Privacy Policy

The Service is used by businesses ("Merchants") to answer their own customers' phone calls.

• For a Merchant's account, deployment, and billing data, we act as a data controller.
• For a Merchant's customers / callers, and the order/booking data we read from the Merchant's store to answer calls, we act as a data processor acting on the Merchant's documented instructions. The Merchant is the controller of that data and is responsible for the lawful basis, the notices and consents (including call-recording and AI-disclosure consents where required), and its own privacy policy. We make a Data Processing Addendum (DPA) available to Merchants on request.

Merchant account data

Account identifier, email address, name, and (for app installs) the store identity (e.g. the *.myshopify.com domain or Wix site). If you sign in through a third-party identity / single-sign-on provider, we receive only basic profile information for authentication (account ID, email, display name, profile photo if public).

Store / business data accessed on the Merchant's behalf (read-only, minimized)

To answer a caller's question, the Service reads, live and read-only, the minimum data needed. Shopify: order number, status, fulfillment, and tracking, and the email and phone on the order, used only to verify that the caller is entitled to the order before any detail is shared. Scope is limited to read_orders; the assistant is read-only and never changes, cancels, or refunds an order. Wix: service, staff, availability, and booking information needed to answer scheduling questions. We pull this data on demand to answer a specific call and do not persist it beyond the live lookup.

Telephone-call data

The caller's phone number (caller ID), call audio, and a transcript of the call. Calls may be recorded and transcribed and made available to the Merchant. Recordings and transcripts are treated as protected customer data and receive the same security, retention, and deletion controls as other personal data. The Merchant is responsible for any call-recording consent and AI-disclosure notices required by law.

Usage and credentials

Deployment/agent configuration, assistant settings, usage patterns, technical logs, and device/browser information (user agent, IP, OS). A Merchant's store Admin API tokens and any third-party API keys are encrypted (AES-256-GCM), decrypted server-side only when needed, and deleted when the app is uninstalled or the account is closed.

We use personal information only to: provide the Service (answer calls, verify the caller, read back the caller's own order/booking status); provision and operate the AI assistant and a dedicated phone number; process payments and manage subscriptions; maintain, secure, debug, and improve the Service and prevent fraud; and comply with legal obligations. We limit processing to these stated purposes and process only the minimum personal data required.

We do NOT use personal information (including caller, order, customer, recording, or transcript data) to serve advertising; sell, rent, or transfer it to data brokers or advertising networks; build cross-context profiles; assess credit-worthiness; or for any purpose unrelated to providing the Service. We do NOT use Merchant or customer data, including any data obtained through the Shopify or Wix APIs, to train, fine-tune, or improve any machine-learning or artificial-intelligence model, and we contractually require our AI sub-processors not to train on or retain call content beyond what is necessary to return a live response.

Lawful bases (GDPR Art. 6): performance of a contract; your consent; and our legitimate interests in operating, securing, and improving the Service. Where we act as a processor, we process customer data only on the Merchant's documented instructions.

Calls are answered by an AI voice model. To understand speech and respond in real time, call audio and transcripts are processed by our voice-AI provider and our telephony provider in real time; we do not permit these providers to use call content to train their general models. Callers are interacting with an automated AI assistant; Merchants are responsible for disclosing this where the law requires it. The Service is assistive (it answers questions and reads back status) and is not used to make decisions producing legal or similarly significant effects on individuals. Where applicable, we support Merchants in honoring a customer's right to opt out of solely automated decision-making and in providing a human alternative.

We do not sell or rent personal information. We share the minimum data necessary with a small, fixed set of reputable sub-processors, each contractually bound to protect it and (for AI/voice providers) not to train on or retain call content beyond what is necessary to provide the service:

A current list of our named sub-processors is available on request at hello@moltbot.ninja and is identified to Merchants in our DPA. We update this page and notify Merchants before onboarding a new sub-processor. We also disclose personal information where required to comply with law, enforce our Terms, or protect rights, safety, and security, and in connection with a merger or acquisition (with notice). Merchant data collected through the Service is returned to / accessible by the Merchant in the Merchant's dashboard or on request.

Subject to applicable law, you may access, rectify, erase, obtain a portable copy of, restrict, or object to the processing of your personal data, and withdraw consent. Under the CCPA, California residents may know, delete, correct, and opt out of "sale"/"sharing" (we do not sell or share for cross-context advertising), without discrimination.

Merchants exercise these rights via the dashboard or by contacting us. A Merchant's customers / callers should direct requests to the Merchant (the controller); we assist the Merchant in fulfilling them.

Shopify mandatory privacy webhooks. For the Shopify app we implement and honor, within 30 days:

• customers/data_request - we provide the requested customer's data to the store owner;
• customers/redact - we delete/redact that customer's data, including their call recordings and transcripts, unless we are legally required to retain it;
• shop/redact - within the window after a Merchant uninstalls, we erase all of that shop's data.

To exercise a right or ask a question, contact hello@moltbot.ninja. We respond within the timeframe required by law (within 30 days under PIPEDA / one month under GDPR).

We keep personal data only as long as needed for the purposes above (storage limitation):

If a breach of security safeguards creates a real risk of significant harm, we will notify affected parties (and, where we act as processor, the relevant Merchant) and the competent authority without undue delay and, where feasible, within 72 hours, with details and recommended steps, and keep records as required by law. Nothing in this Policy or our Terms waives any non-waivable statutory breach-notification duty.

We apply commercially reasonable administrative, technical, and physical safeguards, including:

• Encryption in transit (HTTPS/TLS) and at rest, including encrypted backups;
• AES-256-GCM envelope encryption for store tokens (decrypted server-side only when needed);
• least privilege (e.g. read_orders only on Shopify; read-only access) and isolated, per-Merchant deployments;
• segregation of test and production data and a data-loss-prevention strategy;
• restricted staff access to protected data, strong-authentication requirements for staff, and access logging for protected customer data;
• a documented security-incident response policy; and ongoing monitoring and security updates.

No method of transmission or storage is 100% secure, but we maintain these safeguards on an ongoing basis.

We use essential cookies for authentication and session management only. We do not use third-party advertising cookies or tracking pixels.

The Service is for businesses and is not directed to children. We do not knowingly collect personal information from individuals under 18 (or under the age of digital consent in their jurisdiction) and delete such data promptly if discovered.

We process data in the United States (our cloud hosting provider's us-central1 region) and in the locations of the sub-processors in Section 5. Where we transfer personal data across borders, we rely on appropriate safeguards (e.g. Standard Contractual Clauses) and/or consent, as required by applicable law.

Access is read-only and least-privilege (read_orders on Shopify); we request only the minimum protected customer-data fields and justify each in our Shopify Protected Customer Data request; we honor Shopify's mandatory GDPR webhooks (Section 6); store tokens are deleted on uninstall; and we never write to, or modify, a Merchant's store or its customers' records.

We may update this Policy. Material changes will be announced by email or in-Service notice and the "Last updated" date will change. Continued use after the effective date constitutes acceptance.

ATP-LOGIC LTD, 135 Almore Avenue, North York, Ontario M3H 2H9, Canada. Privacy / data-protection and general inquiries: hello@moltbot.ninja.