and negative product characteristics.
  2. Content Gap Analysis: Compare identified characteristics against your existing Shopify product description to find missing selling points.
  3. Content Generation: Generate improved product descriptions based on the gap analysis.
  4. Usage Metering: Track token consumption to enforce plan limits (Starter / Professional).
  5. Billing: Manage your subscription through Shopify's built-in billing system.

We do not use your data for advertising, profiling, or selling to third parties.


4. Third-Party Data Processors

We share data with the following third-party services to provide the App's functionality:

4.1 OpenAI (Content Analysis & Generation)

DetailValue
ServiceOpenAI API (GPT-4o-mini)
Data sentAmazon review text (public data), product descriptions, extracted feature codes
PurposeFeature extraction, clustering, gap analysis, content generation
Retention by OpenAI30 days (for abuse prevention, per OpenAI’s data usage policy)
OpenAI Privacy Policyopenai.com/policies/privacy-policy

OpenAI does not use data submitted via API to train its models.

4.2 Descripio API

DetailValue
ServiceDescripio Review API (app.descripio.com)
Data sentAmazon ASIN, marketplace region
Data receivedPublicly available Amazon review data
PurposeFetch product reviews for analysis
Operated bysoftwaresupport RAAB GmbH (same entity)

4.3 Fly.io (Hosting)

DetailValue
ServiceFly.io application hosting
Data storedApplication database (SQLite on encrypted volume)
RegionFrankfurt, Germany (EU)
Fly.io Privacy Policyfly.io/legal/privacy-policy

4.4 Shopify

DetailValue
ServiceShopify platform (authentication, billing, API)
Data exchangedOAuth tokens, billing subscriptions, product data
Shopify Privacy Policyshopify.com/legal/privacy

5. Data Storage & Security

  • Database: SQLite on an encrypted persistent volume hosted by Fly.io in Frankfurt, Germany (EU).
  • Transmission: All data is transmitted over HTTPS/TLS encryption.
  • Authentication: OAuth 2.0 via Shopify's App Bridge. Access tokens are stored securely in the database.
  • Cookies: We do not set custom tracking cookies. Session management is handled by Shopify's App Bridge framework.
  • Analytics: We do not use third-party analytics, tracking pixels, or user behavior tracking within the App.

6. Data Retention & Deletion

6.1 During Active Use

DataRetention
Store & session dataFor the duration of the App installation
Product analysis resultsUntil you delete the product or uninstall the App
Token usage recordsFor the duration of the App installation (billing audit trail)
Amazon review textNot stored — processed in real time only

6.2 On App Uninstall

When you uninstall the App, all your data is permanently and irrecoverably deleted immediately, including:

  • All session and authentication data
  • Your store record and plan information
  • All product records and analysis results
  • All characteristics and feature data
  • All token usage records

Shopify also sends a shop/redact webhook 48 hours after uninstall as a failsafe, which triggers a second deletion pass.

6.3 Data at Third Parties After Uninstall

ServicePost-Uninstall Retention
OpenAIUp to 30 days (automatic expiry, per OpenAI policy)
Descripio APIAmazon review data is public data, not linked to your store
ShopifyPer Shopify's data retention policies

7. GDPR Compliance

7.1 Customer Data

The App does not collect, store, or process personal data of your store's customers. We have no access to customer names, emails, addresses, orders, or browsing behavior.

7.2 Merchant Data Rights (GDPR Art. 15–22)

As a merchant, you have the right to:

  • Access your data (visible in-app at all times)
  • Rectify your data (update Amazon URLs, re-run analyses)
  • Delete your data (uninstall the App for complete deletion)
  • Port your data (copy generated content via the App's interface)
  • Object to processing (uninstall the App)

For data access or deletion requests, contact us at support@descripio.com.

7.3 GDPR Webhooks

We implement all three mandatory Shopify GDPR webhooks:

WebhookBehavior
customers/data_requestAcknowledged. No customer data stored.
customers/redactAcknowledged. No customer data to delete.
shop/redactAll shop data permanently deleted.

7.4 Legal Basis for Processing

Processing ActivityLegal Basis (GDPR Art. 6)
Store data & authenticationPerformance of contract (Art. 6(1)(b))
Product analysis & content generationPerformance of contract (Art. 6(1)(b))
Usage metering & billingLegitimate interest (Art. 6(1)(f))

8. Children's Privacy

The App is a B2B service for Shopify merchants. We do not knowingly collect data from children under 16.


9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the App or via the email associated with your Shopify account. The “Last Updated” date at the top indicates the most recent revision.


10. Contact

For questions, data requests, or concerns regarding this Privacy Policy:

softwaresupport RAAB GmbH

Email: support@descripio.com
Website: descripio.com


This privacy policy applies to the Descripio Shopify app. For the general Descripio website privacy policy, see descripio.com/en/data-protection.

Descripio
Descripio

Descripio is a passionate, owner-managed IT company that emphasizes personal support and innovative solutions for digital challenges.

Follow us on LinkedInSubscribe on YouTubeFollow us on Facebook
Our Tools
AI Listing GeneratorAI (SEO) Listing Optimizing ToolAI Image Generator
Legal
ImprintData ProtectionCookie Policy
Ready to Start?

Try Descripio free for 14 days

Start Free Trial

© 2026 Descripio. All rights reserved.