Skip to main content
GhostSync

Privacy Policy

Last Updated: April 3, 2026

1. Who We Are

GhostSync (“we,” “us,” or “our”) operates the GhostSync inventory synchronisation service available at ghostsync.io and app.ghostsync.io. GhostSync's Privacy Lead is the primary point of contact for privacy matters relating to account and usage data, and GhostSync acts as a processor for merchant and supplier data handled on behalf of customers.

Mailing address: Ontario, Canada (registered address pending)

Privacy Lead contact: privacy@ghostsync.io

Legal entity pending: GhostSync is finalizing its business registration. This contracting-entity block will be updated with the registered business name and mailing address before live paid checkout is enabled.

2. Data We Collect

We collect only the data necessary to provide the GhostSync service:

  • Account information — Shopify store domain, email address, and related merchant account metadata created when you sign in through Shopify OAuth or accept a team invitation. GhostSync does not use password-based registration today.
  • Shopify store data — inventory levels, product details, and variant metadata accessed via the Shopify Admin API after you grant OAuth permission. We access only the scopes required to perform inventory synchronisation: write_inventory, read_inventory, read_locations, read_products.
  • Supplier email content — email messages and attachments (CSV, Excel, PDF) forwarded to your GhostSync ingestion address. We do not request or expect end-customer PII in these files. Any incidental PII is securely handled through our automatic data retention pipelines and is never passed to OpenAI or third-party ML providers during daily sync runtime. These are processed to extract inventory data and are retained only within the limits described in Section 6.
  • Sync logs — records of inventory update operations including timestamps, SKUs affected, and outcome status.
  • Usage analytics — aggregated, anonymous page-view and limited marketing-site event data collected via Plausible Analytics when enabled. Plausible is cookieless and GhostSync does not use it for advertising-network or cross-site tracking.
  • Billing data — payment method details and transaction history managed by Stripe. GhostSync stores Stripe customer and subscription identifiers, plan and billing-period metadata, and subscription status needed to manage access; full card numbers are never transmitted to or stored by GhostSync.
  • Marketing leads and newsletter preferences — email address, consent state, signup source, and unsubscribe/suppression history when you request GhostSync product updates. Each update email includes a self-serve unsubscribe link.

3. How We Use Your Data

  • Providing and operating the GhostSync service
  • Processing supplier inventory files and syncing inventory to your Shopify store
  • Sending transactional emails (sync confirmations, error alerts, billing receipts)
  • Improving service reliability and diagnosing errors via sync logs
  • Processing subscription payments via Stripe
  • Sending optional product updates to addresses that explicitly opted in
  • Complying with legal obligations

We do not sell, rent, or share your personal data with third parties for marketing purposes.

4. Third-Party Data Processors

We rely on the following providers to deliver the service. This page lists the operational subprocessor set. Review the EU/UK privacy procurement packet for the current DPA template, transfer addendum, and instructions for requesting executed paperwork before production use.

ProcessorPurposeLocation
Amazon Web Services (AWS)Cloud infrastructure, storage, compute, messaging, and encryption support.United States
ShopifyProduct catalog reads and inventory quantity updates through the Shopify Admin API.Canada / United States
StripeSubscription checkout, billing portal, and payment processing.United States
SendGridInbound supplier email parsing and optional transactional email delivery.United States
Amazon SESPrimary outbound email delivery for transactional notifications.United States
OpenAISupplier template generation during onboarding only.United States
Plausible AnalyticsCookieless marketing-site analytics.European Union

5. Shopify-Specific Disclosures

GhostSync accesses your Shopify store exclusively through the official Shopify Admin API after you grant explicit OAuth consent. The data types accessed include:

  • write_inventory
  • read_inventory
  • read_locations
  • read_products

We do not sell Shopify store data to any third party. Shopify store data is used solely to perform inventory synchronisation on your behalf. You may revoke GhostSync’s access at any time from your Shopify admin under Apps & Sales Channels. If you uninstall GhostSync, live sync execution stops immediately for that store, GhostSync requests end-of-period cancellation for any active paid subscription, and Shopify's later shop/redact webhook triggers the documented merchant-data deletion workflow.

6. Data Retention

  • Sync logsOperational sync history remains available for the currently covered merchant records. Self-serve export currently includes the last 90 days of sync logs, not a full system-wide archive.
  • Processed supplier email attachments — deleted after deleted after 24 hours
  • Core account data — retained until a verified deletion request is processed. Some support, billing, provider-side, and security-related records follow separate retention requirements.
  • Shopify uninstall lifecycle — GhostSync marks the store uninstalled immediately on app/uninstalled and then completes merchant-data deletion when Shopify later sends shop/redact.
  • Billing records — retained as required by applicable tax and financial regulations.
  • Marketing leads — retained for up to 12 months from the latest signup event.
  • Newsletter suppression records — retained until manually cleared so GhostSync does not silently re-add unsubscribed addresses to marketing/product-update mailings.

7. Your Rights

Depending on your jurisdiction, you have the following rights:

  • GDPR (EEA/UK residents) — Right of access (Article 15), right to rectification (Article 16), right to erasure (Article 17), right to restriction of processing (Article 18), right to data portability (Article 20), and right to object (Article 21).
  • CCPA (California residents) — Right to know what personal information is collected and how it is used, right to delete personal information, right to opt out of the sale of personal information (we do not sell personal information), and right to non-discrimination for exercising your rights.

To exercise any of these rights, email our Privacy Lead at privacy@ghostsync.io with your request. California residents may use this address to submit verifiable requests to know, delete, or opt-out under the CCPA. We will respond within 30 days (GDPR) or 45 days (CCPA) of receiving a verified request.

GhostSync verifies privacy, export, and deletion requests over email before taking action.

Privacy, export, and deletion requests are currently reviewed through GhostSync's founder-led process under the Privacy Lead role.

If your review also needs customer DPA or transfer paperwork, start with the EU/UK privacy procurement packet so GhostSync can route the right execution copy and transfer module.

GhostSync's current self-serve export covers core merchant profile data, supplier configuration, unknown SKU history, subscription history, up to 200 billing events, and the last 90 days of sync logs. It is not a full system-wide archive.

If you use GhostSync's account deletion flow today, the product removes core merchant records from the active application database immediately. Some supporting, provider-side, finance, support, and log records may follow separate retention or manual cleanup workflows. Export any data you need before deleting the account.

8. Cookies and Analytics

GhostSync uses cookieless Plausible page analytics on the marketing site. Optional marketing-site custom events depend on your browser-level preference. The dashboard does not run third-party marketing analytics today.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email to your registered address at least 30 days before they take effect. The “Last Updated” date at the top of this page always reflects the most recent revision.

10. Contact

For privacy-related questions or to exercise your data rights, contact our Privacy Lead at privacy@ghostsync.io.

Email privacy@ghostsync.io with the subject line "Privacy Complaint" to start a privacy complaint review.