Privacy Policy

AI Chatbot Assistant
Last updated: June 9, 2026

This Privacy Policy describes how 5ProTech (“we”, “us”) collects, uses, stores, and protects information when you use our Shopify application AI Chatbot Assistant (the “App”). For privacy questions, contact us at info@5protech.com.

This policy is provided for transparency and Shopify App Store requirements. It is not legal advice.

1. Shopify data we access

The App connects to your store using Shopify OAuth. Depending on installation, we may access:

• Products and catalog-related data (for example titles, descriptions, and related catalog fields) consistent with the read_products scope.
• Store content relevant to configured features, consistent with the read_content scope.
• Active discounts and promotions from your store, consistent with the read_discounts scope.

We do not use the Shopify Admin API to access Shopify Customer or Order records as part of this App’s core design.

2. Discounts and promotions

The App may synchronize active discounts from your store to operate discount-related features in the App. Separately, the App will only use a discount’s details for AI-assisted shopper-facing suggestions when you enable that option per discount (for example, “AI suggestions”) in the App.

3. Information you provide in the App

You may provide store settings and merchant-authored content such as store information or policy text used by App features. We process this information to provide the App’s functionality.

4. Storefront chat (shoppers)

When the storefront chat experience is enabled for your store, we may process chat messages to operate the chat feature. To support continuity for guests, the App may rely on a pseudonymous browser identifier (for example a guest_uuid stored in the browser and sent with requests). Shopify may also provide a logged-in customer identifier through Shopify’s app proxy parameters when applicable.

Chat sessions are stored to support conversation history. The App enforces a limit of up to ten (10) real chat sessions with stored messages per end user; when a new session is created beyond that limit, older sessions may be removed.

Chat message content may include personal information if a user types it into the chat. We process such content solely to provide the chat service.

5. Admin test chat (merchants)

The App may include an embedded admin chat experience so merchants can evaluate functionality before publishing shopper-facing experiences. Messages may be stored to support that testing workflow.

6. Conversations (merchant admin)

The App includes a Conversations area in the Shopify admin so merchants can review stored storefront chat history in a read-only viewer. Merchants may search by Shopify customer identifier where chat activity exists for a logged-in customer. This access is intended for merchant support and operational review of chat data the App already stores for the store.

7. AI processing and subprocessors

To provide AI features, we may send relevant inputs (which can include catalog-related text, merchant-authored text, chat text, and discount-related text you allow for AI use) to subprocessors:

• Google — we use Google AI models (for example Gemini) for certain language generation tasks. See Google’s privacy policy: https://policies.google.com/privacy
• OpenAI — we use OpenAI services for embeddings used in search and related features. See OpenAI’s privacy policy: https://openai.com/policies/privacy-policy/

8. Location of processing and storage

Our production systems and databases for the App are hosted in Singapore.

9. Logs and observability

We use operational logging to maintain reliability and diagnose issues. We do not intentionally log end-user IP addresses or user-agent strings for analytics. Logs are intended for technical error and operational signals.

We do not currently use product analytics cookies or third-party marketing analytics for the App.

10. Data retention and deletion

When you uninstall the App, and when Shopify sends mandatory shop-level compliance signals (including shop-level redaction after uninstall), we delete App-held data associated with your shop as implemented in our systems.

When Shopify sends a customer redaction request for an individual shopper, we delete stored chat data linked to that customer’s Shopify customer identifier for your store (including related chat sessions and messages).

11. Shopify mandatory compliance webhooks

We implement Shopify’s mandatory privacy webhooks and verify webhook authenticity. Depending on the topic:

• customers/data_request — when a customer requests access to personal data, Shopify notifies installed apps. We record the request for operational audit. To obtain chat data the App stores for that customer, the merchant should contact us at info@5protech.com so we can provide the relevant export. We do not send chat exports through the webhook HTTP response.
• customers/redact — we delete stored chat data for the Shopify customer identified in the request, as described in section 10.
• shop/redact — we delete App-held data for the shop, as described in section 10.

Our compliance audit logs record webhook metadata (for example topic, shop, and request identifiers) and do not intentionally include chat message content or customer email or phone fields from webhook payloads.

12. Your choices and contact

You may uninstall the App from your Shopify admin to revoke access. You may contact us at info@5protech.com about privacy questions.

13. Changes

We may update this Privacy Policy from time to time by posting an updated version on this page and changing the “Last updated” date.