Privacy Policy

InsiGage ("we", "us", or "our") provides a live chat widget and customer experience platform for Shopify stores. This Privacy Policy explains how we collect, use, disclose, and safeguard information when merchants install our application and their customers interact with it.

By using InsiGage, you agree to the collection and use of information in accordance with this policy.

We collect the following categories of data:

• Customer information — name, email address, and phone number as provided via Shopify or the pre-chat form.
• Conversation data — messages exchanged between customers and agents through the chat widget.
• Browsing context — the current page URL and cart contents, collected during active chat sessions only.
• Device information — browser type and operating system, used for technical support purposes.
• Shopify order data — recent order history, accessed via the Shopify API with merchant authorization to provide agents with customer context.

The data we collect is used to:

• Provide live chat support between merchants and their customers.
• Display customer context to agents so they can deliver faster, more relevant support.
• Maintain conversation history so returning customers can continue where they left off.

We do not sell personal data. Data is shared only with the following parties:

• The Shopify merchant who installed our application — they can view all conversations and customer data associated with their store.
• Third-party services necessary for operation:
  • Pusher — real-time messaging infrastructure
  • Cloudflare — content delivery and security

• Conversation data is retained for as long as the merchant's application remains installed.
• Upon app uninstall, all associated data is deleted within 48 hours in compliance with Shopify requirements.
• Merchants can request deletion of specific customer data at any time by contacting us.

We support the rights of individuals under the General Data Protection Regulation (GDPR):

• Right to access — merchants can request all data stored about a specific customer.
• Right to erasure — merchants can request deletion of customer data, which will be processed promptly.
• Data portability — customer data can be exported in JSON format upon request.

We take the security of your data seriously and employ industry-standard measures:

• All data is encrypted in transit using TLS (Transport Layer Security).
• Access tokens are encrypted at rest using AES-256-GCM.
• Database access is restricted and monitored.

If you have any questions about this Privacy Policy or your data, please contact us at:

privacy@insigage.com