Conversion GuardianConversion Guardian
Sign inStart free trial

Legal

Privacy Policy

Last updated: April 25, 2026

This Privacy Policy explains how we collect, use, and protect information when you use Conversion Guardian. We've written it to be readable. If anything is unclear, contact ash@conversionguardian.com.

Who we are

Conversion Guardian is an ecommerce intelligence service operated by Ashwinikumar Singh, an individual based in Mumbai, India. For the purposes of data protection law (including the EU General Data Protection Regulation, the UK Data Protection Act, the California Consumer Privacy Act, and the India Digital Personal Data Protection Act 2023), Ashwinikumar Singh is the data controller responsible for your personal data.

References to “we”, “us”, or “our” in this policy mean Ashwinikumar Singh, doing business as Conversion Guardian. Contact: ash@conversionguardian.com.

What we DON'T collect

Before we list what we do collect, we want to call out what we deliberately do not.

We do not store individual end-customer data from your store. When we sync orders from Shopify or WooCommerce, we extract aggregate metrics only (totals, counts, conversion rates, refund rates) and discard the underlying order records. We never store your end shoppers' names, email addresses, billing addresses, payment details, IP addresses, or any other identifier that would let us recognise an individual shopper.

This is a deliberate design choice. It means we are not a data processor for your end shoppers' personal data, and you do not need a Data Processing Agreement with us for end-shopper data. We are only the controller of your own personal data — the merchant's.

What we DO collect

Account data

When you sign up, we collect your name and email address. Authentication is handled by Supabase, which stores your password as a salted hash — we never see or store your password in plain text. If you sign up with a single sign-on provider (Google), we receive your name, email, and profile picture URL from that provider.

Billing data

When you subscribe to a paid plan, you provide payment details directly to our payment processor, Dodo Payments. We never see your full card number or CVV. From Dodo we receive metadata about your subscription (plan tier, billing dates, last four digits of your card) and webhook payloads which include your billing name, billing email, and billing address as supplied to Dodo at checkout. We retain these billing records as long as your account exists, and afterward as required by applicable tax and accounting laws.

Store credentials and integration tokens

To connect to your store and analytics platforms, you provide credentials (API keys, OAuth refresh tokens). We store the following encrypted at rest using AES-256-GCM:

  • Your store API key and API secret (Shopify or WooCommerce)
  • Google Analytics 4 refresh token (if connected)
  • Microsoft Clarity API token (if connected)
  • Shopify access token, client ID, client secret (if Shopify)
  • Google Ads refresh token and customer ID (if connected)
  • Meta Ads access token and ad account ID (if connected)
  • Slack webhook URL (if connected for notifications)
  • Notification email address (if you set one different from your account email)

These credentials are decrypted only at request time, in memory, when we need to make an API call. They are never written to logs, never sent to third parties, and never displayed in the dashboard after entry.

Aggregate store data

From your connected platforms, we read and store aggregate metrics about your business. This is data ABOUT your business, not about your end customers:

  • Daily revenue, order counts, average order value
  • Conversion rates (overall, mobile, desktop)
  • Session and page-view counts (from GA4)
  • Page-level metrics (rage clicks, dead clicks, JavaScript errors, time on page) from Microsoft Clarity
  • Traffic source / medium / campaign aggregates
  • Product-level metrics (page views, add-to-carts, orders, revenue per product)
  • Ad campaign metrics (spend, ROAS, conversions) from Google Ads / Meta Ads
  • Plugin and theme version metadata (WooCommerce only)

Page URLs and product names are stored as part of metric records. If your store URLs contain personally identifying query parameters (rare but possible), those would be stored as part of the URL string. We do not parse or use these for any purpose beyond aggregation.

Generated insights and digests

Our detection engine generates insights describing what changed in your store metrics (e.g. “revenue dropped 30% on Tuesday”). These insights contain references to dates, metric values, product names, page URLs, and ad campaigns from your store, but no end-customer data. AI-generated explanations are produced via the Anthropic Claude API on a no-training, no-retention basis (Anthropic does not retain your data after the request completes and does not use it to train models).

Technical data

When you use the service, we automatically collect:

  • Server logs (IP address, browser, operating system, pages visited, timestamps) for security and reliability. Retained for a limited time.
  • Product analytics events (button clicks, page views, feature usage) via PostHog. Session recording is disabled — we do not record your screen.
  • Authentication cookies (essential for keeping you logged in)
  • Chat widget cookies (set by Crisp when you interact with our support chat)

How we use this data

  • Provide the service: detect issues, generate insights, send alerts and digests
  • Operate your account: authenticate you, manage subscriptions, send billing receipts
  • Improve the product: understand which features are used and where users get stuck (via aggregated PostHog analytics)
  • Communicate with you: respond to support requests, send service-related emails, send occasional product updates (you can opt out of marketing emails at any time)
  • Comply with legal obligations: respond to lawful requests from authorities, prevent fraud, enforce our terms

We do not sell your data. We do not use your store data to train artificial intelligence models on your behalf or anyone else's. AI features in our product use the Anthropic Claude API on a no-training, no-retention basis.

