Effective 2026-05-02. Last reviewed 2026-05-02.
1. Who we are
ShopWhy is a Shopify analytics application operated by Valiotti Data. We act as a data processor on behalf of Shopify merchants who install ShopWhy on their stores. The merchant remains the data controller of their store data, including customer personal information.
For privacy questions, contact privacy@shopwhy.valiotti.tech.
2. What data we process
When you install ShopWhy on a Shopify store, we receive and store the following categories of data via the Shopify API:
- Shop data: shop domain, shop name, contact email, base currency, timezone.
- Order data: order id, totals, taxes, discounts, shipping, processed timestamps, financial status, line items.
- Customer data: customer id, email, first/last name, total spent, orders count, first/last order timestamps.
- Product / inventory data: products, variants, SKUs, stock levels, costs, locations.
- Refund & transaction data: refund amounts, payment transactions.
- App usage telemetry: page views inside ShopWhy, feature interactions, timing, error reports (Sentry).
We do not store cardholder data, government IDs, health information or other special-category personal data.
3. Why we process it
- Provide the ShopWhy analytics features you signed up for.
- Generate insights, AI-assisted explanations and reports.
- Maintain reliability, debug issues, and prevent abuse.
- Bill you and meet our tax / accounting obligations.
Lawful bases under GDPR: contract performance (Art. 6(1)(b)), legitimate interest in operating and improving the service (Art. 6(1)(f)), and legal obligation for tax / accounting records (Art. 6(1)(c)).
4. Subprocessors
We share data with the following subprocessors strictly for service delivery:
- Hostinger (EU) — application hosting and database storage.
- Shopify (CA / US) — source of merchant store data.
- Anthropic (US) — AI assistant inference. We send only the analytical context for your active query (no raw PII).
- Sentry (US) — error tracking. PII scrubbing enabled.
- PostHog (EU) — product analytics. Anonymous user ids, no email content.
- Stripe / Shopify Billing API — subscription billing. We never see card numbers.
An up-to-date subprocessor list is available on request.
5. Data retention
- Active stores: data is retained for as long as the app is installed.
- Uninstall: when you uninstall ShopWhy, we keep data for 48 hours then erase all merchant store data automatically (Shopify
shop/redact webhook). - GDPR audit logs: kept for 12 months for compliance proof.
- Backups: rolling 30-day encrypted backups; deleted records expire from backups within 30 days.
6. Your rights
If you are an individual whose personal data is processed by ShopWhy on behalf of a merchant, you have the right to:
- Access the personal data we hold about you.
- Request correction or erasure.
- Object to or restrict processing.
- Lodge a complaint with your local data protection authority.
To exercise these rights, contact the merchant who runs the store first (they are the controller). They can submit a customers/data_request or customers/redact request to ShopWhy via Shopify Admin, which we honor within the legal SLA. You can also email us directly at privacy@shopwhy.valiotti.tech.
7. Security
- All traffic encrypted in transit (TLS 1.2+).
- Database encrypted at rest.
- Shopify access tokens encrypted with AES-256-GCM.
- HMAC-verified webhooks. OAuth state and signature checked on every install.
- Role-based authorization on every API; shop-A can never read shop-B data.
- Annual external penetration test (planned).
8. International transfers
Data may be transferred outside the EEA / UK to our subprocessors. We rely on Standard Contractual Clauses (SCCs) and equivalent safeguards. A copy of our SCCs is available on request.
9. Cookies
We use a small number of strictly-necessary cookies (session, CSRF) and, with your consent, analytics cookies. See our cookie banner on first visit to manage preferences.
10. Changes to this policy
We will notify merchants by email of material changes to this policy at least 14 days before they take effect.