2.1 Account Information

When you create an account, we collect:

• Email address
• Company name
• Password (encrypted)
• Billing information (processed by Stripe)

2.2 Integration Data

When you connect third-party services via OAuth, we collect and store:

• Google Ads: Campaign metrics, ad spend, product performance data, customer account IDs
• Google Analytics 4: Website traffic, conversion data, user behavior metrics
• Google Search Console: Search queries, impressions, click-through rates
• Google Merchant Center: Product feed data, listing issues
• Shopify/WooCommerce: Product catalog, orders, revenue, inventory
• Meta Ads: Campaign performance, ad spend, account IDs

2.3 Usage Data

We automatically collect:

• Log data (IP address, browser type, pages visited)
• Device information
• Usage analytics (features used, time spent)
• Error logs and performance metrics

2.4 OAuth Tokens

We store OAuth access tokens and refresh tokens to maintain connections to your integrated services. These tokens are encrypted at rest using AES-256 encryption.

4.1 Service Providers

We share data with trusted service providers:

• Stripe: Payment processing (subject to Stripe's Privacy Policy)
• Cloud Infrastructure: AWS/GCP for hosting and storage
• Email Services: Mailjet for transactional emails

4.2 Legal Requirements

We may disclose your information if required by:

• Legal process (subpoena, court order)
• Government requests
• Protection of our rights or safety of others
• Investigation of fraud or security issues

4.3 Business Transfers

If MerchantFlow is acquired or merged, your information may be transferred to the new entity. You will be notified of any such change.

5.1 Storage Location

Data is hosted on OVH cloud infrastructure in Canada. MerchantFlow is operated from Adelaide, South Australia. International users' data may be transferred and processed in Canada.

5.2 Security Measures

• AES-256 encryption for data at rest
• TLS 1.3 encryption for data in transit
• Multi-tenant database isolation
• Regular security audits and penetration testing
• Role-based access controls
• Automated backups with encryption
• Two-factor authentication support

5.3 Data Retention

• Active Accounts: Data retained while account is active
• Analytics Data: 90 days of detailed metrics, monthly aggregates stored indefinitely
• After Account Deletion: Data deleted within 30 days (except as required by law)
• Backup Data: Removed from backups within 90 days

6.1 Access and Portability

You have the right to:

• Access your personal data
• Export your data in CSV format
• Request a copy of your information

6.2 Correction and Deletion

You can:

• Update account information in Settings
• Disconnect integrations at any time
• Delete your account (Settings → Delete Account)
• Request data deletion by contacting [email protected]

6.3 Marketing Communications

You can opt out of marketing emails via the unsubscribe link. Transactional emails (billing, security) cannot be disabled.

6.4 GDPR Rights (EU Users)

EU users have additional rights under GDPR:

• Right to rectification
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

To exercise these rights, contact [email protected]