Google API Services User Data Policy

Conversion Guardian's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Lawful basis for processing (GDPR)

For users in the European Union, United Kingdom, or other jurisdictions where the GDPR applies, we process your data under:

  • Contract. Most processing is necessary to provide the service you signed up for — account data, store data, billing.
  • Legitimate interests. Product analytics, security logging, and fraud prevention serve our legitimate interests in operating and improving the service. We have assessed these interests against your rights and believe the processing is proportionate.
  • Legal obligation. Tax records and similar compliance-driven processing.
  • Consent. Optional analytics cookies and marketing communications. You can withdraw consent at any time.

Subprocessors

We use the following third-party services to operate Conversion Guardian. Each has its own privacy and security commitments:

  • Supabase (database and authentication, hosted in AWS US East)
  • Vercel (application hosting and CDN)
  • Anthropic (Claude API for AI-generated insight explanations and chat features — no training, no retention)
  • Resend (transactional email delivery)
  • Dodo Payments (payment processing and Merchant of Record — you provide payment details directly to them)
  • PostHog (product analytics; session recording disabled)
  • Crisp (live chat widget)
  • Upstash QStash (background job scheduling)
  • Google, Microsoft, Meta (only when you connect your accounts — we read data from these platforms but do not send your data back to them)

We will update this list as our infrastructure evolves. Significant changes will be announced on our blog.

International data transfers

Conversion Guardian is operated from India, and our primary infrastructure runs in the United States (AWS US East). When you use our service from outside these regions, your data is transferred to and processed in these locations.

For users in the European Union and United Kingdom, transfers to the United States rely on our subprocessors' Standard Contractual Clauses or equivalent safeguards. For transfers to India, processing is governed by the Digital Personal Data Protection Act 2023.

How long we keep your data

We retain your data for as long as your account is active and your subscription (or trial) is in good standing. When access to your account ends — for example, when your trial expires without subscribing, when your subscription is cancelled and the paid period ends, or when payment fails after dunning — we begin a sixty-day retention window.

  • Your data remains accessible for sixty days after access ends, in case you reactivate.
  • After sixty days, your account and all related store data are permanently deleted from our active databases by an automated process. The deletion is logged for audit purposes (without retaining your data itself).
  • Backup copies are retained by our database provider for a limited period, then permanently deleted.
  • Server logs are retained for a limited time.
  • Billing records are retained as required by applicable tax and accounting laws.
  • Anonymised, aggregated analytics data with no identifiers may be retained indefinitely for product improvement.

You can request earlier deletion at any time by emailing us — see “Your rights” below.

Your rights

Depending on where you live, you have some or all of the following rights:

  • Access. Request a copy of the personal data we hold about you.
  • Rectification. Correct inaccurate or incomplete data.
  • Erasure. Request deletion of your data (subject to legal retention requirements such as billing records).
  • Portability. Receive your data in a machine-readable format.
  • Restriction and objection. Limit or object to certain types of processing.
  • Withdraw consent. Where processing is based on consent, withdraw it at any time without affecting prior processing.
  • Complaint. EU/UK users have the right to complain to their national data protection authority. India users may complain under the DPDP Act 2023.

California residents have additional rights under the California Consumer Privacy Act, including the right to know what categories of personal information we collect and the right to opt out of the sale of personal information. We do not sell personal information.

To exercise any of these rights, email ash@conversionguardian.com from the email address associated with your account. We will verify your identity and respond as soon as reasonably possible, in line with applicable law.

Security

We protect your data using industry-standard practices:

  • All sensitive credentials (API keys, OAuth tokens) are encrypted at rest using AES-256-GCM
  • All data in transit is encrypted via HTTPS/TLS
  • Database access is row-level scoped — each customer can only access their own data
  • Connections to your store are read-only via API — we cannot modify your store data
  • Production access is restricted, logged, and reviewed periodically
  • Daily backups with limited retention

No system is perfectly secure. If we discover a breach affecting your data, we will notify affected users without undue delay and in line with applicable law.

Cookies and tracking

We use cookies for the following purposes:

  • Essential cookies for authentication and session management. These are required for the service to work.
  • Analytics cookies set by PostHog to understand product usage. Session recording is disabled.
  • Support cookies set by Crisp to maintain chat session continuity.

We are implementing a cookie consent mechanism for visitors from regions where prior consent is required (such as the European Union and United Kingdom). Until that mechanism is fully deployed, you can disable non-essential cookies through your browser settings or by emailing us to opt out.

Children

Conversion Guardian is a business service intended for use by adults. We do not knowingly collect personal data from anyone under eighteen years of age. If we learn that we have collected such data, we will delete it. Parents or guardians who believe their child has provided us with data can contact us at the email below.

Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent revision. Significant changes will be announced on our blog.

Contact

For any privacy-related question or to exercise your rights, contact:

Ashwinikumar Singh
Operating Conversion Guardian
Mumbai, India
Email: ash@conversionguardian.com

Terms of Service →Refund Policy →Home