Introduction

Nudgesmart ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application and visit our website at nudgesmart.com.

Information We Collect

Information You Provide

Account information (store name, email address, contact details)
Campaign configurations and settings
Customer support communications
Payment and billing information (processed securely via Shopify)

Information Collected Automatically

Store performance metrics and analytics
Campaign interaction data (impressions, clicks, conversions)
Technical information (IP address, browser type, device information)
Usage data (features used, time spent, preferences)

Information from Your Shopify Store

Store configuration and settings
Product information (for campaign targeting)
Customer data (for segmentation, with your permission)
Order information (for conversion tracking)

How We Use Your Information

We use the collected information to:

Provide and maintain our service
Process your transactions and manage subscriptions
Send administrative information and updates
Respond to customer service requests
Analyze usage and improve our services
Detect and prevent fraud or abuse
Comply with legal obligations
Send marketing communications (with your consent)

Data Sharing and Disclosure

We may share your information with:

Service Providers: Third-party vendors who assist in operating our service
Email Integrations: When you connect email providers (Klaviyo, Mailchimp, SendGrid, ActiveCampaign, Elastic Email)
Legal Requirements: When required by law or to protect our rights
Business Transfers: In case of merger, acquisition, or sale of assets

We do NOT sell, trade, or rent your personal information to third parties for their marketing purposes.

Data Security

We implement appropriate technical and organizational measures to protect your data, including:

Encryption of data in transit and at rest
Regular security assessments and updates
Access controls and authentication
Secure data centers with 24/7 monitoring
Regular backups and disaster recovery procedures

Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. When you uninstall our app or close your account, we will delete or anonymize your data within 90 days, unless legally required to retain it longer.

Your Rights and Choices

You have the right to:

Access: Request a copy of your personal data
Correction: Request corrections to inaccurate data
Deletion: Request deletion of your personal data
Portability: Receive your data in a portable format
Opt-out: Unsubscribe from marketing communications
Restriction: Request limited processing of your data

To exercise these rights, please contact us at denzil@nudgesmart.com.

Shopify Data Compliance

Nudgesmart complies with Shopify's mandatory data privacy webhooks. When requests are made through Shopify's data privacy portal, we handle them as follows:

Customer Data Request: When a customer requests access to their data, we compile and return all stored information including email addresses, survey responses, campaign interactions, and analytics data within 30 days.
Customer Data Erasure: When a customer requests deletion of their data, we permanently remove all personally identifiable information associated with that customer from our systems.
Shop Data Erasure: When a merchant uninstalls Nudgesmart or requests shop-level data deletion, we permanently delete all shop data including campaigns, templates, analytics, subscriber records, and configurations within 90 days.

Merchant Data Access

Merchants can directly access, edit, delete, and export their data through the Nudgesmart admin dashboard at any time:

View and manage all campaign data, templates, and configurations
Access and export subscriber lists and survey responses
Delete individual campaigns, subscriber records, or all data
View campaign analytics and performance metrics
Manage and disconnect third-party email integrations

GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). We process data based on:

Your consent
Contract fulfillment
Legal obligations
Legitimate interests

EU residents have additional rights under GDPR, including the right to lodge a complaint with supervisory authorities.

CCPA Compliance

For California residents, we comply with the California Consumer Privacy Act (CCPA). You have the right to:

Know what personal information we collect
Request deletion of your personal information
Opt-out of the sale of personal information (we do not sell your data)
Non-discrimination for exercising your privacy rights

Cookies and Tracking

We use cookies and similar tracking technologies to improve your experience. For detailed information, please see our Cookie Policy.

Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we discover we have collected such information, we will delete it immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including Standard Contractual Clauses approved by the European Commission.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: denzil@nudgesmart.com
Company: TERRANOAH ECOM VENTURES (OPC) PRIVATE LIMITED
Address: D/1401 KANAKIA SEVENS, ANDHERI KURLA ROAD, Marol Naka, Mumbai, MH, 400059, India