← Back to BizSync

Privacy Policy

Last updated: March 25, 2026

1. Information We Collect

We collect information you provide directly, including: account registration details (name, email, phone number, business name), customer data you import or create, message content sent through the platform, and billing information processed by Stripe.

We automatically collect: usage data (pages visited, features used), device information (browser type, IP address), and performance metrics to improve the Service.

2. How We Use Your Information

We use your information to: (a) provide and maintain the Service; (b) process messages and communications on your behalf; (c) manage billing and subscriptions; (d) send service notifications and updates; (e) improve the Service and develop new features; (f) ensure security and prevent fraud.

3. Third-Party Services

BizSync integrates with third-party services to provide its functionality. Your data may be shared with these services as necessary to operate the platform:

  • Twilio — SMS, MMS, and voice call processing
  • Stripe — Payment processing and subscription management
  • SendGrid — Transactional email delivery
  • Retell — AI voice agent processing
  • Google Gemini — AI features and auto-reply
  • Supabase — Database hosting and storage

Each third-party service has its own privacy policy governing their use of your data.

4. Data Storage & Security

Your data is stored on secure servers provided by Supabase (PostgreSQL with Row Level Security). All data in transit is encrypted using TLS. We implement industry-standard security measures including multi-tenant data isolation, access controls, and regular security reviews.

5. Data Retention

We retain your data for as long as your account is active. Upon account deletion, we will delete your data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., billing records, compliance logs).

6. Your Rights

You have the right to: (a) access your personal data; (b) correct inaccurate data; (c) request deletion of your data; (d) export your data in a machine-readable format; (e) opt out of non-essential communications. To exercise these rights, contact us at privacy@bizsync.io.

6.1 Shopify GDPR Webhooks

When BizSync is installed as a Shopify app, we respond to Shopify's three mandatory GDPR webhooks on behalf of the merchant:

  • customers/data_request — within 30 days, we compile every piece of data BizSync holds for the requested customer (messages, conversations, form submissions, contact profile) and deliver it to the merchant as a downloadable JSON file via a signed link. The export file is stored in private Supabase Storage and auto-deleted after 30 days from creation.
  • customers/redact — within 30 days, we anonymize that customer's personally identifiable information (name, email, phone, address, message bodies, form fields) across our database while preserving aggregate analytics that do not identify the individual.
  • shop/redact — fired 48 hours after a merchant uninstalls. We observe a 30-day internal grace period (so a merchant who reinstalls within that window doesn't lose data) and then hard-delete the shop and all related rows. If the merchant has no other shops and no paid platform subscription, we also delete the organization itself.

All GDPR requests are logged in an internal audit table (gdpr_requests) that records the shop, customer identifier, request kind, status, and completion timestamp.

7. Cookies

We use essential cookies for authentication and session management. We use localStorage to persist user preferences (theme, sidebar state). We do not use third-party tracking cookies.

8. Children's Privacy

The Service is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Continued use of the Service after changes become effective constitutes acceptance of the revised policy.

10. Contact

For questions about this Privacy Policy, contact us at privacy@bizsync.io.

Ecom Easy LLC
United States

Terms & ConditionsSign In