Legal

Privacy Policy

Effective date: April 11, 2026

This Privacy Policy explains how Gingi AI Labs collects, uses, discloses, and protects personal data when merchants and their team members use our Shopify checkout A/B testing and AI assistance services. In this policy, the terms GSD, we, us, and our all refer to Gingi AI Labs. GSD is available globally, and this policy applies to users in all regions.

1. Scope and roles

We provide tools to Shopify merchants to configure checkout tests, view performance analytics, and collaborate with our in-app AI assistant. In many cases, merchants decide what data to submit to GSD and act as the data controller for their business activities, while GSD acts as a service provider or processor.

2. Information we collect

Information you provide

  • Merchant and account details such as store domain, user identity, and support contact details.
  • Test setup data, including experiment names, variant details, and traffic split settings.
  • Conversation data you enter in chat prompts, messages, and uploaded context.
  • Support communications sent to our team.

Information collected automatically

  • Usage and diagnostic data such as feature interactions, timestamps, logs, and error events.
  • Checkout experiment analytics made available through Shopify and related integrations, such as impressions, conversion outcomes, and aggregate performance signals.
  • Security and session data, including cookies or tokens used for authentication, CSRF protection, and service integrity.

3. How we use information

  • Provide, maintain, and improve GSD functionality.
  • Generate analytics, insights, and AI-assisted recommendations for merchant users.
  • Detect, investigate, and prevent abuse, unauthorized access, and other security issues.
  • Communicate service updates, legal notices, and support responses.
  • Comply with applicable legal obligations and enforce our terms.

4. Legal bases for processing

Where required by applicable law (including in the EEA, UK, and similar jurisdictions), we process personal data on legal bases such as contract performance, legitimate interests (for example service security and product improvement), legal obligations, and consent where appropriate.

5. Cookies and similar technologies

We use cookies and comparable technologies to support authentication, session continuity, request validation, and core platform functionality. You can manage cookie preferences through your browser settings, but disabling required cookies may affect product availability.

6. Data sharing and disclosure

We may share information with:

  • Service providers that support hosting, analytics, security, communications, and infrastructure operations.
  • Integration partners such as Shopify, as needed to provide app functionality.
  • Authorities, courts, regulators, or counterparties when required by law or to protect rights and safety.
  • Successors in connection with a merger, acquisition, financing, or asset transaction, subject to applicable safeguards.

7. International data transfers

Because GSD operates globally, personal data may be processed in countries other than your own. Where required, we apply appropriate transfer safeguards, such as contractual protections, to support lawful cross-border processing.

8. Data retention

We retain personal data for as long as reasonably necessary to provide our services, fulfill contractual commitments, maintain security records, resolve disputes, and comply with legal obligations. Retention periods vary by data type and business need.

9. Your privacy rights

Depending on your location, you may have rights to access, correct, delete, or receive a copy of your personal data, and to object to or restrict certain processing. You may also have rights related to consent withdrawal and anti-discrimination protections. We respond to verified requests as required by applicable law.

10. Security

We use technical and organizational safeguards designed to protect personal data against unauthorized access, disclosure, alteration, and destruction. No system is perfectly secure, but we continuously work to improve protections.

11. Children's privacy

GSD is intended for business users and is not directed to children. We do not knowingly collect personal data from children under the age required by local law.

12. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date above and provide additional notice when required.

13. Contact us

For privacy requests or questions, contact us at support@gingi.ai.

Return to home