Privacy Policy

Introduction

Email Flow ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application.

Information We Collect

We collect information in the following ways:

From Shopify:

• Store information (domain, email)
• Customer data (names, email addresses, order history)
• Order information (products, amounts, fulfillment status)

From Your Email:

• Email message content and metadata
• Sender and recipient information
• Email attachments

From Your Use of the App:

• IMAP/SMTP credentials (encrypted)
• App settings and preferences
• Usage analytics

How We Use Your Information

We use the collected information to:

• Sync and display your email conversations
• Classify emails using AI to help you prioritize responses
• Generate AI-powered reply suggestions
• Display customer order history alongside conversations
• Provide analytics and reporting
• Process billing and subscriptions

AI Processing

Email Flow uses artificial intelligence services (via OpenRouter) to classify emails and generate reply suggestions. When processing emails:

• Email content is sent to AI providers for classification and response generation
• We use premium AI models (Claude) for emails from verified customers
• We use cost-effective models for other emails to manage costs
• AI providers process data according to their own privacy policies

Data Storage & Security

We implement industry-standard security measures to protect your data:

• Email credentials are encrypted using AES-256-GCM encryption
• Data is stored in secure PostgreSQL databases
• All data transmission uses HTTPS/TLS encryption
• We follow security best practices for access control

Third-Party Services

We use the following third-party services:

• Shopify: Platform and billing integration
• OpenRouter: AI processing (Claude, DeepSeek)
• Your Email Provider: IMAP/SMTP access (Gmail, Outlook, etc.)

Data Retention

We retain your data for as long as your app is installed and your account is active. When you uninstall the app:

• Email data is deleted within 30 days
• Encrypted credentials are immediately deleted
• Analytics data may be retained in anonymized form

Your Rights (GDPR)

If you are in the European Economic Area, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data
• Portability: Receive your data in a portable format
• Objection: Object to certain processing activities

To exercise these rights, contact us at emailflowdevapp@gmail.com.

Data Deletion Requests

We comply with Shopify's mandatory GDPR webhooks for data deletion requests. You can also request data deletion by:

• Uninstalling the app (automatic deletion within 30 days)
• Contacting us directly for immediate deletion

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us:

• Email: emailflowdevapp@gmail.com