Privacy Policy

We collect information in the following ways:

A. Information You Provide Directly

•Account Information: Name, email address, phone number, company name, and password when you register for an account.•Business Information: Shopify store URL, business category, revenue range, and similar information provided during onboarding.•Payment Information: Billing address and payment method details, processed securely by our payment processors (Razorpay/Stripe). We do not store full card numbers.•Communications: Messages, feedback, and support requests you send us.•Demo Requests: Information submitted through our booking forms (via Cal.com), including your name, email, and business context.

B. Information Collected Automatically

•Usage Data: Features accessed, pages visited, actions taken within the Service, session duration, and interaction patterns.•Technical Data: IP address, browser type and version, operating system, device identifiers, and screen resolution.•Log Data: Server logs, error reports, and performance metrics.•Cookies & Tracking: See our Cookie Policy section for details.

C. Information from Third-Party Integrations

When you connect third-party platforms to Clevrr AI, we receive data from those platforms:

•Shopify: Orders, products, inventory, customer data, revenue metrics, abandoned carts, and refund data.•Meta Ads (Facebook/Instagram): Ad campaign performance, spend, impressions, clicks, and conversions.•Google Ads: Campaign data, keywords, bids, and performance metrics.•Logistics Providers: Shipment status, tracking events, delivery success rates, and RTO data.•Payment Gateways: Transaction data, reconciliation records, and COD remittance information.

We access only the data necessary to provide the Service and in accordance with each platform's policies.

We use the information we collect for the following purposes:

Service Delivery•Providing, operating, and maintaining the Clevrr AI platform.•Processing and fulfilling your subscription.•Connecting and syncing data from your integrated third-party platforms.•Generating AI-powered insights, revenue analysis, and operational recommendations.

AI Model Training & Improvement•Improving the accuracy of our AI models using anonymised and aggregated data.•Developing new features, intelligence modules, and product capabilities.•We will never use your identifiable Customer Data to train models shared with other customers.

Communication•Sending transactional emails (receipts, password resets, account notifications).•Providing product updates, release notes, and important service announcements.•Marketing communications and newsletters (with your consent, and opt-out available at any time).•Responding to your support requests and inquiries.

Security & Compliance•Detecting and preventing fraud, abuse, and unauthorised access.•Monitoring and enforcing our Terms and Conditions.•Complying with legal obligations and responding to lawful requests from authorities.

Analytics & Research•Understanding how customers use the Service to improve user experience.•Conducting internal research and analysis on platform performance.•Creating anonymised industry benchmarks and insights.

We do not sell your personal information. We share your information only in the following circumstances:

Service Providers: We share information with trusted third-party vendors who help us operate the Service, including:

•Cloud infrastructure providers (AWS, Google Cloud).•Payment processors (Razorpay, Stripe).•Analytics platforms (internal tools only, not advertising-purpose analytics).•Customer support tools (e.g., Intercom, Crisp).•Email service providers (e.g., Postmark, SendGrid).

These providers are bound by contractual obligations to protect your data and use it only as directed by us.

Business Transfers: If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.

Legal Requirements: We may disclose your information if required to do so by law, subpoena, court order, or government request, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.

With Your Consent: We may share your information with third parties when you have given us explicit consent to do so.

Aggregated / Anonymised Data: We may share anonymised, aggregated data that cannot identify you or your business with partners, for research, or in public reports.

We use cookies and similar tracking technologies to operate and improve the Service.

Types of Cookies We Use

•Strictly Necessary Cookies: Essential for the Service to function. These include authentication tokens and session management cookies. You cannot opt out of these.

•Performance Cookies: Help us understand how users interact with the Service by collecting anonymised usage statistics (e.g., page views, feature usage). We use these to identify bugs and improve performance.

•Functional Cookies: Remember your preferences, such as your language settings or dashboard layout, to provide a personalised experience.

•Marketing Cookies: Used to deliver relevant content and track the effectiveness of our marketing campaigns. These are only set with your consent.

Managing Cookies

You can control cookies through:

•Your browser settings (note: blocking essential cookies may impair Service functionality).•Our cookie consent banner upon first visit.•Opting out of marketing emails using the unsubscribe link in any email.

We do not use advertising cookies for retargeting on the Clevrr AI dashboard. Marketing cookies are only used on our public website (getclevrr.com).

Third-Party Analytics: Our website may use analytics tools. Any such tools are configured to anonymise IP addresses and not share data with advertising networks.

We retain your information for as long as necessary to provide the Service and fulfil the purposes described in this Policy:

Active Accounts: Customer Data is retained for the entire duration of your subscription.

Post-Termination: After termination or cancellation of your subscription:•Customer Data (your Shopify, ad, and operational data) is retained for 30 days to allow export.•After 30 days, Customer Data is permanently and securely deleted from our systems.•Account information (name, email, billing history) is retained for 7 years for legal and accounting compliance.

