Privacy Policy - Lasso App

Last updated: January 2025

1. Introduction

Lasso App ("we," "our," or "us") is a Shopify application that provides conversational store management capabilities. This Privacy Policy explains how we collect, use, and protect your information when you use our app.

2. Information We Collect

2.1 Shopify Store Data

When you install our app, we access and process the following data from your Shopify store:

  • Products: Product titles, descriptions, prices, inventory levels, variants, images, and metadata
  • Collections: Collection names, descriptions, and product associations
  • Customers: Customer information for order processing and analytics
  • Orders: Order data for inventory management and reporting
  • Locations: Store location data for inventory management
  • Shop Information: Store name, domain, and basic configuration

2.2 Chat and Usage Data

  • Chat Messages: Conversations you have with our AI assistant
  • Project Data: Product management projects and pending updates you create
  • Usage Analytics: How you interact with the app (anonymized)
  • Session Data: Authentication and session management information

3. How We Use Your Information

We use your information solely to provide and improve our service:

  • Process your conversational requests to manage your store
  • Execute product updates, inventory changes, and other store operations
  • Maintain project history and pending updates
  • Provide customer support and troubleshooting
  • Improve our AI models and app functionality (using anonymized data)
  • Comply with legal obligations and Shopify's requirements

4. Data Sharing and Third Parties

We do not sell, trade, or rent your personal information. We may share data only in these limited circumstances:

OpenAI Processing

Chat messages and product management commands are processed by OpenAI's API to understand your natural language requests and generate appropriate responses. This data is subject to OpenAI's privacy policy. We implement the following safeguards:

  • Rate limiting: Maximum 10 requests per minute, 60 requests per hour per user
  • We send only the specific chat message content needed for command parsing
  • We use GPT-4 Turbo for intent parsing and GPT-3.5 Turbo for response generation
  • No personal customer data or sensitive store information is included in AI requests
  • Shopify: As required for app functionality within Shopify's ecosystem
  • Service Providers: Trusted third-party services that help us operate the app (under strict confidentiality agreements)
  • Legal Requirements: When required by law or to protect our rights

5. Cookie Policy

We use cookies and similar technologies to enhance your experience with our app:

  • Essential Cookies: Required for authentication and session management
  • Analytics Cookies: Help us understand how you use the app (anonymized)
  • Preference Cookies: Remember your settings and preferences

You can control cookie preferences through your browser settings, though disabling essential cookies may affect app functionality.

6. Data Security

We implement industry-standard security measures:

  • Encrypted data transmission (HTTPS/TLS)
  • Secure database storage with access controls
  • Regular security audits and updates
  • Limited employee access on a need-to-know basis

7. Data Retention

We retain your data only as long as necessary:

  • Store Data: While the app is installed and for 30 days after uninstallation
  • Chat History: For 12 months or until you request deletion
  • Compliance Logs: As required by law (typically 7 years)

8. Your Rights & Data Deletion Process

You have the right to:

  • Access: Request a copy of your data we hold
  • Rectification: Correct inaccurate information
  • Erasure: Request deletion of your data (subject to legal requirements)
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to certain types of data processing

Data Deletion Process

To request deletion of your data, you can:

  1. 1.Uninstall the Lasso app from your Shopify store (data automatically deleted after 30 days)
  2. 2.Contact us at support@lasso.com for immediate deletion
  3. 3.Use the data deletion feature within the Lasso app settings

We will confirm your deletion request within 48 hours and complete the process within 30 days.

9. GDPR Compliance

For users in the European Union, we comply with GDPR requirements:

  • Lawful basis for processing: Legitimate interest and contract performance
  • Automated data subject request handling: Streamlined process for your rights
  • Right to be forgotten implementation: Complete data erasure upon request
  • Data protection impact assessments: Regular privacy risk evaluations

10. Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us:

Email
support@lasso.com
Support
Via the Lasso App support channel in your Shopify admin
Company
Lasso
AI-Powered Shopify Management

11. Children's Privacy

Our app is not intended for users under 16. We do not knowingly collect personal information from children under 16.

12. International Data Transfers

Your data may be transferred to and processed in countries outside your jurisdiction. We ensure appropriate safeguards are in place for such transfers.

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the app interface.

14. Shopify-Specific Information

This app operates within Shopify's ecosystem and is subject to Shopify's Privacy Policy. We comply with Shopify's App Store requirements and data handling guidelines.

Cart

Your cart is empty

Add some items to get started