top of page

Shopify Privacy Policy

A few key points about our privacy practises

  • We are an AI-powered Shopify app that enhances shopping experiences with personalised styling recommendations and color analysis.

  • We provide tailored product suggestions by analysing user preferences through a short styling quiz. Our AI refines recommendations based on non-identifiable browsing behaviour and engagement within your store.

  • To ensure smooth operation, we use third-party providers such as Amazon Web Services for secure cloud storage. These providers are contractually bound and cannot use your data beyond what Misi specifies.

  • We do not collect or store personal customer information. All data processed is strictly for improving styling recommendations and is handled in accordance with this Privacy Policy.

  • We take robust security measures to protect store and app data from unauthorised access, loss, or misuse.

  • You have full control over your data. You can request access, corrections, or deletion of store-related information at any time by contacting info@misi.app.

  • We value transparency and are committed to clear, honest communication. For any questions, reach out to us at info@misi.app.

Introduction

Welcome to Misi’s Shopify App (“App”), developed and operated by Misi LLC (“Misi,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, store, share, and protect information when merchants (“you” or “your”) install and use our Shopify App in connection with your Shopify store.

By installing and using the Misi Shopify App, you agree to the data practices described in this policy. If you do not agree, please uninstall the App.

Data We Collect

To provide our AI-powered styling recommendations and personalised shopping experiences, we collect and process the following data:

2.1 Information We Collect from Shopify

When you install the Misi Shopify App, we access the following Shopify data:

  • Store Information (Shopify store name, URL, and store owner details)

  • Product Data (Product images, titles, descriptions, pricing, and metadata)

  • Order Data (Purchase history and product preferences, if enabled)

  • Customer Data (Non-identifiable, aggregated analytics; no personally identifiable customer data is stored)

  • Store Analytics (Conversion rates, engagement data, and app interaction statistics)

2.2 Information We Collect from Users Interacting with Misi

When customers engage with the AI Stylist through your store, we may process:

  • Styling Quiz Responses (User-selected style preferences, colour choices, and questionnaire inputs)

  • Browsing Behaviour (Interactions with AI recommendations and quiz completion rates)

 

We DO NOT collect or store customer names, emails, payment details, or personally identifiable customer information.

2.3 Information We Collect Automatically

To improve our services, we collect anonymous, aggregated analytics such as:

  • App installation date and usage statistics

  • Feature interaction data (e.g., how often styling recommendations are used)

  • Performance metrics (e.g., response times and system logs)

How do We use your Personal Information?

We use the collected data to:

  • Provide AI-powered styling recommendations on your Shopify store

  • Display personalised product suggestions to customers

  • Improve app functionality and enhance the shopping experience

  • Track engagement and sales impact through analytics

  • Ensure compliance with Shopify’s App Store requirements

We do NOT use your data for:

  • Selling or renting data to third parties

  • Advertising or marketing purposes outside your store

  • Tracking customer behaviour outside of your store

If you want to opt-out from this processing activity, email us at info@misi.app.

 

Please note that we may contact you with information about products, services, offers, promotions, and rewards offered by us and others via third-party platforms (like social media).

No automated decision-making. Processing of your Personal Information will not be subject to decisions based on automated processing that may produce legal effects or significantly affect you.

Legal Basis for Processing

We process data based on the following legal grounds:

  • Contractual Obligation – To provide the services requested when you install the Misi Shopify App.

  • Legitimate Interest – To analyse usage trends, improve AI recommendations, and optimise store performance.

  • Consent – For optional features that require additional permissions (e.g., advanced analytics or third-party integrations).

How long will we keep your Personal Information?

Your Personal Information shall be stored as long as your contractual relationship with us lasts. We retain data for as long as necessary to:

  • Provide our services

  • Comply with legal obligations

  • Analyse app performance and engagement

If you uninstall the Misi Shopify App, we automatically delete your data within 48 hours unless retention is required for compliance or security purposes.

Impact of account deactivation/requests to erase Personal Information. At any time, you can deactivate your account and erase your Personal Information by emailing info@misi.app or by submitting an in-app cancellation request. If you choose to deactivate your account, we will generally delete all your Personal Information and it will not be recoverable should you later create another account.

Will we share your Personal Information?

Your photographs. We exclusively share this data with Claude AI, who adheres to stringent security standards and does not retain the data after processing. Our partnership with Claude AI is strictly governed by robust data protection agreements, ensuring alignment with our commitment to your privacy.

