top of page

Privacy Policy - ChatGPT-AI Metafields Populator

Privacy Policy

Effective Date: September 16, 2025

This Privacy Policy (the “Policy”) is issued by Profitonium Apps (“Company”, “we”, “us”, or “our”) and governs the collection, use, storage, and disclosure of data obtained via the Shopify application ChatGPT-AI Metafields Populator (the “App”). By installing or using the App, you (the “User”, “Merchant”, or “you”) consent to this Policy. This Policy is designed to align with applicable data-protection laws, including the GDPR.

1) Definitions and interpretation

Personal Data means any information relating to an identified or identifiable natural person provided by Shopify or by you and processed by us.
Processing means any operation performed on Personal Data (e.g., collection, storage, use, disclosure, deletion).
Third Party means any entity other than you and us, including service providers engaged to operate or support the App.

Unless defined otherwise, terms have their plain meaning under applicable law.

2) Roles and responsibilities

  • Merchant as Controller (customer data). For shopper/customer data that flows from your Shopify store to the App, you are typically the data controller and we act as your processor.

  • Company as Controller (merchant account data). For your own account, billing, and usage information, we act as controller.

We also rely on Shopify as a separate, independent controller/processor for data handled on its platform. Please review Shopify’s privacy terms for details on their processing.

3) Information we collect

3.1 Automatically via Shopify APIs (“Shopify Data”)

The App integrates with Shopify APIs and receives only the data required to perform its functions—no extra collection mechanisms are used beyond Shopify’s platform capabilities.

Depending on the permissions you grant, this may include (as applicable to your setup):

  • Store/merchant data: store ID, domain, owner name, email, plan, locale, installed scopes.

  • Catalog data: products, variants, collections, media, metaobjects.

  • Metafields: read/write access to metafields on products, variants, collections, customers, orders, or other resources you choose to connect.

  • Operational data: job IDs, task status, logs, timestamps, performance metrics.

  • Optional data (if you enable features that require it): customer or order references used to compute or populate metafields.

3.2 Usage and diagnostics

We collect aggregated or pseudonymous analytics such as feature usage, request counts, latency, crash reports, and device/browser information to improve reliability and user experience.

3.3 Support communications

If you contact us (email or in-app), we process the details you provide (contact info, screenshots, logs) to resolve issues.

We do not intentionally collect sensitive categories of data unless strictly required for the App’s operation and expressly authorized by you.

4) How we use the data

We process data strictly to:

  • Operate core features: read/write metafields, run automations, validate inputs, and render results.

  • Maintain and secure the service: error detection, fraud and abuse prevention, performance monitoring.

  • Improve the App: aggregate analytics, feature iteration, UX research (pseudonymous where feasible).

  • Provide support and comply with law: answer tickets, fulfill legal obligations, enforce terms.

We do not sell Personal Data.

5) Third-party technologies and disclosures

We use reputable processors to host, monitor, and improve the App. Depending on configuration, these may include:

  • Behavioral analytics and crash reporting: Microsoft Clarity, Bugsnag, PostHog, Mixpanel.

  • Hosting and infrastructure: Google Cloud Platform, Cloudflare.

  • Databases and queues: MongoDB Atlas, managed caches/queues.

  • Operational logging/monitoring: industry-standard observability tools.

Third parties are contractually bound to use data only to provide their services to us, to implement appropriate safeguards, and to comply with applicable laws.

We may disclose data if required by law, to protect rights and safety, or in a merger/acquisition (with appropriate notice and safeguards).

6) Data security

  • Encryption: Data is encrypted in transit (TLS). Data at rest is protected using industry-standard encryption offered by our infrastructure providers.

  • Access controls: Principle of least privilege, role-based access, audit logging.

  • Testing and monitoring: Periodic security reviews and continuous monitoring for anomalies.

No method of transmission or storage is 100% secure; we work to minimize risk and respond promptly to issues.

7) Data retention and deletion

  • Retention: We retain Shopify Data only as long as necessary to operate the App, meet legal obligations, or resolve disputes.

  • Uninstall & webhooks: When you uninstall the App or we receive a Shopify data-erasure webhook, we schedule deletion of related store-level data from active systems within 30 days, unless a longer period is legally required.

  • Backups: Residual copies in backups are purged on a rolling schedule.

You can also request deletion as described in Section 9.

8) International transfers

Where data is transferred across borders (for example, to the US or other jurisdictions where our providers operate), we rely on appropriate safeguards such as Standard Contractual Clauses or analogous mechanisms permitted under applicable law.

9) Your rights

Subject to law and your relationship with Shopify:

  • Access the Personal Data we process about you.

  • Rectify inaccurate or incomplete data.

  • Delete data where applicable.

  • Object or restrict certain processing.

  • Portability where technically feasible.

How to exercise:

  • Merchants: Email us at hello@profitoniumapps.com.

  • Shoppers (your customers): Please contact the Merchant (store owner) directly. We process shopper data on the Merchant’s instructions and will support the Merchant in fulfilling requests.

10) Children’s data

The App is not intended for use by children under the age of 16. We do not knowingly collect children’s Personal Data.

11) Limitations, disclaimers, and indemnification

  • Limitation of liability: To the maximum extent permitted by law, we are not liable for indirect, incidental, consequential, or punitive damages arising from use of the App.

  • Disclaimer: The App is provided “as is” and “as available.” We do not warrant uninterrupted or error-free operation.

  • Indemnification: You agree to indemnify and hold harmless Profitonium Apps and its affiliates from claims, losses, or liabilities arising from your use of the App or breach of this Policy.

These terms apply without prejudice to mandatory rights you may have under applicable law.

12) Governing law and jurisdiction

This Policy is governed by the laws of the jurisdiction where Profitonium Apps is established, without regard to conflict-of-law rules. Courts in our principal place of business have exclusive jurisdiction over disputes, subject to any non-waivable consumer protections under local law.

13) Changes to this Policy

We may update this Policy from time to time. Material changes will be communicated via appropriate channels (e.g., App listing, in-app notice). Your continued use of the App after an update constitutes acceptance of the revised Policy.

14) Contact us

Profitonium Apps
Email: hello@profitoniumapps.com

By using ChatGPT-AI Metafields Populator, you acknowledge that you have read and agree to this Privacy Policy. If you do not agree, please uninstall the App and cease use immediately.

bottom of page