Anonymised Data: Anonymised and aggregated data derived from your use of the Service may be retained indefinitely.

Marketing Data: If you opted in to marketing communications, we retain your contact details until you opt out or request deletion.

Legal Holds: We may retain certain information longer if required by applicable law, regulation, or ongoing legal proceedings.

You may request deletion of your account and personal data at any time by contacting team@getclevrr.com. We will process verified deletion requests within 30 days, subject to legal retention requirements.

We take the security of your data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, disclosure, alteration, and destruction.

Security Measures Include

•Encryption: All data transmitted between your browser and our servers is encrypted using TLS 1.2+. Sensitive data at rest (including authentication tokens and payment-related fields) is encrypted using AES-256.•Access Controls: Role-based access controls ensure that only authorised personnel can access Customer Data, and only to the minimum extent necessary.•Infrastructure: We host on leading cloud providers (AWS/GCP) with ISO 27001-certified data centres.•Vulnerability Management: Regular security audits, penetration testing, and dependency vulnerability scanning.•Monitoring: 24/7 intrusion detection and anomaly monitoring on our infrastructure.•Shopify OAuth: Your Shopify store connection uses OAuth 2.0, meaning we never store your Shopify admin password.

Your Responsibilities: You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account. Use a strong, unique password and enable any two-factor authentication options we offer.

Breach Notification: In the event of a data breach affecting your personal information, we will notify you in accordance with applicable law, including the Information Technology (Amendment) Act, 2008 and any applicable DPDP Act obligations.

No system is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

Depending on your location and applicable law, you may have the following rights regarding your personal data:

Right to Access: You may request a copy of the personal data we hold about you.

Right to Correction: You may request that we correct inaccurate or incomplete personal data.

Right to Deletion: You may request that we delete your personal data, subject to legal retention requirements. Note that deleting your account will result in loss of access to the Service.

Right to Data Portability: You may request a machine-readable export of your personal data in a commonly used format.

Right to Object / Restrict Processing: You may object to or request restriction of certain types of processing, such as direct marketing.

Right to Withdraw Consent: Where processing is based on your consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.

Marketing Opt-Out: You may opt out of marketing communications at any time by clicking "Unsubscribe" in any marketing email or by contacting team@getclevrr.com.

How to Exercise Your Rights: Submit requests to team@getclevrr.com with "Privacy Request" in the subject line. We will respond within 30 days. We may need to verify your identity before processing requests.

Complaints: If you believe we have not handled your data lawfully, you may lodge a complaint with the relevant data protection authority in your jurisdiction.

Clevrr AI is headquartered in India. Your data may be processed and stored on servers located in India, the United States, or other countries where our cloud infrastructure providers operate.

If you are located outside India, please be aware that your information will be transferred to and processed in India, where data protection laws may differ from those in your country.

We ensure that cross-border transfers of personal data are conducted in accordance with applicable law, using appropriate safeguards such as:

•Standard Contractual Clauses (SCCs) where required.•Contracts with data processors that require equivalent levels of protection.•Transfers to countries recognised as providing adequate protection.

By using the Service, you consent to the transfer of your information to countries outside your country of residence, including India and the United States.

The Clevrr AI Service is intended solely for use by businesses and individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 18.

If we become aware that we have inadvertently collected personal information from a child under 18 without parental consent, we will take steps to delete such information from our records as soon as possible.

If you believe that a child under 18 has provided us with personal information, please contact us immediately at team@getclevrr.com.

The Service may contain links to third-party websites, tools, or services (such as Shopify, Meta, Google, and logistics providers). These third-party services have their own privacy policies, and we are not responsible for their content or privacy practices.

We encourage you to review the privacy policies of any third-party services you interact with through Clevrr AI.

Our website may embed content from platforms such as YouTube or social media networks. If you interact with embedded content, those platforms may collect data about you in accordance with their own policies.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

When we make material changes, we will:

•Update the "Last Updated" date at the top of this page.•Notify you by email to the address associated with your account.•Display a prominent notice on the Service for a reasonable period.

Your continued use of the Service after the effective date of any updates constitutes your acceptance of the revised Policy.

We encourage you to review this Policy periodically to stay informed about how we are protecting your information.

Previous Versions: If you would like to review a previous version of this Privacy Policy, please contact us at team@getclevrr.com.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Snaptify Softwares Private Limited Operating as Clevrr AI

Privacy Inquiries: team@getclevrr.com General Support: team@getclevrr.com Legal Notices: ceo@getclevrr.com

Registered Address: [Bengaluru, Karnataka, India]

We are committed to resolving privacy concerns promptly. We will acknowledge your inquiry within 72 hours and aim to fully resolve all requests within 30 days.

For complaints that we are unable to resolve to your satisfaction, you may contact the relevant regulatory authority. For users in India, this includes the Data Protection Board of India (once constituted under the Digital Personal Data Protection Act, 2023).