Service providers. In some situations, we engage other companies to process your Personal Information on our behalf. This is normal in the tech industry: even if we wanted, it would be extremely difficult and impractical for us to build our own storage facilities, analytics services, and email providers. We refer to these companies or service providers as “processors.” We prohibit the service providers we engage from using Personal Information for any purpose that is not related to our engagement.

Processors are companies that help us run the Services, support our communication with you, or perform other Services-related activities. They may process certain Personal Information on our behalf to accomplish the goals related to the App functions, deliver the Services, and associated activities. We remain responsible for any acts or omissions of our processors and undertake to execute formal data processing agreements with them to the extent required by applicable law.

Here are some of the main processors we rely on:

  • AWS (Amazon Web Services Inc): Our storage and infrastructure provider

  • Supabase: Our backend service provider for database and authentication

  • ​Anthropic PBC:  Our AI Service Provider

    • Anthropic Privacy Policy

 

Professional advisors. We may disclose your Personal Information to professional advisors, such as lawyers, bankers, IT developers, auditors, and insurers, where it is necessary in the course of the professional services that they render to us.

For compliance, fraud prevention, and safety. We may share your Personal Information for the compliance, fraud prevention, and safety purposes described.

Business transfers. We may sell, transfer, or otherwise share some or all of our business or assets, including your Personal Information, in connection with a business transaction (or potential business transaction) such as a corporate divestiture, merger, consolidation, acquisition, reorganisation, or sale of assets, or in the event of bankruptcy or dissolution.

Compliance with Law. We may be required to use and share your Personal Information to comply with applicable laws, lawful requests, and legal processes, such as to respond to subpoenas or requests from government authorities.

Security and Data Usage. All personal data used to generate shopping recommendations is processed securely. We store this information on encrypted servers and only share data with third parties (e.g., affiliate networks, and data analytics firms) to the extent necessary to provide you with tailored shopping recommendations. We ensure that all third parties are contractually bound to maintain the confidentiality and security of data.

Your Rights

We believe privacy is a human right. Therefore, all our users have the following universal rights:

  • You have a right to request information about what Personal Information we process about you, to access all your Personal Information (‘Access right’).

  • You may ask us to erase your Personal Information if you withdraw your consent to processing or if you believe such processing is unlawful (‘Deletion right’). Please be aware that erasing some Personal Information may affect your experience using certain features of the Services that rely on historical data. You can exercise your Deletion right from within the App.

  • In some cases, you can object to the processing of your Personal Information, for example, if we process it under the legitimate interest basis, by contacting us at info@misi.app (‘Objection right’).

  • If you believe your Personal Information is inaccurate or incomplete, you can request to correct or, in some cases, correct it yourself from within the App (‘Correction right’).

How to exercise your rights. Contact us at info@misi.app to exercise your Access right, Deletion right, Objection right, and Correction right.

National laws. Please note, that if your local laws provide for additional rights and protection otherwise not specified in this Privacy Policy, we undertake to comply with such additional requirements, if misi is obligated to do so in accordance with the applicable laws.

Data Security and Retention

We implement technical and organisational measures in an effort to protect Personal Information from loss, theft, misuse, and unauthorised access, disclosure, alteration, and destruction, taking into account the nature of the Personal Information that we process and risks associated with special categories of Personal Information we collect.

Specifically, we implemented the following measures to protect your Personal Information:

  • Firewall: Once your information reaches our servers, we protect it in many ways, including storing the information on secure servers and using a device known as a firewall which protects your information by detecting and preventing unauthorised access to the information.

  • Authorised access: Using our firewalls and other mechanisms, we also protect your information by only allowing access to it by employees and authorised parties who have a legitimate and verified need to access the information in order to service your requests and administer policies and claims.

Cross-Border Data Transfers

Misi is based in the United States of America. Personal Information we collect is transferred to and processed in the U.S. (where it is governed by U.S. law) and to other countries (where it is governed by the laws of those countries). The laws of the U.S. and the laws of other countries may not offer the same protections as the laws of your jurisdiction.

Personal Information in the European Union (EU), the EEA, and the United Kingdom (UK) is protected by the General Data Protection Regulation (GDPR) and Data Protection Act 2018, but some other countries may not necessarily have the same standard of protection for your Personal Information. When transferring Personal Information outside the EU, EEA, and UK we either implement standard contractual clauses or rely on current European Commission adequacy decisions. For further information please contact info@misi.app.

How to Contact Us

Please direct any questions or comments regarding this Policy or our privacy practices to info@misi.app

bottom of page