Privacy Policy
⚠️ This is a starting template pending professional legal review. It will be finalised before public launch.
Draft for review — not yet legally binding advice.
## What we collect Account details (name, email, phone), store content you create, billing details (handled by Razorpay — we never see full card numbers), and usage data needed to run the service (e.g., AI credit usage).
## Store customers' data When a customer buys from a store, their name, contact details, and address are collected on behalf of that store's owner, who is the controller of that data. We process it only to run their store (orders, delivery, invoices).
## How we use data To provide and improve the service, process payments, send transactional emails (order confirmations, invoices, reminders), and provide support. AI features process your store's own data only — one store's data is never used in another store's AI.
## Sharing Service providers we rely on: Supabase (database/storage, Mumbai region), Razorpay (payments), Resend (email), AI model providers (OpenAI/Google/Anthropic) for AI features, Shiprocket (when a store connects it). We do not sell personal data.
## Security Data is isolated per store at the database level; payment gateway secrets are stored encrypted; access is limited. No system is 100% secure — report concerns to support@nextgenaiss.com.
## Your rights You may access, correct, or delete your personal data by contacting support@nextgenaiss.com. Legal records (e.g., tax invoices) are retained as required by law.