MetricPilot

Privacy Policy

Effective Date: August 30, 2025

MetricPilot (“the App”, “we”, “our”, “us”) provides a reporting and analytics dashboard for Shopify merchants. This Privacy Policy describes how we collect, use, and share personal information when you install or use our app in connection with your Shopify store.

Information We Collect

When you install MetricPilot, we are automatically given access to certain data from your Shopify store via Shopify’s APIs. This may include:

  • Store Information: shop domain, name, email, installed apps.
  • Order Data: order IDs, products purchased, order values, timestamps.
  • Customer Data: customer IDs, names, emails, purchase history (only as needed for analytics like repeat vs. new customers, CLV).
  • Product Data: product IDs, titles, SKUs, prices, inventory counts.

We do not collect payment card numbers, raw passwords, or any sensitive authentication data.

How We Use Your Information

  • Provide dashboards and analytics on sales, customers, and products.
  • Calculate KPIs such as revenue trends, repeat customers, AOV, and CLV.
  • Improve our services, diagnose issues, and enhance app performance.
  • Communicate with you about product updates, billing, or support.

We do not sell or rent your data to third parties.

How We Share Your Information

We may share information with:

  • Service Providers: Hosting, database, and analytics vendors (e.g., Vercel, Railway, Supabase/AWS). These providers process data only on our behalf and under strict confidentiality.
  • Legal Compliance: If required by law or valid legal request.
  • Shopify: We may share information back with Shopify to comply with their requirements and enforce our terms.

We do not use your data for advertising or unrelated purposes.

Data Retention

We retain store, order, and customer data for as long as you use the app. When you uninstall the app, we automatically receive a Shopify App Uninstall webhook. At that time, we delete all associated store data (including customer and order data) from our systems within 30 days. If Shopify sends a GDPR customer data request or customer/shop redact request, we process and delete data as required.

  • Webhook logs: Delivery metadata and payload previews are retained for up to 7 days for debugging and reliability, then purged automatically.
  • Analytics & Spend data: Retained while the app is installed to power your dashboards. Removed within 30 days after uninstall or upon verified deletion request.

Your Rights

If you are a resident of the EEA, UK, or other regions with data protection laws, you have rights to access, correct, or delete your personal data; request restriction or object to processing; and data portability. To exercise these rights, contact us at metricpilot.app@gmail.com. We may also direct you to Shopify, as Shopify controls customer account data.

Security

  • All data is encrypted in transit (HTTPS/TLS).
  • Access tokens and credentials are stored securely using encryption.
  • Access is limited to authorized personnel only.

Changes

We may update this Privacy Policy from time to time. Changes will be posted at https://app.metricpilot.app/privacywith the updated effective date.

Contact Us

If you have questions or complaints about our privacy practices, please contact us at metricpilot.app@gmail.com.