AIMass
Contact Us

Privacy Policy

Effective Date: 07/17/2025
Applies to: Store owners using KameleonAI and their store visitors (end users).

1. Who We Are

KameleonAI ("we", "our", or "us") provides an AI-powered sales team that enables online stores to increase conversions by delivering personalized search and product recommendations.

2. Scope of This Policy

This policy applies to:

  • Our Shopify app and backend services
  • Our website https://kameleonai.com
  • Any interactions via email, customer support, or sales channels

3. What Data We Collect

We collect the following categories of data:

a. From Store Owners (Our Customers)

  • Business name and store URL
  • Email address and contact info
  • Products descriptions with images and videos
  • Billing information (via payment processor)
  • Activity logs and app usage metrics

b. From End Users (Store Visitors)

  • Device and browser information
  • Pages visited, time on site, clicks, scroll depth, product interactions/views
  • Search queries and conversation messages
  • IP address (masked or anonymized depending on region)
  • Cookies, localStorage, sessionStorage and tracking technologies (as permitted by law)

4. How and Why We Use Your Data

PurposeLegal Basis
Deliver personalized product recommendationsLegitimate interest
Debug AI behaviorLegitimate interest
Provide store owners with analyticsLegitimate interest
Improve AI performance (via anonymized training data)Legitimate interest / Consent
Detect abuse or bot activityLegitimate interest
Provide technical supportContractual necessity
Email updates or feature alertsConsent / Contractual necessity
Comply with legal obligations (tax, fraud, security)Legal obligation

Merchants can disable "data sharing for model improvement".

5. Data Sharing and Third Parties

We use trusted sub processors to run our service.

We may share data with:

  • Payment providers (e.g., Stripe, PayPal)
  • Model providers (e.g. Openai, Claude, Groq)
  • Cloud hosting and storage providers (e.g., AWS, Digital Ocean, Langsmith)
  • Legal authorities if required

We never sell personal data.

6. Cookies and Tracking

We use cookies to:

  • Track session usage
  • Analyze visitor behavior (for personalization)
  • Improve AI model performance

End Users can manage cookie preferences via the cookie banner or browser settings.

7. Data Retention

  • Store data: retained until account deletion + 90 days.
  • Visitor data: retained for 12 months and then deleted or anonymized
  • Conversation data: retained unless opted out

8. User Rights

You have the right to:

  • Access your data
  • Delete your data
  • Correct inaccurate data
  • Object to processing
  • Request data portability in a standard format like JSON or CSV

To exercise any rights, email us at: privacy@kameleonai.com. We'll do our best to fulfill your request in 1 month.

Store owner Rights:

  • You can export or delete all store-related data via request
  • You can opt out of analytics or AI usage tracking via settings

9. Security Measures

We implement industry-standard security including:

  • HTTPS enforced for all connections
  • Encrypted storage (AES-256)
  • Role-based access control for staff
  • OAuth2 authentication with Shopify
  • Regular third-party penetration testing

10. International Transfers

We may transfer data outside your country (e.g., to the U.S.), always ensuring appropriate safeguards:

  • Standard Contractual Clauses (SCCs) for EU data
  • Data Processing Addendums (DPAs) with our sub processors

11. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes.

12. Children's Privacy

Our services are not intended for children under 16 or equivalent minimum age in your jurisdiction.

13. Contact

📧 privacy@kameleonai.com

By using KameleonAI's Services, you acknowledge that you have read and understood this Privacy Policy.