Privacy Policy

Gopher.ai (“we”, “our”, or “us”) provides an abandoned cart recovery service for Shopify merchants. This Privacy Policy explains how we collect, use, and protect information when you use our application.

From Merchants (You)

• Shopify store domain and access credentials
• Brand name and contact email
• Website URL and marketing links
• Billing and subscription information

From Your Customers

• Name, email, and phone number (from abandoned checkouts)
• Cart contents and purchase history
• Conversation transcripts (SMS and voice calls)
• Call recordings (for quality and training purposes)

• To send automated SMS messages and AI-powered voice calls to recover abandoned carts
• To provide you with analytics and conversation transcripts
• To improve our AI assistant's responses
• To process payments and manage subscriptions
• To comply with legal obligations

We share data with the following third-party services to operate our platform:

• Twilio — SMS delivery
• Vapi — AI voice call processing
• Supabase — Database hosting
• Vercel — Application hosting
• Shopify — E-commerce platform integration

We do not sell customer data to third parties.

We retain merchant data for the duration of your subscription plus 30 days after cancellation. Customer conversation data is retained for 12 months to support analytics and dispute resolution. You may request earlier deletion by contacting us.

Our service is designed to help merchants comply with the Telephone Consumer Protection Act (TCPA). We only contact customers who have provided consent during the Shopify checkout process. Merchants are responsible for ensuring proper consent collection.

We implement industry-standard security measures including encryption in transit (TLS), encrypted storage, and access controls. Shopify access tokens are stored securely and never exposed to frontend applications.

You have the right to:

• Access the data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format

To exercise these rights, contact us at jesseabed@gmail.com.

If you are in the European Economic Area, you have additional rights under GDPR including the right to object to processing and the right to lodge a complaint with a supervisory authority. Our legal basis for processing is legitimate interest (providing the service you requested) and contract performance.

We may update this Privacy Policy from time to time. We will notify merchants of material changes via email or in-app notification.

For questions about this Privacy Policy or our data practices, contact:
Email: jesseabed@gmail.com