extension-docs

Privacy Policy — Chat Widget

Effective Date: 2026-06-28 Last Updated: 2026-06-28

Chat Widget (“the App”) is a Shopify app operated by Amrita Labs (“we”, “us”). For privacy questions, contact us using the support email shown on our Shopify App Store listing.

Summary

The App adds a floating chat button to a merchant’s storefront that links directly to the merchant’s existing chat channels (WhatsApp, Messenger, Email, Phone). The widget runs entirely in the visitor’s browser. It does not collect personal data about visitors, set cookies, run analytics, or track any behavior. The App requests no access to the merchant’s store data. The only thing we store is a standard session record needed to run the embedded admin, which we delete when the app is uninstalled.

1. Information we process

a. Merchant store session (to operate the app). When a merchant installs the App, Shopify provides an OAuth session. We store a session record — the shop domain, an access token, and granted scopes (currently none) — solely to authenticate and display the App’s admin pages. We do not use it to read products, customers, or orders (the App requests no API scopes).

b. Chat widget (visitor side). The widget runs in the visitor’s browser and provides links to the merchant’s chat channels. When a visitor clicks a channel, their browser opens that service directly (e.g., wa.me for WhatsApp). We do not intermediate, intercept, or store any part of the conversation. The widget stores nothing on the visitor’s device (no localStorage, no cookies).

c. What we do NOT collect. We do not collect, store, sell, rent, or share the personal data of merchants or their customers. We do not set cookies, run analytics, or track visitor behavior.

d. If you contact us. If you email our support, we receive your email address and the contents of your message and use them only to respond to and resolve your inquiry.

2. How we use information

Only to provide and operate the App (authenticate the admin and render its pages). We do not use any information for advertising or profiling.

3. Sharing and sub-processors

We do not sell or share personal data. The App runs on Shopify’s platform and is operated using Microsoft Azure (application hosting) and Neon (database hosting). These providers process data only to host the service.

4. Data retention and deletion

We retain the session record only while the App is installed. On uninstall we delete it, and we honor Shopify’s privacy webhooks:

5. Security

We use reasonable technical measures to protect the limited data we store (encrypted transport, access-controlled hosting). No method of storage or transmission is completely secure.

6. International users

We and our infrastructure providers may process data in the regions where they operate. By using the App you understand data may be processed there.

7. Children

The App is for merchants and their store visitors and is not directed to children.

8. Your rights

Depending on your location (e.g., GDPR, CCPA/CPRA, PIPEDA), you may have rights to access, correct, or delete personal data we hold about you. Because we hold only a store session record and no customer personal data, most requests are satisfied by uninstalling the App (which deletes the record) or by contacting us.

9. Changes

We may update this policy; we will change the “Last Updated” date above and, for material changes, note it in the App listing.

10. Contact

Amrita Labs — please use the support email shown on our Shopify App Store listing.